Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/HS6EENg5ekNUMpjKcPnR5C_6bLk.roa
File: HS6EENg5ekNUMpjKcPnR5C_6bLk.roa (raw, json)
Hash identifier: MxsV2/qLWjVE7sOu+pmPJMYP050V0vUpD9RbW3pRfbw=
Subject key identifier: 1D:2E:84:10:D8:39:7A:43:54:32:98:CA:70:F9:D1:E4:2F:FA:6C:B9
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0184945A4CD04D71B187A125184D5F16D642
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/HS6EENg5ekNUMpjKcPnR5C_6bLk.roa
Signing time: Sun 20 Nov 2022 09:24:16 +0000
ROA not before: Sun 20 Nov 2022 09:24:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52035
IP address blocks: 158.41.24.0/21 maxlen: 24
185.179.216.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:94:5a:4c:d0:4d:71:b1:87:a1:25:18:4d:5f:16:d6:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Nov 20 09:24:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d2e8410d8397a43543298ca70f9d1e42ffa6cb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5f:dc:e2:cc:0e:5c:27:5e:96:f8:e0:39:a8:
f5:c6:69:aa:b7:fb:5c:98:ed:1c:89:f2:35:96:a0:
54:22:f5:13:89:5a:19:be:e0:b2:1c:82:23:96:87:
91:f2:e9:07:48:c7:0a:67:b1:67:5a:78:a5:da:e9:
03:2b:85:16:2d:ae:e1:10:27:f4:7b:22:6e:01:83:
a3:a4:62:2b:16:bf:5e:08:46:af:0f:37:36:d4:6e:
7b:98:3f:a9:14:2a:50:26:b7:e8:08:a6:ff:11:33:
fc:18:28:72:25:a9:ab:91:3b:9b:ed:dc:bd:70:95:
a0:97:4e:f4:2c:3b:8c:8e:ee:a1:25:f1:72:bd:e0:
b2:c7:36:5f:7a:6f:8a:f3:d7:57:80:90:f8:de:cb:
92:0d:da:19:4e:90:b9:37:a9:60:9b:70:b3:b3:7f:
0f:89:25:32:72:5f:5d:43:08:4a:dd:38:20:63:7d:
8d:86:50:29:ed:90:1c:5e:eb:74:6d:d4:4f:23:4f:
22:f3:6a:19:0b:f4:e1:f6:44:69:8a:1a:26:8c:9b:
d7:74:6e:68:8a:4f:9b:d0:63:de:79:6d:31:ed:ff:
95:36:96:00:ea:d1:3e:1c:29:ce:db:46:58:c2:0a:
d8:06:98:b8:ed:56:fd:1d:8a:7b:30:bc:db:be:d2:
fd:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:2E:84:10:D8:39:7A:43:54:32:98:CA:70:F9:D1:E4:2F:FA:6C:B9
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/HS6EENg5ekNUMpjKcPnR5C_6bLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.41.24.0/21
185.179.216.0/23
Signature Algorithm: sha256WithRSAEncryption
45:1c:c1:a8:c8:a4:a9:6e:72:7a:54:6c:62:e7:21:0b:ae:c3:
df:6c:83:9a:6c:e3:00:6d:24:dd:d7:d7:a6:e6:f7:c9:9a:3a:
74:33:78:b6:e9:1d:ce:03:e8:72:9e:1d:18:10:06:28:90:e6:
0b:be:57:30:22:d1:c0:0b:2e:26:f9:a2:f2:87:24:b4:7c:11:
88:4b:33:a5:8f:6f:cc:6b:7a:d8:f8:b7:6e:80:c8:b1:49:33:
0a:ca:4b:0a:9f:20:81:0e:a9:06:d4:89:c1:ba:6f:78:d6:07:
2f:1c:e9:04:58:ee:09:42:8b:67:37:3e:e2:68:9c:10:1f:49:
51:44:20:c0:5a:d6:3f:a5:52:2d:f1:08:9d:42:07:2c:9b:fa:
34:8e:6a:b9:38:61:17:d1:3e:da:2f:bf:02:66:69:d5:75:9c:
2a:7c:a0:10:9f:71:8d:e6:bd:c3:a0:e5:a5:46:78:8b:64:e6:
64:59:3a:1f:16:d2:53:4c:95:69:3d:1b:44:9a:8f:df:cb:5e:
18:0b:f9:d1:05:68:f9:69:7a:55:dc:45:80:08:6d:b0:cc:fe:
92:69:bd:36:4e:6c:5a:11:da:34:66:6a:82:a5:97:b8:2c:ad:
12:04:f7:4b:0f:4d:22:9d:25:7b:10:5a:4f:3c:09:64:9f:7f:
c2:d6:e3:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org