Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/fe3b56-94ca-4295-b0cc-10bed27d766e/1/HfAUPwXI9-pyjRBJqCaXYxzXk5c.roa
File: HfAUPwXI9-pyjRBJqCaXYxzXk5c.roa (raw, json)
Hash identifier: 7s2k2mm0YRH5LKQrA1RkBtv+ceBXUjYWE+JKo0BPb9o=
Subject key identifier: 1D:F0:14:3F:05:C8:F7:EA:72:8D:10:49:A8:26:97:63:1C:D7:93:97
Certificate issuer: /CN=5f0a0dd2f964e860f6ba4c176112a5d712ba93aa
Certificate serial: 0D734849
Authority key identifier: 5F:0A:0D:D2:F9:64:E8:60:F6:BA:4C:17:61:12:A5:D7:12:BA:93:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XwoN0vlk6GD2ukwXYRKl1xK6k6o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/fe3b56-94ca-4295-b0cc-10bed27d766e/1/HfAUPwXI9-pyjRBJqCaXYxzXk5c.roa
Signing time: Sat 01 Jan 2022 04:57:41 +0000
ROA not before: Sat 01 Jan 2022 04:57:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205002
IP address blocks: 185.233.20.0/22 maxlen: 32
2a0c:cf00::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225658953 (0xd734849)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f0a0dd2f964e860f6ba4c176112a5d712ba93aa
Validity
Not Before: Jan 1 04:57:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1df0143f05c8f7ea728d1049a82697631cd79397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:0f:7a:e6:5e:11:d6:fd:13:ee:8a:1f:ec:ca:
59:f2:0a:cf:bb:b9:b3:f3:5b:eb:f1:0e:7d:28:5e:
35:4d:ff:a2:12:85:6e:85:88:0b:2c:f3:79:9e:c9:
7f:4c:d9:a0:bf:3b:b7:49:e7:79:31:d8:a8:25:86:
64:06:f2:f9:74:9d:4c:40:7f:a3:51:aa:d1:4b:a9:
34:58:de:83:00:5b:2b:04:db:c8:aa:22:d4:26:61:
6c:43:79:f6:f2:6a:84:b0:57:02:2b:9f:cd:09:77:
39:e0:24:05:00:19:52:2b:6f:f3:a8:79:0f:e7:c8:
bd:6b:54:95:de:bf:03:62:65:dd:74:2e:0c:5b:ed:
28:35:1e:1d:d8:67:bb:fc:43:6a:5a:e6:d4:26:f9:
2c:4a:cf:cb:0d:b3:51:0c:6f:64:98:64:b1:1a:69:
75:d1:0a:54:33:6f:43:32:58:28:a8:c7:99:b3:06:
e4:75:ef:e3:65:e8:fa:6e:a3:c0:ac:9b:ec:57:69:
5b:96:92:2b:78:b1:42:ed:a0:84:06:ea:f1:41:3f:
44:ed:f1:03:a2:a9:9c:2e:83:8d:08:bd:bf:5d:70:
61:69:53:82:22:e7:88:12:89:77:fc:d9:7f:90:42:
5b:fc:f5:c5:0f:a1:a0:f4:ba:f8:14:5d:a1:6b:c5:
6f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:F0:14:3F:05:C8:F7:EA:72:8D:10:49:A8:26:97:63:1C:D7:93:97
X509v3 Authority Key Identifier:
keyid:5F:0A:0D:D2:F9:64:E8:60:F6:BA:4C:17:61:12:A5:D7:12:BA:93:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XwoN0vlk6GD2ukwXYRKl1xK6k6o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fe3b56-94ca-4295-b0cc-10bed27d766e/1/HfAUPwXI9-pyjRBJqCaXYxzXk5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fe3b56-94ca-4295-b0cc-10bed27d766e/1/XwoN0vlk6GD2ukwXYRKl1xK6k6o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.20.0/22
IPv6:
2a0c:cf00::/29
Signature Algorithm: sha256WithRSAEncryption
49:d9:8f:15:dc:5a:07:f3:a3:5b:81:08:bb:9b:ae:88:38:a3:
97:41:f7:5f:df:e2:aa:0e:89:4b:d5:43:c0:34:02:b1:2d:1b:
5a:dc:c4:ee:57:2c:a5:82:29:1b:a8:87:d0:9b:83:5b:90:b0:
04:cc:4a:f7:37:1a:e6:51:dc:93:7b:0f:48:c7:03:ba:fd:b5:
bf:b8:1d:7f:18:ff:6d:c5:37:8c:79:89:15:a7:16:3b:84:bf:
07:37:68:f9:2f:4f:f8:a2:4f:aa:bc:38:1e:57:c7:13:8d:70:
f6:cb:f7:75:bc:73:2b:92:5e:73:5c:cd:1f:31:3c:ae:e7:83:
d8:78:51:af:65:c3:30:06:09:de:4d:14:eb:4d:18:0d:23:98:
21:4e:05:3c:84:18:98:4a:c9:cf:cc:ec:c2:c4:1b:9b:99:a8:
61:f4:bd:a3:06:c4:e1:33:b4:9a:2d:e9:69:85:ef:44:3b:4a:
34:4a:df:86:bb:f9:c1:93:3a:8e:d8:28:ab:56:46:d2:c8:d7:
4d:83:ba:70:2c:de:77:65:fc:b0:62:65:14:d0:65:ad:15:d7:
23:db:92:ae:27:5d:06:02:d5:2a:48:b0:84:0f:5c:88:99:2c:
d8:67:ef:d3:7f:92:13:50:a2:8b:18:bb:cb:59:9b:19:99:b5:
53:07:f5:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:23 2025 by rpki-client