Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/HNF3qQoJ_DQ27lEb-taHLkhf9rY.roa
File: HNF3qQoJ_DQ27lEb-taHLkhf9rY.roa (raw, json)
Hash identifier: u/bmbdlUs684/J6pDo/vtb76Y5Tk4hZnyg+4ohnoME8=
Subject key identifier: 1C:D1:77:A9:0A:09:FC:34:36:EE:51:1B:FA:D6:87:2E:48:5F:F6:B6
Certificate issuer: /CN=758621623ac6cab8f6bde5526e7a2931d626fe8c
Certificate serial: 16203A35
Authority key identifier: 75:86:21:62:3A:C6:CA:B8:F6:BD:E5:52:6E:7A:29:31:D6:26:FE:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dYYhYjrGyrj2veVSbnopMdYm_ow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/HNF3qQoJ_DQ27lEb-taHLkhf9rY.roa
Signing time: Sat 01 Jan 2022 07:53:19 +0000
ROA not before: Sat 01 Jan 2022 07:53:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21385
IP address blocks: 194.88.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 371210805 (0x16203a35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=758621623ac6cab8f6bde5526e7a2931d626fe8c
Validity
Not Before: Jan 1 07:53:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1cd177a90a09fc3436ee511bfad6872e485ff6b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6d:86:d6:d0:63:52:23:c9:88:ad:64:53:1d:
e8:f6:e7:4b:e9:8c:bc:15:c3:e2:e8:fe:69:87:5c:
91:b1:b9:eb:e8:64:e9:2b:74:1a:3b:15:23:5f:28:
3f:6b:72:97:71:fa:59:9f:89:47:d9:86:1f:ff:c7:
99:be:3d:d8:34:32:1c:17:f6:f3:4d:2d:da:1f:36:
b8:13:e0:07:72:d0:c0:e9:72:65:27:1b:a2:90:db:
40:ee:3e:f5:8e:00:3e:17:3e:52:37:f7:d9:a2:72:
9c:c1:fb:7b:f3:84:f0:46:60:c7:f9:17:e1:a6:2b:
4b:18:30:e6:33:02:22:53:0a:5b:40:5e:50:c8:4c:
01:c9:37:12:4f:f0:bd:60:b1:02:6b:52:43:0a:81:
7a:5c:fa:91:67:fd:66:ee:d2:d1:ca:2c:6b:e8:82:
4e:22:8b:bb:6e:66:1a:9b:11:57:03:86:bf:fd:db:
eb:5d:2b:a9:e8:a6:75:17:79:2a:08:35:30:28:95:
5f:51:9a:ad:bd:08:73:23:de:84:bb:e0:59:ae:1b:
44:15:39:13:b7:a0:2e:df:e5:b1:3a:91:79:a9:01:
be:48:da:a9:20:d7:8b:44:4c:01:34:7f:f6:27:94:
7c:80:b4:61:63:37:8a:2f:a1:05:2f:12:18:c7:98:
16:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D1:77:A9:0A:09:FC:34:36:EE:51:1B:FA:D6:87:2E:48:5F:F6:B6
X509v3 Authority Key Identifier:
keyid:75:86:21:62:3A:C6:CA:B8:F6:BD:E5:52:6E:7A:29:31:D6:26:FE:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dYYhYjrGyrj2veVSbnopMdYm_ow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/HNF3qQoJ_DQ27lEb-taHLkhf9rY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/dYYhYjrGyrj2veVSbnopMdYm_ow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.88.10.0/24
Signature Algorithm: sha256WithRSAEncryption
62:ed:68:82:b3:c5:a0:95:ce:bb:c2:c0:7b:97:8f:63:25:8a:
06:b7:56:0c:27:f0:c0:72:53:05:0b:c4:1c:1f:ac:fd:eb:59:
d5:6f:56:a0:0c:db:79:8c:b7:6d:b3:a7:ff:78:77:8a:50:46:
ef:c3:21:00:30:9e:b7:f7:ac:48:bf:d8:4c:22:7d:ad:22:8a:
ce:36:d2:ca:80:66:b6:66:86:7e:87:aa:d1:1e:b9:15:07:96:
e0:27:92:da:dd:3d:50:df:f3:c9:68:57:3d:e0:3b:1a:e0:a1:
92:d0:82:a6:0c:1d:59:3a:42:30:01:84:b7:b0:5d:25:29:f2:
1a:de:d3:69:36:ac:22:83:ba:3a:d5:52:cd:47:ba:fb:c9:ce:
1a:ca:89:8f:f0:83:5a:6b:0b:38:7f:82:93:46:c7:99:58:f0:
ef:10:18:e7:93:48:98:d6:06:f6:13:7b:cb:66:66:8d:ba:ef:
20:3c:76:ea:2d:ba:d5:46:b1:f6:67:d9:62:70:83:ba:7c:32:
a0:74:3e:b7:21:4a:9f:e7:22:22:a8:4d:51:50:da:d5:97:9c:
3c:1c:1d:d8:ee:24:97:66:0b:8e:0e:c9:66:ff:04:5a:70:e0:
01:95:cc:b6:66:6a:6d:36:ea:62:7e:ba:04:4f:4f:df:60:9e:
75:8c:ed:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:33 2024 by rpki-client on console-fra.rpki-client.org