Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/827332-0a02-423f-b07f-05290becdc61/1/H81VYu90xyWWf_V-QeHwXIHp08c.roa
File: H81VYu90xyWWf_V-QeHwXIHp08c.roa (raw, json)
Hash identifier: XoDeLxdLij96y2BoN1UYz4jbHR7SWe4UdhQ/Kz/2b2g=
Subject key identifier: 1F:CD:55:62:EF:74:C7:25:96:7F:F5:7E:41:E1:F0:5C:81:E9:D3:C7
Certificate issuer: /CN=6e6bcd1ee0415312babada96a5b4c7351bbca6bf
Certificate serial: 15AA1157
Authority key identifier: 6E:6B:CD:1E:E0:41:53:12:BA:BA:DA:96:A5:B4:C7:35:1B:BC:A6:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bmvNHuBBUxK6utqWpbTHNRu8pr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/827332-0a02-423f-b07f-05290becdc61/1/H81VYu90xyWWf_V-QeHwXIHp08c.roa
Signing time: Sat 01 Jan 2022 02:51:04 +0000
ROA not before: Sat 01 Jan 2022 02:51:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60924
IP address blocks: 185.177.186.0/24 maxlen: 24
185.177.184.0/22 maxlen: 24
185.177.184.0/24 maxlen: 24
185.177.185.0/24 maxlen: 24
185.177.187.0/24 maxlen: 24
185.23.197.0/24 maxlen: 24
185.23.198.0/24 maxlen: 24
185.23.196.0/22 maxlen: 24
185.23.196.0/24 maxlen: 24
185.23.199.0/24 maxlen: 24
146.71.94.0/23 maxlen: 24
146.71.94.0/24 maxlen: 24
146.71.95.0/24 maxlen: 24
185.92.128.0/22 maxlen: 24
185.92.128.0/24 maxlen: 24
185.92.131.0/24 maxlen: 24
185.92.129.0/24 maxlen: 24
185.92.130.0/24 maxlen: 24
2a0a:4380::/29 maxlen: 64
2a04:2600::/29 maxlen: 64
2a05:f1c0::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 363467095 (0x15aa1157)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e6bcd1ee0415312babada96a5b4c7351bbca6bf
Validity
Not Before: Jan 1 02:51:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fcd5562ef74c725967ff57e41e1f05c81e9d3c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:85:13:07:b3:76:87:41:9e:42:a7:85:ce:15:
d1:60:c3:7b:8b:40:4d:e1:19:52:47:8b:a6:2f:da:
6f:a3:dd:a6:97:2e:76:65:41:84:42:bb:d3:5d:2e:
58:df:46:39:72:de:03:1f:0c:b7:3a:a2:c0:4c:f7:
c4:9a:27:cf:c2:f0:28:8a:53:b0:a6:79:fa:38:4f:
d8:05:42:ca:6d:b6:21:c7:b6:eb:61:65:5d:41:94:
52:ae:41:91:9a:c2:ea:e0:a6:47:19:74:ee:01:30:
6c:cc:72:61:f7:a0:6c:f4:91:4c:ca:40:4d:4b:4e:
2e:c5:cc:92:ed:fd:66:5c:3b:f5:45:ca:80:3d:a5:
c0:67:1a:d9:21:b4:4e:69:81:1c:55:5a:25:b9:ad:
88:67:93:42:dd:6b:af:76:f6:98:a4:b8:55:5b:1a:
ae:78:8c:2f:a4:6d:88:63:45:aa:2a:bf:5d:45:bb:
27:5f:43:3a:9e:42:c3:69:65:f3:b3:0d:36:94:7b:
cd:f1:f5:ca:22:25:e4:fc:5a:61:7f:a8:ea:49:60:
89:ac:ae:72:38:39:3d:0f:02:c3:40:f5:e8:4b:d2:
af:19:4e:ec:32:7b:4b:e8:28:3c:a5:1b:66:57:c6:
c7:be:2b:e5:e1:c3:76:63:71:4e:f4:9e:75:32:6a:
31:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:CD:55:62:EF:74:C7:25:96:7F:F5:7E:41:E1:F0:5C:81:E9:D3:C7
X509v3 Authority Key Identifier:
keyid:6E:6B:CD:1E:E0:41:53:12:BA:BA:DA:96:A5:B4:C7:35:1B:BC:A6:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bmvNHuBBUxK6utqWpbTHNRu8pr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/827332-0a02-423f-b07f-05290becdc61/1/H81VYu90xyWWf_V-QeHwXIHp08c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/827332-0a02-423f-b07f-05290becdc61/1/bmvNHuBBUxK6utqWpbTHNRu8pr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.71.94.0/23
185.23.196.0/22
185.92.128.0/22
185.177.184.0/22
IPv6:
2a04:2600::/29
2a05:f1c0::/29
2a0a:4380::/29
Signature Algorithm: sha256WithRSAEncryption
18:62:cb:b4:d6:0c:cb:90:f0:ea:30:2e:99:57:d1:66:47:79:
2e:98:fa:40:1c:0e:72:f6:f6:4f:24:d1:21:5f:8c:ef:e6:32:
ac:84:d2:bd:4b:e7:46:30:48:81:bd:3e:b0:69:c0:04:74:3e:
4d:8f:1c:e3:8a:5b:3b:85:ae:2a:a6:40:d0:12:e6:e7:a8:04:
84:de:17:f2:6a:85:ea:81:90:a4:e2:ea:6d:e6:c0:76:40:a2:
39:e1:f7:54:02:2d:a6:50:d1:04:05:70:ad:91:3c:7a:03:db:
70:47:8e:1a:8c:bf:6e:50:19:d5:18:3f:f6:5a:b5:0f:df:7e:
c0:98:48:6a:7a:25:21:73:bd:fc:2b:24:1e:f0:b0:43:5a:ae:
37:1e:4a:52:08:3f:c9:d4:5d:e1:79:41:e7:0a:f4:cb:b2:0d:
0f:e7:86:94:02:eb:a7:59:96:a4:d2:e7:60:41:fe:e6:60:69:
5f:44:18:0c:8c:da:af:5d:0c:f1:12:36:5c:3d:de:b2:5f:52:
32:6b:64:53:e2:96:00:6e:a9:b2:2f:fb:44:09:3c:71:c7:c3:
38:e7:44:3f:5e:1e:d2:c0:1f:f0:25:9e:a1:50:1d:f5:cc:d9:
61:f9:51:b7:7d:15:8a:51:9b:a9:45:d5:72:b8:43:45:e4:37:
15:bb:3b:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:30 2023 by rpki-client on console-fra.rpki-client.org