Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HvA0rfG1Ja3bOt6F4eGJiWLS8Tg.roa
File: HvA0rfG1Ja3bOt6F4eGJiWLS8Tg.roa (raw, json)
Hash identifier: aZB+ekEuu8bB5y9TTmNFr3slREvEJvVhpcr5DWIGleQ=
Subject key identifier: 1E:F0:34:AD:F1:B5:25:AD:DB:3A:DE:85:E1:E1:89:89:62:D2:F1:38
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17F76F34
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HvA0rfG1Ja3bOt6F4eGJiWLS8Tg.roa
Signing time: Sat 01 Jan 2022 04:54:54 +0000
ROA not before: Sat 01 Jan 2022 04:54:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212757
IP address blocks: 94.199.103.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402091828 (0x17f76f34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ef034adf1b525addb3ade85e1e1898962d2f138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:f2:ee:e3:6b:6a:55:6b:c1:df:e2:45:38:68:
2d:ad:cd:0b:31:57:94:b5:69:ec:13:db:e9:ed:3f:
99:1f:db:8f:6a:f6:11:04:92:70:90:e2:c6:7f:d2:
26:80:44:14:89:23:97:ff:09:76:92:b3:ac:77:9a:
be:8f:11:a9:98:38:45:78:60:1d:d2:86:29:ed:11:
73:30:35:53:d4:eb:94:40:e5:49:4b:9e:2b:4e:ba:
a4:8f:97:ec:88:f1:85:45:5f:96:fe:b0:54:33:4f:
3b:2f:eb:26:ae:c3:2b:db:32:11:d0:62:b9:b8:29:
e4:d4:cf:df:35:7f:52:cf:23:99:ae:6f:ca:31:39:
90:9c:12:ac:ac:18:80:de:f9:81:ac:9c:4e:09:a0:
6a:93:15:e2:4d:66:f0:0c:4c:b0:7c:8e:6b:4f:80:
6c:9c:37:d3:56:87:98:b0:d0:20:c0:1c:ec:d5:75:
99:9c:5f:18:c1:66:c7:88:f0:75:b7:f6:ae:8d:8a:
ea:a5:1a:8d:74:46:09:ba:9b:fd:fd:16:2e:ab:90:
04:87:35:0d:ae:83:d7:ee:af:21:b1:fa:37:d5:d1:
19:4c:d8:eb:70:23:ee:1d:ee:c4:59:c8:bf:fc:0a:
c6:4a:c0:e8:97:74:d0:93:fe:79:a6:d8:23:fe:0d:
47:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:F0:34:AD:F1:B5:25:AD:DB:3A:DE:85:E1:E1:89:89:62:D2:F1:38
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HvA0rfG1Ja3bOt6F4eGJiWLS8Tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.199.103.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:e4:d1:30:d4:88:f9:04:42:85:1f:b0:df:e6:64:83:a1:ba:
c2:d6:9f:af:7f:47:e5:d1:61:54:68:c8:79:b6:26:62:60:3f:
6d:61:c7:0a:25:78:c0:53:3f:28:66:12:5a:22:8b:77:b0:d7:
21:75:bf:c6:7a:29:39:00:bb:dc:53:fd:db:29:df:f1:a0:b6:
c7:55:74:b4:5b:03:f7:e9:25:c5:05:a5:6b:ac:54:c2:35:f8:
e4:9c:43:b6:c5:8c:74:57:36:cb:c5:67:69:c9:7a:ef:c1:a3:
5c:b6:1b:67:d7:3b:0d:96:20:74:48:97:41:5b:99:9e:3c:4a:
33:90:2f:fc:69:9f:15:fb:4d:4a:35:ff:70:11:29:5e:6f:34:
3b:4b:78:1e:0d:4d:7c:4a:a7:82:e5:9c:5b:e6:33:57:4a:a4:
7b:f6:27:7c:62:b7:f2:3a:c9:bb:7f:1c:59:03:0f:26:83:4b:
33:7a:12:4d:be:49:5d:69:08:a5:60:0e:8a:15:c5:8e:48:f8:
b6:24:1a:7c:98:1a:d4:e3:64:45:99:c5:da:5c:ef:1f:9a:5f:
9f:20:f5:6a:58:d7:6e:bf:b8:44:fa:37:5a:23:70:6c:ee:f1:
73:86:10:7e:76:f2:9c:51:4c:cc:79:0e:3f:71:6a:6d:35:02:
ac:09:66:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org