Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/a59ee9-33cd-47df-8403-b9472a2c5b3e/1/HHnauLZyF-Kag-cOGj8aAG4aRBs.roa
File: HHnauLZyF-Kag-cOGj8aAG4aRBs.roa (raw, json)
Hash identifier: h69DDmDD7GLj7g1PsX3vlfUS8hePPdJpEYzO9An8WNg=
Subject key identifier: 1C:79:DA:B8:B6:72:17:E2:9A:83:E7:0E:1A:3F:1A:00:6E:1A:44:1B
Certificate issuer: /CN=4fbb63df06de00c843da63977349595471e51a26
Certificate serial: 28F93D54
Authority key identifier: 4F:BB:63:DF:06:DE:00:C8:43:DA:63:97:73:49:59:54:71:E5:1A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T7tj3wbeAMhD2mOXc0lZVHHlGiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/a59ee9-33cd-47df-8403-b9472a2c5b3e/1/HHnauLZyF-Kag-cOGj8aAG4aRBs.roa
Signing time: Sat 01 Jan 2022 12:05:34 +0000
ROA not before: Sat 01 Jan 2022 12:05:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199490
IP address blocks: 185.14.232.0/22 maxlen: 22
2a02:f000::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 687422804 (0x28f93d54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbb63df06de00c843da63977349595471e51a26
Validity
Not Before: Jan 1 12:05:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c79dab8b67217e29a83e70e1a3f1a006e1a441b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:65:55:c3:6a:de:66:a1:f0:c7:8f:08:52:22:
57:a8:26:a1:cf:9f:e6:71:49:bc:8f:0c:0a:84:50:
e2:13:e9:14:0d:1d:e6:70:4a:f6:07:22:eb:04:b2:
30:76:e3:c4:b1:61:fc:45:c4:88:ef:bc:13:ec:f7:
9d:9d:fc:6f:33:dd:5b:67:6d:f5:b2:47:04:dc:9c:
48:4e:90:01:20:ea:f5:e3:aa:eb:68:39:db:d2:b2:
ac:da:7c:ad:a6:81:51:34:d3:7c:7b:c2:04:b5:69:
17:6b:c4:39:14:d0:13:aa:b1:ac:5c:54:8a:a1:b6:
6a:99:5f:52:3b:40:1b:61:98:bc:22:1f:dc:78:a1:
92:b1:54:73:0c:8c:f0:9b:0b:65:78:86:b6:be:d4:
f2:7a:48:5b:8e:77:d5:0d:1d:83:87:1f:a7:bc:3e:
00:c6:1d:55:10:b4:f7:fb:ed:af:bf:6a:ee:14:34:
61:cb:d1:cb:32:0d:50:ba:2a:36:9b:6a:1b:07:98:
a4:a2:68:0f:bd:0b:35:b6:cf:23:fc:81:aa:76:b1:
0b:31:75:5b:71:6b:7e:40:86:a5:a1:1b:f6:e2:49:
e1:5e:26:6f:5c:7c:4f:b9:8a:02:c6:ae:88:a4:ed:
e2:19:9e:e3:43:20:c6:00:38:0f:a0:b1:a7:9b:44:
27:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:79:DA:B8:B6:72:17:E2:9A:83:E7:0E:1A:3F:1A:00:6E:1A:44:1B
X509v3 Authority Key Identifier:
keyid:4F:BB:63:DF:06:DE:00:C8:43:DA:63:97:73:49:59:54:71:E5:1A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T7tj3wbeAMhD2mOXc0lZVHHlGiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/a59ee9-33cd-47df-8403-b9472a2c5b3e/1/HHnauLZyF-Kag-cOGj8aAG4aRBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/a59ee9-33cd-47df-8403-b9472a2c5b3e/1/T7tj3wbeAMhD2mOXc0lZVHHlGiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.232.0/22
IPv6:
2a02:f000::/32
Signature Algorithm: sha256WithRSAEncryption
69:1b:df:fa:01:59:fc:4f:bf:95:f3:8d:e5:e4:af:a8:98:fc:
82:9b:68:04:a4:43:3e:64:ca:06:d3:ea:76:9f:1b:1a:42:76:
67:87:d7:ac:3c:6b:50:88:c7:55:19:4b:61:ce:6f:ba:ba:05:
61:3c:a7:d1:b0:fd:aa:06:87:f2:1b:c3:e9:c3:68:9d:46:7c:
30:65:a0:c7:b3:ce:ef:41:e8:79:48:66:7a:08:2f:09:d7:19:
0e:ea:12:5c:5f:cf:c7:a0:d8:fe:94:e7:4a:9d:57:eb:39:5e:
23:05:8b:a2:7d:96:76:27:f8:4a:39:d5:4b:d3:09:62:0e:1e:
7f:bc:32:df:21:8e:6a:5d:21:62:96:8b:74:d9:fd:7e:88:e9:
d1:68:b2:2f:61:9f:9e:72:5d:0e:4a:cd:d9:43:25:ff:97:4f:
3d:dd:ef:6f:f9:d7:2f:16:41:47:62:26:0d:d5:b6:7d:32:6e:
3c:39:22:fb:95:dd:15:ad:48:aa:33:fb:4c:9e:03:7b:f1:4b:
59:7a:6d:bb:5b:ca:d5:dc:7f:1c:85:c6:6f:cf:f7:69:46:7a:
a5:ed:06:df:a1:46:20:98:a8:b5:c8:92:7c:75:36:33:02:38:
5a:a4:5e:1b:fc:6e:1c:13:3f:8e:22:8e:a9:44:92:3f:34:60:
dd:24:28:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:46 2024 by rpki-client on console-fra.rpki-client.org