Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/8baa9c-0ef2-42fb-b3d6-5a95cc80cd1b/1/Hzbbb8I11gxMlUzYSlCh_YUUL7g.roa
File: Hzbbb8I11gxMlUzYSlCh_YUUL7g.roa (raw, json)
Hash identifier: m1gSrPBQJ/KgbXlgI43DTfucYxGdANsxEXUynGtczY4=
Subject key identifier: 1F:36:DB:6F:C2:35:D6:0C:4C:95:4C:D8:4A:50:A1:FD:85:14:2F:B8
Certificate issuer: /CN=b5afa37bd0ddadeb7fea2b9be64b1108e20de9b4
Certificate serial: 0184757132CB169960C1202C910FBBC9A78F
Authority key identifier: B5:AF:A3:7B:D0:DD:AD:EB:7F:EA:2B:9B:E6:4B:11:08:E2:0D:E9:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ta-je9Ddret_6iub5ksRCOIN6bQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/8baa9c-0ef2-42fb-b3d6-5a95cc80cd1b/1/Hzbbb8I11gxMlUzYSlCh_YUUL7g.roa
Signing time: Mon 14 Nov 2022 09:21:03 +0000
ROA not before: Mon 14 Nov 2022 09:21:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209030
IP address blocks: 82.202.187.0/24 maxlen: 24
82.202.191.0/24 maxlen: 24
82.202.190.0/24 maxlen: 24
82.202.189.0/24 maxlen: 24
82.202.188.0/24 maxlen: 24
82.202.186.0/24 maxlen: 24
2a13:c80::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:75:71:32:cb:16:99:60:c1:20:2c:91:0f:bb:c9:a7:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5afa37bd0ddadeb7fea2b9be64b1108e20de9b4
Validity
Not Before: Nov 14 09:21:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f36db6fc235d60c4c954cd84a50a1fd85142fb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:4a:73:a9:fb:62:ea:76:25:b4:ae:36:8d:ae:
ec:1e:b9:be:24:1d:76:ed:f8:8d:57:4f:e4:ae:d5:
69:ae:6a:d9:af:96:f5:bd:9d:6e:e9:d7:d1:c6:a4:
23:52:0e:33:86:c7:ce:97:2c:21:fb:c3:74:ea:b5:
40:5d:a7:49:59:5f:2d:e3:59:a7:dd:f5:6e:30:0d:
ea:0c:ea:77:b7:84:71:8f:ee:76:26:3e:0f:2d:ec:
b7:d0:a6:12:50:b3:48:7d:a3:66:b3:ab:c5:04:92:
4a:d4:fa:0e:9e:d4:ad:30:08:1e:8c:a4:62:a9:d0:
ac:27:98:c7:57:75:07:8f:47:e7:9c:16:82:5e:c3:
5c:f3:5f:b7:03:e6:86:cc:5c:36:6e:08:6f:ee:80:
4e:4b:32:10:22:cf:ae:6b:19:74:fa:0a:69:8f:f4:
00:3e:c1:eb:03:e9:11:24:ac:24:28:39:8e:2c:13:
93:51:c3:86:fd:11:c4:e1:63:3b:d7:6c:26:29:57:
25:74:2a:32:14:48:3d:bc:94:38:37:a4:13:e1:60:
e4:cc:a8:dd:1b:c0:0a:16:eb:d5:3f:f4:d7:21:20:
4a:ef:81:d5:49:50:68:55:a3:bd:bf:cc:fe:e6:77:
27:2d:4b:4d:ae:29:55:bb:f1:fa:9b:8a:9c:ff:cb:
05:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:36:DB:6F:C2:35:D6:0C:4C:95:4C:D8:4A:50:A1:FD:85:14:2F:B8
X509v3 Authority Key Identifier:
keyid:B5:AF:A3:7B:D0:DD:AD:EB:7F:EA:2B:9B:E6:4B:11:08:E2:0D:E9:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ta-je9Ddret_6iub5ksRCOIN6bQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/8baa9c-0ef2-42fb-b3d6-5a95cc80cd1b/1/Hzbbb8I11gxMlUzYSlCh_YUUL7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/8baa9c-0ef2-42fb-b3d6-5a95cc80cd1b/1/ta-je9Ddret_6iub5ksRCOIN6bQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.202.186.0-82.202.191.255
IPv6:
2a13:c80::/32
Signature Algorithm: sha256WithRSAEncryption
76:ae:21:11:2f:08:0b:d2:af:9c:a2:1f:ab:ad:1b:20:92:dc:
d6:38:41:1b:fa:a2:ad:b9:c3:22:e3:f6:ff:c8:7d:9f:d1:5f:
44:32:df:8e:88:3f:ec:53:41:a4:ff:b3:71:79:03:fc:35:b2:
d1:7c:49:a0:db:58:43:0e:7a:eb:4a:f1:77:d0:1b:13:83:06:
ff:8e:28:09:e6:6c:85:28:a5:59:34:4e:d4:42:1b:b8:93:46:
93:0c:a2:23:67:9e:10:e4:68:78:40:09:7f:a7:51:f2:84:12:
c2:7b:87:15:41:03:e9:37:8c:ed:1b:6d:c6:9d:8c:e0:fb:e2:
a6:f8:89:dc:15:65:0d:79:80:59:d8:35:d3:5c:62:8c:75:65:
95:75:d0:41:b3:65:c3:d4:15:e3:91:1f:75:2d:c9:c2:23:2d:
85:58:ed:3e:6c:98:1f:18:79:b1:74:c1:f9:d3:cc:b2:5a:39:
b7:3b:14:7e:f0:62:25:b0:77:30:4f:41:e4:a7:60:70:35:21:
c2:3a:d9:2d:fa:cf:36:95:fa:93:55:57:a5:54:47:50:00:d7:
81:08:45:99:37:a1:f4:72:0d:de:79:73:58:30:f1:ea:14:ee:
8b:8f:da:0f:57:40:e4:a6:b0:dd:a0:7b:23:75:1d:cb:63:59:
58:27:a5:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:12 2024 by rpki-client on console-ams.rpki-client.org