Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/HGN6zEBu_7i0pZ4EuDADweMhuf8.roa
File: HGN6zEBu_7i0pZ4EuDADweMhuf8.roa (raw, json)
Hash identifier: h2orMAJz413f3hlIiGr72t6itLNpJ0IgdKT9+RaMO6Y=
Subject key identifier: 1C:63:7A:CC:40:6E:FF:B8:B4:A5:9E:04:B8:30:03:C1:E3:21:B9:FF
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01841DB290BE9FFC2828543CBB75975F495F
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/HGN6zEBu_7i0pZ4EuDADweMhuf8.roa
Signing time: Fri 28 Oct 2022 08:25:52 +0000
ROA not before: Fri 28 Oct 2022 08:25:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204574
IP address blocks: 188.164.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1d:b2:90:be:9f:fc:28:28:54:3c:bb:75:97:5f:49:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 28 08:25:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c637acc406effb8b4a59e04b83003c1e321b9ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:84:15:ad:12:b9:b6:4a:d3:33:7f:c6:bd:9b:
d5:0a:a8:2a:8e:f8:41:f8:4b:1b:b7:ad:eb:67:1e:
65:ba:2b:8c:ac:15:77:15:61:dc:e2:20:60:61:54:
cb:8f:9c:24:d5:35:ed:67:10:f2:07:ee:75:31:10:
04:e7:7e:15:99:c5:d2:06:05:60:d4:96:31:03:d9:
a9:35:a8:d4:a0:55:12:30:ee:d6:05:ba:83:c0:a9:
6d:9f:db:57:42:43:d2:eb:90:45:52:45:c1:ff:b0:
ff:ce:dd:3c:e2:02:44:d5:18:95:01:f5:b7:cc:05:
45:6f:54:f2:42:05:5d:93:2c:63:6e:d8:56:3d:1f:
ca:70:70:31:7c:c4:f0:e8:06:2a:2e:75:10:d6:e3:
16:6e:c5:b4:c8:84:60:5b:b4:0d:6b:be:97:33:3c:
a1:b4:56:c4:90:3e:8d:5a:b5:da:82:84:eb:ea:ad:
fd:02:b4:64:eb:2b:f7:65:86:f7:ee:88:9a:cd:95:
c6:16:3f:9c:4a:b7:3b:81:70:14:5b:85:ac:2f:e5:
41:fb:7c:67:08:34:04:98:8d:6f:84:81:4d:73:f9:
b6:35:a9:53:f5:73:33:75:e0:b5:71:51:ee:25:d2:
ff:7a:15:63:18:8e:1d:bc:90:ba:71:87:d6:6b:e9:
cd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:63:7A:CC:40:6E:FF:B8:B4:A5:9E:04:B8:30:03:C1:E3:21:B9:FF
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/HGN6zEBu_7i0pZ4EuDADweMhuf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.164.210.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:e0:27:d8:cd:2c:c2:b4:c1:8d:c5:e3:8e:d6:25:d8:78:dc:
1f:34:06:c8:ab:33:4e:27:2d:1b:bb:32:21:0f:21:d8:60:20:
b8:72:6d:f8:8f:10:9b:93:2b:e0:bf:35:d9:ce:7c:04:49:76:
df:7a:d6:f8:5a:be:19:f9:82:41:87:e8:ad:89:e3:d6:cd:be:
25:0f:5a:90:9f:c2:95:27:36:71:8a:5c:8d:c1:ba:a1:4a:a2:
68:0a:39:10:08:94:d2:46:e6:50:7c:53:67:f0:35:05:26:fc:
88:93:a0:55:87:80:6e:f8:76:c3:53:53:cb:eb:0d:82:57:8d:
de:cd:47:88:93:04:f1:3d:8e:53:6e:52:b7:be:f5:6b:5a:66:
6c:5a:c6:7e:ed:9c:07:66:a6:df:97:ec:10:bb:34:cb:9b:74:
49:9a:86:fe:1a:0f:7c:10:07:34:d1:22:5b:94:13:44:8d:18:
33:1c:30:f0:dc:e8:80:b5:34:11:44:59:a8:82:71:cb:88:1e:
7d:53:ff:30:77:b8:a2:c5:cf:52:a9:07:84:f6:2e:a5:df:42:
2a:9c:ab:1c:f8:7c:5f:a7:81:e7:bc:af:ca:2f:fc:2c:10:e5:
a6:2c:af:b9:06:83:87:2e:e7:35:a1:fe:f4:8e:25:60:3a:2b:
58:b2:ba:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:25 2024 by rpki-client on console-fra.rpki-client.org