Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HB3EmUX_YKVJf7zHnhhN9JSvlms.roa
File: HB3EmUX_YKVJf7zHnhhN9JSvlms.roa (raw, json)
Hash identifier: 1hSvABw0eabdP+qMAIL79Y2r/9ydF4brIEf6NzFcGfg=
Subject key identifier: 1C:1D:C4:99:45:FF:60:A5:49:7F:BC:C7:9E:18:4D:F4:94:AF:96:6B
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 1795B741
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HB3EmUX_YKVJf7zHnhhN9JSvlms.roa
Signing time: Sat 01 Jan 2022 04:53:54 +0000
ROA not before: Sat 01 Jan 2022 04:53:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 5.183.207.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395687745 (0x1795b741)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:53:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c1dc49945ff60a5497fbcc79e184df494af966b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9c:9a:14:00:d9:db:b5:13:9a:85:9f:89:9c:
e2:28:38:f5:58:02:ea:9c:b7:47:a1:72:41:0e:87:
41:a7:28:eb:65:cf:b8:f8:a6:27:d2:bf:f1:32:6f:
02:d8:25:93:16:4b:a1:f7:20:48:73:ae:f4:91:cd:
48:4c:4a:15:56:49:bb:80:77:d9:4f:3e:2b:09:51:
3f:2d:b8:08:4e:94:51:26:ba:76:bf:19:e1:36:ea:
fd:9b:c1:f4:06:cf:42:83:43:e9:39:0c:19:fe:5e:
5b:46:5d:56:71:07:1b:45:95:ba:77:23:dd:89:5e:
e2:1b:7b:65:07:02:b7:42:00:43:03:0b:6b:54:a5:
d3:d1:a8:fe:86:54:97:b0:e1:6d:28:f9:71:da:aa:
b0:5a:77:08:76:f3:a5:e1:fa:f9:0a:32:3d:16:61:
45:9f:4e:fa:94:55:df:11:3c:6e:a1:42:a0:e4:07:
42:b1:84:2b:25:e0:9a:96:7f:04:85:5e:91:1d:b8:
49:1b:57:2b:8d:a1:df:64:cd:a8:82:a1:8e:d4:33:
e8:96:e2:a1:32:40:d7:49:87:a0:6f:48:e8:bb:8b:
ba:79:3c:63:9b:40:69:30:1b:d1:94:95:66:1e:8b:
e2:f8:d7:19:84:83:7b:1d:e7:da:e9:7d:69:42:93:
39:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:1D:C4:99:45:FF:60:A5:49:7F:BC:C7:9E:18:4D:F4:94:AF:96:6B
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HB3EmUX_YKVJf7zHnhhN9JSvlms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.207.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:40:4a:1e:66:ac:4e:b9:2f:e8:f0:27:2c:a2:e7:da:bb:c3:
3d:51:7e:1c:c9:d7:de:ff:12:43:0b:c2:a5:51:95:74:30:12:
bf:2d:3e:1c:02:9e:ae:c6:61:24:85:ca:a0:75:92:90:0b:11:
20:fd:32:9e:eb:f3:43:66:96:a6:d6:39:cb:f5:5f:32:43:65:
20:3c:68:fd:73:f0:ef:8e:21:6d:7f:cf:9c:c5:20:9d:7b:01:
f7:49:bf:03:8b:c3:bf:22:d4:4c:4b:06:57:f2:46:0c:ef:00:
72:74:66:a4:42:5f:6f:60:66:64:16:e1:7c:57:f2:e8:0c:9d:
1f:00:6f:33:3b:dc:a1:9d:3c:5b:02:f0:81:a6:0a:86:bb:15:
bc:3e:bd:97:39:d7:05:6a:08:7b:2d:e8:a2:a9:8e:85:06:30:
11:7f:67:ff:cd:5f:96:8e:16:c7:20:49:ec:92:64:0a:93:a1:
c3:6a:cf:a1:b6:80:e8:58:6d:e9:12:31:44:ec:d3:59:bd:9e:
7c:e2:3c:ef:95:d9:c0:c9:99:12:c2:da:df:60:88:fe:98:04:
7e:97:98:64:68:c8:3d:2e:df:93:93:4e:9c:6a:47:ff:4d:16:
ca:7b:3d:74:26:66:a1:ae:53:b2:2c:3f:96:81:58:0e:d2:2a:
1b:4d:bf:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org