Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HfkewMezsEyAilqQoNAvwmhm-Pg.roa
File: HfkewMezsEyAilqQoNAvwmhm-Pg.roa (raw, json)
Hash identifier: BDixfIVgHtFuFq8HHNm75hN45pp0c013QBX1csj94AA=
Subject key identifier: 1D:F9:1E:C0:C7:B3:B0:4C:80:8A:5A:90:A0:D0:2F:C2:68:66:F8:F8
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17AA765A
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HfkewMezsEyAilqQoNAvwmhm-Pg.roa
Signing time: Sat 01 Jan 2022 04:54:07 +0000
ROA not before: Sat 01 Jan 2022 04:54:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42216
IP address blocks: 185.137.180.0/24 maxlen: 24
2a06:8ec2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 397047386 (0x17aa765a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1df91ec0c7b3b04c808a5a90a0d02fc26866f8f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:8d:f8:90:17:c8:53:9a:d6:fd:71:ec:a7:89:
03:84:4d:e9:2d:54:1f:fd:38:d7:e1:47:a8:3f:99:
80:b1:d4:83:e6:4f:d4:5e:ac:90:52:54:66:35:fb:
a8:a1:87:2e:b0:cf:c2:cc:26:1a:23:39:ee:73:a5:
fd:60:04:de:60:84:3d:ab:31:f2:1b:48:1d:77:f3:
fc:1a:75:3f:63:dc:4b:38:43:f4:31:c1:22:f4:34:
97:ac:be:61:40:35:7c:d2:65:dd:82:f3:b1:ed:74:
89:1c:fd:e8:aa:74:2e:03:d8:17:a2:bc:30:71:ae:
e2:50:a9:fc:bb:85:2e:1e:39:0a:0c:37:7e:c6:27:
07:40:ac:44:2c:2b:eb:33:43:09:03:80:9c:3e:e0:
10:2b:28:76:59:b0:e0:d9:9b:df:b5:9b:9d:e4:28:
ff:af:42:ef:2e:f3:d8:e9:1d:24:7f:06:e0:40:42:
e4:6f:b7:d5:de:9a:65:9a:38:b1:18:81:9a:da:58:
e8:c5:56:5d:a9:99:7e:68:e3:1e:fc:17:a3:9e:c2:
4d:2a:99:e0:0f:2e:f2:2c:0d:1c:a1:97:38:85:ce:
f8:79:4c:fe:2c:de:43:7b:59:cf:53:f1:a1:21:c6:
26:92:cd:8e:a4:50:71:50:45:50:e5:34:77:7a:f7:
e8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:F9:1E:C0:C7:B3:B0:4C:80:8A:5A:90:A0:D0:2F:C2:68:66:F8:F8
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HfkewMezsEyAilqQoNAvwmhm-Pg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.180.0/24
IPv6:
2a06:8ec2::/48
Signature Algorithm: sha256WithRSAEncryption
bd:de:e0:af:c8:37:9f:ce:30:15:81:09:5f:5a:8d:c9:40:99:
a1:6c:01:e1:19:fe:72:96:38:2c:9e:15:b7:1d:0d:f7:c4:ec:
80:9a:6f:f6:ea:22:70:c8:c6:9d:4a:51:f1:92:d0:26:74:f5:
9b:2e:ab:81:50:c7:3d:ba:6d:75:d8:82:d6:fa:60:af:58:db:
49:1c:d4:aa:8a:42:82:e3:17:ff:75:b2:c9:55:94:40:1a:53:
18:05:e3:eb:b7:b4:06:1d:94:66:7a:e1:3a:50:ee:62:41:80:
d3:69:b9:fd:35:0f:30:ba:38:71:19:2c:fb:03:84:a2:76:c2:
ff:bc:1c:61:fa:00:41:34:86:37:f1:fa:85:4f:ef:08:91:0c:
60:74:dc:7c:28:7e:f1:14:e8:cb:e7:3d:b2:8c:cd:39:3f:d5:
7b:a5:8c:aa:9b:7e:a1:80:4c:e6:c4:28:9d:27:f1:ce:e3:68:
05:02:a5:86:3c:8e:e3:98:15:a9:c5:b4:19:b2:48:49:e7:00:
1c:4b:d0:2e:4b:ac:3b:74:c1:65:75:37:ed:69:fd:f9:d4:06:
8c:8c:a6:62:f4:63:91:2e:19:ac:84:93:43:91:fc:7f:a4:37:
d9:3a:75:a7:13:93:64:71:f9:fd:5e:60:13:e6:ce:39:cc:81:
59:82:40:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org