Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/HCjta9BrMqtqQYXWOCjQbYw5llk.roa
File: HCjta9BrMqtqQYXWOCjQbYw5llk.roa (raw, json)
Hash identifier: PBLmR0Pk+SbQ+9BrXIpVfPP24hNJnAxjH7Ulf9d56sE=
Subject key identifier: 1C:28:ED:6B:D0:6B:32:AB:6A:41:85:D6:38:28:D0:6D:8C:39:96:59
Certificate issuer: /CN=52e02224ffb971172e4935ed7dd965d1155089b6
Certificate serial: 010EE223
Authority key identifier: 52:E0:22:24:FF:B9:71:17:2E:49:35:ED:7D:D9:65:D1:15:50:89:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UuAiJP-5cRcuSTXtfdll0RVQibY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/HCjta9BrMqtqQYXWOCjQbYw5llk.roa
Signing time: Sat 01 Jan 2022 07:52:43 +0000
ROA not before: Sat 01 Jan 2022 07:52:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8791
IP address blocks: 185.121.16.0/22 maxlen: 22
185.121.16.0/24 maxlen: 24
185.121.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17752611 (0x10ee223)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52e02224ffb971172e4935ed7dd965d1155089b6
Validity
Not Before: Jan 1 07:52:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c28ed6bd06b32ab6a4185d63828d06d8c399659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:2e:6e:f8:9d:85:c8:13:92:bd:15:f4:ae:0d:
32:a2:8d:5f:81:00:8d:13:5b:93:72:1e:d2:d8:80:
ce:09:3e:54:b0:4a:1d:d2:eb:8b:b2:55:26:73:55:
62:5c:e4:ca:69:39:ca:41:6d:77:4b:4c:9f:21:3e:
c3:4f:4e:f7:06:dd:84:ee:4a:b5:b1:1e:74:6e:61:
e1:c9:e1:5c:6b:87:1d:05:c9:1c:ee:1e:ad:83:9a:
53:f3:c8:99:f3:54:79:0a:f5:48:eb:e0:56:64:44:
4d:91:1d:91:15:91:88:9a:82:07:12:b5:12:3d:cd:
8d:a7:73:d2:04:8e:c4:45:69:87:71:37:ff:aa:a3:
b6:18:d5:ff:42:90:2c:9f:94:5b:de:b1:3a:5f:7e:
c6:56:f6:04:34:4a:74:01:ae:0e:ab:3a:0f:25:fc:
0e:b0:45:75:4d:1d:a3:32:8b:17:2f:4c:1e:0a:bc:
7a:a1:94:4f:25:a8:ca:99:d9:c0:03:a2:a7:44:e3:
ee:17:95:7b:9b:91:1e:e6:dd:21:3f:07:92:11:c3:
4f:02:b2:ad:9c:61:81:2d:49:85:ae:f5:f8:20:42:
f0:01:4e:90:5e:2a:c4:25:ed:c8:b0:47:f6:6c:d5:
de:de:8f:84:5f:e0:39:1b:85:96:42:4c:a1:dc:4b:
39:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:28:ED:6B:D0:6B:32:AB:6A:41:85:D6:38:28:D0:6D:8C:39:96:59
X509v3 Authority Key Identifier:
keyid:52:E0:22:24:FF:B9:71:17:2E:49:35:ED:7D:D9:65:D1:15:50:89:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UuAiJP-5cRcuSTXtfdll0RVQibY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/HCjta9BrMqtqQYXWOCjQbYw5llk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.16.0/22
Signature Algorithm: sha256WithRSAEncryption
44:08:0d:83:66:f4:96:1f:9b:72:75:c7:8a:71:92:bd:99:5d:
8f:a9:cf:84:e2:9c:6b:9e:79:62:f2:64:9e:29:02:bd:14:94:
b5:e5:ec:a7:31:e3:68:8d:e0:7b:aa:8d:82:24:1b:b5:35:ab:
2f:df:f0:36:09:07:64:1e:ac:5c:56:fb:1b:9d:57:d7:ef:d6:
e6:d6:ad:e7:1d:8d:09:37:50:c8:61:13:e0:5f:e7:c8:e9:04:
64:12:b8:03:b7:6d:e0:60:91:61:a5:1f:8d:de:8a:75:0c:d5:
1c:10:10:9a:71:97:1b:36:fa:e9:56:b9:b1:2e:29:4b:e2:e7:
54:e0:af:f7:3c:ad:d2:ba:d6:db:39:ab:75:23:ff:d3:bf:d0:
a4:94:d0:aa:ee:6d:f0:0d:3c:0f:a4:a9:b5:a9:f5:f5:bc:ea:
4a:8a:d7:0e:9d:99:c8:88:d9:a4:d0:18:87:95:cc:07:75:1d:
38:32:b8:1c:dc:90:25:60:05:e8:08:9d:2d:11:45:e7:64:95:
67:9e:f9:b2:48:06:a4:b0:ee:89:60:58:9e:58:8a:86:0a:1f:
37:34:e9:1b:fb:33:9b:23:45:b3:ae:75:d7:38:95:fa:9a:75:
e4:9b:22:cd:fc:c4:e1:ba:03:f8:7b:4d:40:86:ac:cb:aa:57:
84:fe:1a:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:21 2024 by rpki-client on console-ams.rpki-client.org