Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/HhK_GIcVrCDeM1kgkTbX2RC5iUo.roa
File: HhK_GIcVrCDeM1kgkTbX2RC5iUo.roa (raw, json)
Hash identifier: V6QTE/1w1z0bSXsP9wKOtkAArsmnx/9W7oc3qbyAezs=
Subject key identifier: 1E:12:BF:18:87:15:AC:20:DE:33:59:20:91:36:D7:D9:10:B9:89:4A
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 098BB8CE
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/HhK_GIcVrCDeM1kgkTbX2RC5iUo.roa
Signing time: Wed 01 Jun 2022 17:33:20 +0000
ROA not before: Wed 01 Jun 2022 17:33:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202492
IP address blocks: 178.253.0.0/21 maxlen: 21
83.147.196.0/22 maxlen: 22
83.147.195.0/24 maxlen: 24
94.241.188.0/22 maxlen: 22
94.241.144.0/21 maxlen: 21
83.147.200.0/22 maxlen: 22
83.147.204.0/22 maxlen: 22
178.253.14.0/23 maxlen: 23
178.253.17.0/24 maxlen: 24
83.147.208.0/24 maxlen: 24
83.147.209.0/24 maxlen: 24
178.253.20.0/23 maxlen: 23
178.253.24.0/23 maxlen: 23
83.147.218.0/23 maxlen: 23
178.253.30.0/24 maxlen: 24
83.147.220.0/23 maxlen: 23
83.147.224.0/22 maxlen: 22
178.253.36.0/23 maxlen: 23
178.253.34.0/23 maxlen: 23
83.147.228.0/22 maxlen: 22
178.253.46.0/23 maxlen: 23
83.147.236.0/22 maxlen: 22
178.253.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160151758 (0x98bb8ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jun 1 17:33:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e12bf188715ac20de3359209136d7d910b9894a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ce:7e:61:ef:41:37:4b:3f:c1:e9:fa:29:98:
7d:07:43:0d:fd:3a:20:dd:75:3d:9b:11:7b:59:18:
d0:2e:9d:fc:bc:73:f1:85:cf:3d:9d:9a:56:fe:2d:
ce:d5:40:3a:ad:df:53:4c:d9:c1:05:79:d7:00:e6:
3c:ab:11:32:c8:67:ee:63:03:38:43:5d:44:99:fb:
57:a2:e9:44:71:f2:c8:f5:03:3d:a2:24:30:6d:61:
61:cd:a7:92:b4:7b:92:06:48:18:35:ae:e5:82:08:
e9:6f:00:0f:7a:93:c5:98:a5:f3:25:a9:4c:98:38:
e3:0a:cc:20:05:fb:64:fb:4c:64:03:b6:de:be:a3:
d0:ad:0d:24:e7:eb:ba:55:eb:4b:86:a0:9c:59:66:
69:21:dd:ac:b3:03:89:c2:d4:b8:88:15:5d:1e:b2:
f8:f7:86:bc:2d:38:a7:4c:0b:8f:61:9d:e3:5b:c3:
1f:fa:ad:84:5e:ad:ab:43:a9:6e:3c:c4:83:62:eb:
3c:8c:cf:0b:b1:6d:b8:eb:a0:22:cb:1a:a2:02:9e:
56:88:3a:9b:a6:b4:f1:5b:d1:31:c8:a2:8a:d9:22:
b6:3d:6b:6e:f7:04:9f:4e:e5:ac:e5:08:dc:84:e0:
61:f9:12:0a:15:d3:13:9b:24:06:cc:e8:0d:fe:15:
6c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:12:BF:18:87:15:AC:20:DE:33:59:20:91:36:D7:D9:10:B9:89:4A
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/HhK_GIcVrCDeM1kgkTbX2RC5iUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.195.0-83.147.209.255
83.147.218.0-83.147.221.255
83.147.224.0/21
83.147.236.0/22
94.241.144.0/21
94.241.188.0/22
178.253.0.0/21
178.253.14.0/23
178.253.17.0/24
178.253.20.0/23
178.253.24.0/23
178.253.30.0/24
178.253.34.0-178.253.37.255
178.253.46.0/23
178.253.54.0/24
Signature Algorithm: sha256WithRSAEncryption
60:a1:c5:84:73:6a:d2:40:e6:e6:f5:ec:3b:11:11:cb:8d:19:
de:a6:ca:98:46:fe:6e:fa:97:b3:e8:88:20:bd:f1:56:c6:7b:
ec:e5:2e:7a:e4:f6:c9:f8:f5:85:a7:4f:b4:a8:9c:fc:95:df:
df:e3:17:a5:f2:60:98:d5:5b:fd:c1:69:ad:68:b8:82:b6:58:
2a:a2:7d:83:66:19:ad:11:73:a1:7d:30:49:b6:85:5b:2b:07:
e0:e9:9b:97:4b:da:f4:8a:ef:fe:58:e0:c7:2f:2a:1b:e6:5d:
83:8e:71:68:e8:c8:81:b1:0e:fa:5a:3a:27:bb:96:db:33:bf:
99:a6:05:c5:88:35:c8:6e:65:b8:0f:9d:07:f0:58:06:69:25:
c1:b5:f0:b1:4b:7e:40:9d:e0:3d:6e:da:4d:79:b0:1e:a4:bf:
b1:05:d3:10:34:2a:dc:a8:16:dc:2e:3b:ed:0a:16:25:81:7a:
8b:2f:ea:8d:89:23:fa:f6:4e:b9:75:59:0d:42:6f:0e:5f:4d:
4e:b8:0d:22:6f:00:58:a7:17:c6:70:c8:9c:8f:63:eb:67:1e:
d6:3f:53:ec:68:6c:05:13:34:94:b4:5b:5e:22:1b:de:1a:dc:
bb:29:d1:ae:45:26:82:a4:8b:32:d4:29:dc:7a:f4:74:0f:aa:
71:4b:b7:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:44 2023 by rpki-client on console-fra.rpki-client.org