Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/HmtURvZEd41h535vHKbAUz5k5QQ.roa
File: HmtURvZEd41h535vHKbAUz5k5QQ.roa (raw, json)
Hash identifier: /WL5Lm69NOObBScEDRXS6D7XCBfOWKEOzbHO4KtK6Gg=
Subject key identifier: 1E:6B:54:46:F6:44:77:8D:61:E7:7E:6F:1C:A6:C0:53:3E:64:E5:04
Certificate issuer: /CN=ffdec4a46a6e6e4f9a92d0ba2e0b3ab5658be1bd
Certificate serial: 19DB4D95
Authority key identifier: FF:DE:C4:A4:6A:6E:6E:4F:9A:92:D0:BA:2E:0B:3A:B5:65:8B:E1:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_97EpGpubk-aktC6Lgs6tWWL4b0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/HmtURvZEd41h535vHKbAUz5k5QQ.roa
Signing time: Sat 01 Jan 2022 04:55:09 +0000
ROA not before: Sat 01 Jan 2022 04:55:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 185.169.235.0/24 maxlen: 24
2a04:92c7:16::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 433802645 (0x19db4d95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffdec4a46a6e6e4f9a92d0ba2e0b3ab5658be1bd
Validity
Not Before: Jan 1 04:55:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e6b5446f644778d61e77e6f1ca6c0533e64e504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4b:20:2d:2b:6f:05:7e:f7:93:07:b0:ae:a8:
be:e7:83:17:c8:a6:3c:5b:3c:45:d9:3e:1b:4e:bd:
4a:35:fd:5e:e7:3f:fa:fe:c4:55:29:a0:6a:37:86:
1f:53:fe:18:58:70:3b:ba:fc:92:c2:7d:c5:e0:d2:
b8:18:dc:b0:05:ea:6d:a9:23:23:6f:b2:52:ad:dc:
78:b7:ca:11:88:a0:04:03:48:39:4f:bc:a4:ef:bf:
7e:f5:69:32:8f:5e:c2:fd:ca:6c:f1:fb:3c:59:18:
48:ac:2e:ba:92:15:95:e3:41:54:ef:84:46:02:2d:
82:84:db:1d:a6:24:80:3e:a6:14:41:c5:ca:78:89:
23:2f:19:3f:c8:02:98:2d:3f:db:2a:fd:03:1d:89:
4c:70:a0:01:e0:f6:e0:50:87:9b:35:37:62:63:39:
05:d5:a2:cd:bf:7e:b8:ef:2d:89:0c:f2:be:b1:e5:
e6:95:26:5c:49:8d:c6:d5:57:55:e1:6d:e9:f5:e1:
2d:cf:7d:47:4a:98:92:5e:cd:b0:cf:27:25:7f:6a:
ba:f4:b2:7f:2a:f2:8f:04:6f:23:75:10:03:87:d5:
2c:30:7f:4e:59:d7:b7:f2:95:08:e2:62:88:3b:e8:
14:bd:99:45:e1:3a:be:61:59:19:2a:1d:ff:c3:1d:
ab:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:6B:54:46:F6:44:77:8D:61:E7:7E:6F:1C:A6:C0:53:3E:64:E5:04
X509v3 Authority Key Identifier:
keyid:FF:DE:C4:A4:6A:6E:6E:4F:9A:92:D0:BA:2E:0B:3A:B5:65:8B:E1:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_97EpGpubk-aktC6Lgs6tWWL4b0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/HmtURvZEd41h535vHKbAUz5k5QQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/_97EpGpubk-aktC6Lgs6tWWL4b0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.235.0/24
IPv6:
2a04:92c7:16::/48
Signature Algorithm: sha256WithRSAEncryption
16:08:51:9e:c5:43:57:08:be:75:c9:42:dc:79:35:eb:b7:f7:
aa:bc:58:60:b2:0f:53:df:6a:64:c5:78:c3:f3:26:9b:ce:8c:
c3:0d:64:11:67:2b:a7:23:58:4c:89:9d:c5:7e:c8:f5:d9:1f:
b2:f7:ea:e8:72:47:f0:64:d6:aa:cc:ca:31:01:00:0f:54:7b:
b4:99:00:c0:d0:39:2a:d0:5e:22:79:b9:0f:84:dc:37:15:f3:
ca:4b:18:cc:b6:b7:4b:f8:71:0e:33:75:d5:76:d0:06:7e:db:
ff:02:80:22:19:85:a8:be:e8:69:41:77:b6:50:db:24:70:b1:
43:d6:e6:95:b4:ae:77:aa:f4:34:47:4a:44:f8:b5:43:5f:b8:
a9:c0:7a:2e:a2:e8:93:65:aa:d3:f5:8b:7e:67:67:8e:fa:32:
9c:23:1e:c7:24:04:43:e4:67:2f:c9:c5:70:26:6f:61:5c:8e:
d3:fc:c2:95:6a:cd:dc:aa:33:3f:90:66:8c:a8:10:11:cd:9d:
2b:33:a4:98:f0:fa:df:c2:7b:7e:67:53:a8:b4:8a:f5:7d:93:
65:98:a0:0e:e2:bb:4c:34:3f:b4:36:6f:c0:8a:cd:7c:5c:7a:
3c:d0:29:ba:29:f3:8b:c4:96:60:4c:fd:89:ee:71:e4:44:58:
3b:78:7f:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:52 2024 by rpki-client on console-ams.rpki-client.org