Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/0cf7b9-938f-4c17-8ec7-d18d1ea568f5/1/hLMvb0PKjKO414P4NCuDUm7_H0I.roa
File: hLMvb0PKjKO414P4NCuDUm7_H0I.roa (raw, json)
Hash identifier: dh6uqRW/bnnNuuMWCAcsgAzoMbWWIPNVSL4da1YYWHk=
Subject key identifier: 84:B3:2F:6F:43:CA:8C:A3:B8:D7:83:F8:34:2B:83:52:6E:FF:1F:42
Certificate issuer: /CN=e4202a3fc1a8e85c9dfd2d65d319a80dd1fb917d
Certificate serial: 025CB06A
Authority key identifier: E4:20:2A:3F:C1:A8:E8:5C:9D:FD:2D:65:D3:19:A8:0D:D1:FB:91:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5CAqP8Go6Fyd_S1l0xmoDdH7kX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/0cf7b9-938f-4c17-8ec7-d18d1ea568f5/1/hLMvb0PKjKO414P4NCuDUm7_H0I.roa
Signing time: Sat 01 Jan 2022 11:57:17 +0000
ROA not before: Sat 01 Jan 2022 11:57:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208348
IP address blocks: 45.142.160.0/22 maxlen: 22
193.3.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39628906 (0x25cb06a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4202a3fc1a8e85c9dfd2d65d319a80dd1fb917d
Validity
Not Before: Jan 1 11:57:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84b32f6f43ca8ca3b8d783f8342b83526eff1f42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:39:29:5c:68:b3:db:25:93:2a:6f:fa:1e:88:
8c:ce:d4:f4:0a:29:90:10:eb:ac:b4:9c:37:6a:70:
67:05:b3:7e:cf:4f:76:30:7c:bd:63:22:2b:2e:fa:
1a:50:ad:06:f8:29:1a:5b:85:c6:20:1b:c8:50:49:
a9:a1:44:35:82:00:2e:c8:2e:8e:17:70:cb:cc:90:
62:35:46:b3:67:53:28:fe:82:cf:cd:f4:2c:04:b9:
86:55:65:de:49:85:a9:18:a8:a3:2c:e0:f1:f3:d5:
39:ba:d8:ce:bf:20:9d:a7:b4:53:05:f7:dc:f1:52:
5d:ee:d6:73:9f:16:86:cb:26:cc:4e:40:a3:8a:04:
e2:a4:a9:31:3a:72:51:81:91:93:97:53:28:d2:12:
0c:82:73:11:9a:34:84:41:02:ec:c4:a4:6b:8c:2b:
fa:b5:1c:df:2d:bb:ab:90:fb:e6:41:68:07:97:58:
58:2a:7f:6b:7d:cb:18:72:ee:04:3c:83:66:bd:f4:
e4:74:aa:3a:9e:a3:3b:b4:75:28:c8:7e:4c:07:1d:
7e:e4:b2:ba:d4:ab:22:c0:71:de:b8:56:a0:e3:92:
91:46:0d:30:99:e3:2f:f9:1d:fb:df:b5:7e:02:24:
33:92:6f:8a:6b:bb:89:1a:9d:bb:c8:6d:86:f0:78:
2b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B3:2F:6F:43:CA:8C:A3:B8:D7:83:F8:34:2B:83:52:6E:FF:1F:42
X509v3 Authority Key Identifier:
keyid:E4:20:2A:3F:C1:A8:E8:5C:9D:FD:2D:65:D3:19:A8:0D:D1:FB:91:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5CAqP8Go6Fyd_S1l0xmoDdH7kX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/0cf7b9-938f-4c17-8ec7-d18d1ea568f5/1/hLMvb0PKjKO414P4NCuDUm7_H0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/0cf7b9-938f-4c17-8ec7-d18d1ea568f5/1/5CAqP8Go6Fyd_S1l0xmoDdH7kX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.160.0/22
193.3.241.0/24
Signature Algorithm: sha256WithRSAEncryption
42:89:d0:26:65:ee:f3:7b:6d:44:c2:5b:76:95:b4:cc:3a:14:
bc:69:dc:fb:76:48:89:59:3a:ea:14:16:0f:c5:03:aa:80:1d:
82:a3:f5:af:29:2f:fb:97:8f:86:49:63:c3:15:1c:8b:1b:c4:
ff:aa:e2:cd:ea:5a:24:2e:3c:46:43:e8:aa:12:17:7a:2e:b0:
06:69:4c:c0:ec:df:65:49:39:6a:a6:bc:35:4e:f6:b5:92:d0:
57:f0:af:dd:24:1c:41:04:db:55:12:57:1d:a9:3c:3d:38:59:
b1:e4:be:fa:84:0c:8e:b4:96:55:f3:fe:08:8b:c1:1a:9a:d3:
fa:a8:b6:f4:85:8f:4b:df:4d:9c:a6:e7:30:62:91:57:23:af:
0b:d7:97:4f:b5:38:4c:4e:80:58:b0:48:a0:b0:9a:d1:62:f7:
b1:e8:b0:f2:91:b2:0b:b3:ab:c2:7e:e6:2e:16:a5:2d:9b:54:
2b:49:23:03:fc:62:81:11:4d:5c:1c:00:13:67:64:75:c7:0c:
75:cb:04:d9:63:5f:a9:96:6b:4c:de:5a:f0:d2:85:0c:f9:9c:
93:20:c6:03:4a:d3:5e:bf:1d:d0:68:aa:9b:0c:41:f2:dd:ab:
e5:3f:34:83:03:14:67:c8:5c:c6:e6:f1:de:c6:0c:1e:aa:61:
f8:2e:fd:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:51 2024 by rpki-client on console-ams.rpki-client.org