Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/HhffkNuqZeVYB5LWDkkEePwtxBo.roa
File: HhffkNuqZeVYB5LWDkkEePwtxBo.roa (raw, json)
Hash identifier: Q4SpVAdv3e5+pawg+IjH395rFo5KA/8HI0Zx+6fMOHw=
Subject key identifier: 1E:17:DF:90:DB:AA:65:E5:58:07:92:D6:0E:49:04:78:FC:2D:C4:1A
Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Certificate serial: 0183A7DEB4188F72723802BA32EB997ABA79
Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/HhffkNuqZeVYB5LWDkkEePwtxBo.roa
Signing time: Wed 05 Oct 2022 11:18:53 +0000
ROA not before: Wed 05 Oct 2022 11:18:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396426
IP address blocks: 176.111.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a7:de:b4:18:8f:72:72:38:02:ba:32:eb:99:7a:ba:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Validity
Not Before: Oct 5 11:18:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e17df90dbaa65e5580792d60e490478fc2dc41a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:88:49:ae:a1:c0:dd:d8:55:a0:42:bb:75:28:
90:d1:21:eb:4f:06:3f:76:9c:c5:db:34:63:f1:31:
2f:76:d4:69:e4:49:74:74:4c:b2:13:1a:2f:f3:fe:
ed:c9:d3:7a:85:f7:06:e0:48:1c:b9:ef:69:e6:2e:
59:b9:b7:73:25:2e:0b:ab:f9:24:02:72:44:d2:b9:
f0:ff:23:9a:db:dc:3c:d2:5d:50:fb:e0:a2:52:04:
ae:89:10:ad:93:7c:3f:ee:19:8e:3e:22:fd:4c:61:
19:2f:8a:9f:78:31:04:f0:15:f5:ab:7f:ba:9e:a5:
a7:bb:74:84:e3:10:ee:33:03:ea:29:b0:65:8f:fb:
3e:08:d8:fd:09:cd:f2:ca:39:22:9c:0c:eb:ce:2b:
29:7e:d3:af:07:d1:c8:62:82:57:74:ed:ef:33:91:
b9:de:28:40:f8:6e:59:f9:51:34:fa:49:98:2b:58:
82:54:39:e7:f1:bc:c4:3a:77:3d:44:ac:58:c2:64:
4e:4f:4a:2d:74:69:2d:03:05:68:fb:b6:eb:63:1f:
61:a1:ef:05:c3:50:45:20:b2:b7:81:54:26:e8:fd:
ed:3b:d1:24:f2:e7:59:ef:1a:8b:38:0f:cc:8b:bd:
f6:6a:f7:41:ad:04:b2:13:45:7f:02:1a:8e:11:09:
4e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:17:DF:90:DB:AA:65:E5:58:07:92:D6:0E:49:04:78:FC:2D:C4:1A
X509v3 Authority Key Identifier:
keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/HhffkNuqZeVYB5LWDkkEePwtxBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.111.219.0/24
Signature Algorithm: sha256WithRSAEncryption
43:f8:af:42:82:4c:93:63:eb:62:54:f2:b6:f9:7a:77:6f:cf:
21:53:1d:7c:04:ec:8f:38:31:19:e9:b8:73:dd:f5:38:91:8d:
8d:a7:2c:c0:d1:52:9a:17:c4:1b:aa:63:c1:bd:a0:52:0c:f0:
fe:a9:c5:3d:e7:62:72:1d:35:0d:30:a1:e6:81:c9:ce:99:20:
06:eb:70:aa:e5:d3:c6:19:96:00:cc:02:30:13:33:5b:55:04:
98:1c:97:6e:d3:15:70:34:e2:58:4e:6a:0e:5d:c7:89:99:88:
08:3d:f6:68:a2:a9:6d:b3:40:1c:9d:59:0b:2c:8e:de:5c:39:
0a:0a:f6:4b:5f:bb:23:55:0b:84:98:1c:86:52:14:a4:fc:b7:
43:9c:b7:00:bb:64:05:f8:21:2e:fd:d2:ae:70:7a:51:f3:d1:
27:81:f8:3d:9f:56:f6:04:fd:21:45:ab:7b:83:a2:e9:71:31:
ac:6b:12:54:32:5d:8e:c0:f9:ce:f5:e3:5c:fc:34:43:30:5d:
9c:10:a5:5f:0f:58:0b:6b:c5:52:21:e5:08:29:4e:18:7d:9f:
3a:5f:da:7a:dc:8c:bb:6a:36:eb:fb:ad:1b:e6:d6:85:02:ac:
e2:f0:fb:8b:d2:c4:51:c4:9a:53:b5:4c:3e:9d:51:65:b0:e0:
5b:3f:41:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:48 2023 by rpki-client on console-fra.rpki-client.org