Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/Hc3oq_2jrQcc69H3SiBhy80jUmM.roa
File: Hc3oq_2jrQcc69H3SiBhy80jUmM.roa (raw, json)
Hash identifier: bwhdgw+p0k7E5NZtb6H8DLhLnxeLYVgfJs8orTwPGBc=
Subject key identifier: 1D:CD:E8:AB:FD:A3:AD:07:1C:EB:D1:F7:4A:20:61:CB:CD:23:52:63
Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Certificate serial: 095079DA
Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/Hc3oq_2jrQcc69H3SiBhy80jUmM.roa
Signing time: Tue 28 Jun 2022 08:12:02 +0000
ROA not before: Tue 28 Jun 2022 08:12:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57107
IP address blocks: 194.190.129.0/24 maxlen: 29
194.190.128.0/24 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156269018 (0x95079da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Validity
Not Before: Jun 28 08:12:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1dcde8abfda3ad071cebd1f74a2061cbcd235263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:74:44:65:75:7d:78:30:bb:c4:f1:40:05:33:
1b:9f:c9:61:46:af:2e:3d:9f:8d:90:09:6d:ac:cc:
26:d2:27:32:a8:f8:fb:98:c8:ad:6b:f9:8a:24:9f:
69:42:72:ae:39:d1:8b:77:b3:70:ca:e9:f9:84:47:
6e:f0:c6:b4:94:22:24:ed:a1:3f:38:7e:c1:d7:23:
cc:75:4c:db:e8:9b:6e:d9:0c:11:bc:87:81:00:a4:
e0:ff:cc:32:f6:02:b6:6b:fc:66:39:97:ca:06:77:
36:98:59:ff:bb:8a:6c:57:0f:3d:13:64:53:3a:41:
07:e6:cf:68:74:6c:91:00:40:b4:cb:c8:bf:a7:cc:
89:00:af:35:79:3d:d3:ad:7c:7e:e3:3a:66:5a:80:
5f:be:b9:85:a6:3f:b0:40:41:56:a5:45:31:51:40:
a3:f0:25:51:18:12:f9:87:a3:b6:5e:bd:fb:8a:d3:
fa:59:82:50:e4:c5:d4:39:63:0d:80:ab:63:a5:a5:
15:da:d6:db:a1:93:85:69:61:fa:44:30:40:0d:26:
87:1b:6a:7d:d0:58:ca:46:7c:32:2c:61:c0:0e:38:
08:8e:db:0d:24:f4:83:97:cc:16:6a:6a:0b:c6:f9:
b1:9f:70:f8:cc:52:48:f4:e0:8d:aa:e2:89:8c:7e:
01:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:CD:E8:AB:FD:A3:AD:07:1C:EB:D1:F7:4A:20:61:CB:CD:23:52:63
X509v3 Authority Key Identifier:
keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/Hc3oq_2jrQcc69H3SiBhy80jUmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.190.128.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:6c:9a:99:d9:a3:46:1c:dc:52:d8:a1:cf:9d:d7:01:46:23:
84:4b:d2:3c:13:92:f7:35:da:30:9f:c9:37:07:54:96:d6:9b:
7a:42:e5:6a:1b:cc:65:14:3d:22:f2:4d:74:e6:c4:5a:e2:64:
41:24:48:cb:4b:15:f6:a2:1d:68:46:69:e7:02:99:e2:4c:15:
b8:b6:ba:ae:79:fc:08:65:fd:7a:15:14:fb:d0:97:9b:b4:53:
bd:ac:9d:04:1f:e5:13:63:81:5a:1e:dc:cf:8d:3f:60:25:67:
02:43:79:1a:43:23:1e:62:c8:8b:8e:c7:ec:29:81:bd:a5:cc:
a2:34:d8:9c:fa:d7:91:6c:fb:d0:93:ee:ed:88:eb:29:81:13:
e1:e4:5a:fe:d4:53:69:fa:56:f5:44:c6:ad:79:7e:a0:af:b8:
6f:bc:fc:f0:37:64:79:10:8a:8e:83:b9:95:72:6f:d3:bf:46:
ff:10:23:22:48:ed:d8:70:d4:23:fd:26:c7:38:f7:81:91:34:
6a:ba:14:2e:34:f7:f6:6b:24:7a:fb:a7:ea:91:be:90:c2:a1:
d4:6d:28:79:62:4e:41:f3:e2:e4:8b:ef:d3:47:e0:a6:92:ff:
10:b4:77:20:45:10:d4:5c:56:da:bd:e0:99:7e:93:a7:00:87:
1b:45:c9:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:00 2023 by rpki-client on console-fra.rpki-client.org