Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HFsUDETrzWyFdZn1TtMSxC0s-hc.roa
File: HFsUDETrzWyFdZn1TtMSxC0s-hc.roa (raw, json)
Hash identifier: conrD1XlORRDSGue1xkUiW9Q2HeoDqfF6ZdINRyPsoM=
Subject key identifier: 1C:5B:14:0C:44:EB:CD:6C:85:75:99:F5:4E:D3:12:C4:2D:2C:FA:17
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 185FE8D0
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HFsUDETrzWyFdZn1TtMSxC0s-hc.roa
Signing time: Thu 20 Jan 2022 13:46:39 +0000
ROA not before: Thu 20 Jan 2022 13:46:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50673
IP address blocks: 185.177.23.0/24 maxlen: 24
185.172.167.0/24 maxlen: 32
195.85.49.0/24 maxlen: 32
185.226.74.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 408938704 (0x185fe8d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 20 13:46:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c5b140c44ebcd6c857599f54ed312c42d2cfa17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:dd:1e:3c:02:cb:4b:34:e2:84:0d:0e:f1:b8:
d9:bc:89:c1:0a:1b:6b:a1:d9:ab:c3:0d:20:8a:e3:
ed:10:e8:82:d4:29:0e:76:9e:1c:01:17:02:ac:d5:
6a:fe:10:7d:44:b6:13:5f:77:2a:68:3d:5f:1b:4a:
13:a2:3c:2d:ec:55:c8:c4:13:0f:f1:c8:98:b3:7e:
eb:1e:90:1d:ff:d3:14:03:dd:d3:18:a1:21:ec:a3:
a6:13:85:4e:02:ff:80:7c:63:d2:27:d5:3d:c9:0d:
73:ca:76:68:90:16:f3:1c:5e:40:08:7a:7c:23:29:
9a:68:3e:43:8e:0b:62:85:45:4e:fc:7f:31:90:a5:
ad:c7:f9:75:02:ff:b3:19:43:43:4b:45:e7:2d:36:
02:c2:94:54:0b:0d:3f:ff:20:cb:3f:63:90:42:05:
05:22:a9:3e:2e:b1:58:3e:89:c6:bd:a8:8b:6f:2d:
21:57:cd:01:dc:1c:39:5f:33:c3:93:28:5d:5b:95:
33:0b:d4:a6:8f:d9:1d:a7:72:95:d5:9c:ce:36:b5:
b7:be:3a:fa:0b:8c:8a:d1:81:21:39:06:ca:48:73:
d6:fb:e0:32:e2:73:3f:b3:c4:11:a6:03:b9:74:35:
18:ef:a2:d5:3c:7c:14:72:69:12:6b:b3:9a:49:d8:
d0:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:5B:14:0C:44:EB:CD:6C:85:75:99:F5:4E:D3:12:C4:2D:2C:FA:17
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HFsUDETrzWyFdZn1TtMSxC0s-hc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.167.0/24
185.177.23.0/24
185.226.74.0/24
195.85.49.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:ef:67:98:86:46:25:55:84:71:3b:63:8a:68:86:0f:1a:e8:
de:4b:73:3e:7f:18:00:84:8d:40:34:8d:48:af:db:af:b9:a0:
f3:28:4e:19:45:1e:f5:ec:e1:fe:ef:6d:0e:f8:35:db:02:f3:
57:7f:91:c3:91:4d:e3:ae:21:6b:04:12:3b:1d:d4:be:f7:c2:
71:5a:30:c2:2c:02:cc:bd:58:3d:e7:9a:b8:25:af:b6:8a:2f:
ec:5d:8e:46:45:fb:3e:bb:48:3c:40:b4:42:be:85:32:21:f6:
0a:09:31:12:85:0e:13:97:a7:4e:40:86:ee:a7:03:1b:ef:bb:
26:f5:8d:d3:b3:62:d1:f8:ec:45:13:2f:c4:f0:b2:68:c9:60:
fb:d2:03:6a:f7:c5:f2:a8:e8:1f:25:a5:bd:95:05:d1:e6:51:
6d:6a:82:2f:fd:7f:f7:db:91:ed:78:55:da:f1:50:a5:19:fd:
48:18:d9:a8:53:18:6b:e5:6c:9a:23:3f:86:ab:5a:5b:50:d0:
03:95:22:2a:3e:a0:15:38:cb:92:1d:a6:56:ad:40:e1:ca:1e:
83:94:08:61:93:2a:93:54:95:57:60:b7:67:4e:03:a0:ea:5c:
29:1c:3a:99:64:91:ca:17:44:6b:e6:ee:5b:5c:61:a0:0b:dc:
41:90:cf:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org