Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/4d5660-5364-4454-a9be-4f8902bfe172/1/hqptBEh-VFucas-TK1jchVsUAPA.roa
File: hqptBEh-VFucas-TK1jchVsUAPA.roa (raw, json)
Hash identifier: znBan8kJAZuUA5FzcRbXEgkvabk8lsekU3smUgNeP5Y=
Subject key identifier: 86:AA:6D:04:48:7E:54:5B:9C:6A:CF:93:2B:58:DC:85:5B:14:00:F0
Certificate issuer: /CN=fd1196d98decd38eb03f5f06b48e556c74f231f4
Certificate serial: 02F329D2
Authority key identifier: FD:11:96:D9:8D:EC:D3:8E:B0:3F:5F:06:B4:8E:55:6C:74:F2:31:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_RGW2Y3s046wP18GtI5VbHTyMfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/4d5660-5364-4454-a9be-4f8902bfe172/1/hqptBEh-VFucas-TK1jchVsUAPA.roa
Signing time: Sat 01 Jan 2022 15:58:22 +0000
ROA not before: Sat 01 Jan 2022 15:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202339
IP address blocks: 185.47.96.0/22 maxlen: 22
185.47.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49490386 (0x2f329d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd1196d98decd38eb03f5f06b48e556c74f231f4
Validity
Not Before: Jan 1 15:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86aa6d04487e545b9c6acf932b58dc855b1400f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:85:4f:4e:2e:b6:7b:ed:f1:54:4f:5c:db:0a:
6d:10:60:3b:9c:f6:1d:3f:67:8a:ec:7c:20:e8:4e:
ef:ad:07:67:51:7c:a4:68:67:7e:5f:69:88:bd:fc:
d9:f9:18:b7:49:0c:2e:1e:1f:aa:25:18:4e:f7:14:
95:3b:bb:09:d6:39:4c:f3:46:67:0f:e9:6c:8d:5e:
38:e1:f5:1b:42:18:77:14:14:99:da:24:30:2f:9c:
5e:68:ed:4a:10:ac:9e:8b:24:35:e3:b5:af:12:7d:
ed:14:fc:ef:cd:6d:11:0d:79:9c:96:25:06:47:79:
3d:cf:de:46:70:4f:25:b8:4b:5b:1d:71:bc:92:39:
be:fe:ef:17:58:31:17:dd:d5:f0:8d:83:8b:cc:a7:
25:cd:c2:84:93:f2:b3:35:1f:94:7e:b2:9e:8b:74:
58:7a:4f:72:03:a3:36:2a:6e:a2:6c:67:65:04:42:
3d:c6:dc:51:f5:28:70:5a:6b:7f:46:a6:97:f1:48:
b4:22:08:a1:79:8d:3f:c4:8d:8f:be:1b:ff:a8:d1:
f4:f8:da:b7:52:b6:8c:15:56:7a:d2:dd:88:c3:fc:
f3:84:86:2e:d9:3f:8d:21:6f:36:07:a4:74:9e:f2:
04:15:bb:f7:17:d4:55:90:a3:12:da:bf:8d:99:20:
de:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:AA:6D:04:48:7E:54:5B:9C:6A:CF:93:2B:58:DC:85:5B:14:00:F0
X509v3 Authority Key Identifier:
keyid:FD:11:96:D9:8D:EC:D3:8E:B0:3F:5F:06:B4:8E:55:6C:74:F2:31:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_RGW2Y3s046wP18GtI5VbHTyMfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/4d5660-5364-4454-a9be-4f8902bfe172/1/hqptBEh-VFucas-TK1jchVsUAPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/4d5660-5364-4454-a9be-4f8902bfe172/1/_RGW2Y3s046wP18GtI5VbHTyMfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.47.96.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:fe:17:b3:1b:27:2f:10:0d:05:7c:41:c2:dd:6b:0f:d5:af:
62:17:3e:db:34:33:af:88:0d:03:f7:13:a8:06:04:db:03:4d:
d5:16:ce:1f:be:fc:37:88:b6:87:95:98:ee:4b:66:da:62:52:
1d:c6:23:9a:59:8d:21:51:c7:22:48:f8:2a:83:f8:2d:4a:a0:
73:10:d6:02:85:62:d3:21:6c:41:13:0f:1f:c4:d9:a4:78:f7:
58:03:03:07:22:b2:1c:19:98:9b:b0:b4:6a:24:43:0d:bc:1e:
b2:c2:d9:46:ca:ec:95:28:a0:23:30:a2:7a:2f:96:ef:c5:f0:
8e:27:f9:27:fa:e3:f9:0a:84:ca:cb:bb:94:93:ad:6d:d3:e2:
08:e2:d9:25:e1:ce:81:5f:43:17:35:6f:99:97:ea:64:67:89:
ea:89:6c:d8:ec:6a:b2:f2:1a:b7:19:6e:21:93:72:ba:1f:f2:
12:20:e7:60:79:b5:8d:a9:ae:9d:7b:76:06:69:42:33:fd:ea:
83:a3:32:96:5e:f3:a4:de:1d:52:43:cb:25:4f:40:82:2d:5e:
2e:a7:b5:ae:4b:c5:c0:31:8c:0f:c1:9d:6f:b7:d0:fe:80:4a:
8e:e6:77:02:e9:52:cd:32:47:33:b2:e8:29:55:29:91:90:36:
cd:a8:da:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:22 2024 by rpki-client on console-ams.rpki-client.org