Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/ccf444-a22c-4fcd-bf1a-0f937ccf02e0/1/HR58_ndNelVw-JqdGp3p1JJfkCI.roa
File: HR58_ndNelVw-JqdGp3p1JJfkCI.roa (raw, json)
Hash identifier: vx5gJLzNLmnN9Yz5G1hcxyJ5VaZbBvZLCIxJRQ7Eppg=
Subject key identifier: 1D:1E:7C:FE:77:4D:7A:55:70:F8:9A:9D:1A:9D:E9:D4:92:5F:90:22
Certificate issuer: /CN=4518b89c7dce2b5edc05581516cfc19d7a3174e8
Certificate serial: 01856D5411E3106E41468992FFD399B960A8
Authority key identifier: 45:18:B8:9C:7D:CE:2B:5E:DC:05:58:15:16:CF:C1:9D:7A:31:74:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RRi4nH3OK17cBVgVFs_BnXoxdOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/ccf444-a22c-4fcd-bf1a-0f937ccf02e0/1/HR58_ndNelVw-JqdGp3p1JJfkCI.roa
Signing time: Sun 01 Jan 2023 12:35:04 +0000
ROA not before: Sun 01 Jan 2023 12:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60103
IP address blocks: 185.57.152.0/22 maxlen: 22
185.57.153.0/24 maxlen: 24
185.57.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:54:11:e3:10:6e:41:46:89:92:ff:d3:99:b9:60:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4518b89c7dce2b5edc05581516cfc19d7a3174e8
Validity
Not Before: Jan 1 12:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d1e7cfe774d7a5570f89a9d1a9de9d4925f9022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:63:68:ad:b5:2d:2e:08:70:8d:23:f6:1a:ea:
6b:af:7d:53:fd:2b:b3:d3:4e:f3:65:79:fc:c5:49:
e5:45:4b:5c:57:49:c3:7b:6b:18:b0:90:cf:0c:0f:
5f:fa:80:78:99:d6:5e:f2:1a:ee:7e:f8:a2:25:e2:
03:f1:c5:f1:ad:37:fe:ee:e1:df:29:83:1f:36:75:
a5:17:ad:0b:31:8d:1b:fd:16:10:e0:b3:65:df:b3:
cb:1e:7c:93:bf:05:53:2e:d4:c8:da:33:d0:e7:d9:
11:6a:66:ae:ed:ed:7f:cc:ce:5f:68:3e:2c:b9:6c:
cb:97:41:a1:38:7b:bb:17:dd:27:56:3c:d2:b3:9c:
f3:f0:86:19:1c:c1:df:9f:5d:d3:ee:2a:df:12:31:
64:50:bc:80:c3:cb:10:36:31:be:a8:90:d3:b9:93:
fc:d2:52:22:02:df:73:ab:ac:37:3e:8d:3f:1f:ad:
34:48:32:7c:79:2e:09:5e:7a:dc:a9:b8:b2:dc:6b:
8a:a4:3a:b8:7d:dc:63:b2:d4:0b:8a:a2:52:9a:63:
1e:13:ce:c3:89:54:bb:42:db:9f:8d:44:49:1e:b6:
1c:27:98:b1:82:97:3e:3c:f4:19:26:c1:b5:75:0e:
be:86:53:e6:06:a7:02:ed:ce:b1:4e:71:15:8c:e1:
58:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:1E:7C:FE:77:4D:7A:55:70:F8:9A:9D:1A:9D:E9:D4:92:5F:90:22
X509v3 Authority Key Identifier:
keyid:45:18:B8:9C:7D:CE:2B:5E:DC:05:58:15:16:CF:C1:9D:7A:31:74:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RRi4nH3OK17cBVgVFs_BnXoxdOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/ccf444-a22c-4fcd-bf1a-0f937ccf02e0/1/HR58_ndNelVw-JqdGp3p1JJfkCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/ccf444-a22c-4fcd-bf1a-0f937ccf02e0/1/RRi4nH3OK17cBVgVFs_BnXoxdOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.152.0/22
Signature Algorithm: sha256WithRSAEncryption
14:10:06:f8:ab:db:09:80:50:6e:83:c7:e1:af:54:a5:64:46:
8f:29:52:18:27:1b:0a:75:47:38:d8:6a:97:64:86:70:ad:7f:
0b:4f:f8:5b:ae:ac:f3:0b:99:cb:0e:89:00:ef:10:11:13:d1:
ff:e2:1b:b5:e0:22:09:15:43:14:c8:62:b2:ec:89:63:8f:55:
a5:aa:61:52:52:d3:f9:58:bf:5f:bc:4f:c0:1f:b6:8e:d3:ad:
90:1c:7f:2f:d5:7b:f7:c4:49:0f:c7:90:74:68:63:3e:c5:e6:
66:28:da:2e:7a:ba:a2:48:8d:c8:0e:bb:5d:2c:42:37:a1:bb:
c9:54:0b:5a:a9:6a:5d:ee:28:05:b7:6f:40:e6:82:c1:20:4b:
bd:1f:fe:29:5d:e4:80:a7:75:8e:ce:fe:4f:d1:d3:93:91:2f:
94:0d:a7:ae:9c:3a:2e:8e:99:ca:d4:72:d9:87:63:09:87:9f:
27:2c:c5:d8:e8:8e:05:ec:6c:4c:ba:ad:a1:af:cf:d1:5d:57:
64:6e:2d:bb:7c:29:8d:8a:a8:57:6a:87:f1:82:52:f5:fd:54:
e0:41:41:3e:73:9f:85:c3:4b:29:e3:d6:1b:23:7d:8d:1d:4b:
34:88:42:e1:95:fc:1e:9a:90:03:1d:34:a1:be:73:b8:dc:21:
a1:bd:df:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:45 2025 by rpki-client