Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/73f23a-e977-41c3-922d-b27c3412426a/1/HyIxMBmJBT1GgO-ULw7Sm5a4ooE.roa
File: HyIxMBmJBT1GgO-ULw7Sm5a4ooE.roa (raw, json)
Hash identifier: 1M1WTcVAN2h5Vyecn/wwjo7SyjS/sl99BeO65fF5gdQ=
Subject key identifier: 1F:22:31:30:19:89:05:3D:46:80:EF:94:2F:0E:D2:9B:96:B8:A2:81
Certificate issuer: /CN=3e1ae15be86eb0c4d9a764cc7a8f65995bf8c90e
Certificate serial: 03A191
Authority key identifier: 3E:1A:E1:5B:E8:6E:B0:C4:D9:A7:64:CC:7A:8F:65:99:5B:F8:C9:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PhrhW-husMTZp2TMeo9lmVv4yQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/73f23a-e977-41c3-922d-b27c3412426a/1/HyIxMBmJBT1GgO-ULw7Sm5a4ooE.roa
Signing time: Mon 24 Jan 2022 18:11:51 +0000
ROA not before: Mon 24 Jan 2022 18:11:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60717
IP address blocks: 185.30.224.0/22 maxlen: 22
2a04:45c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 237969 (0x3a191)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e1ae15be86eb0c4d9a764cc7a8f65995bf8c90e
Validity
Not Before: Jan 24 18:11:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f2231301989053d4680ef942f0ed29b96b8a281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:99:95:c1:dd:7a:ed:b8:99:3d:7c:33:32:e5:
e7:86:0c:e8:a1:d8:7b:67:a4:b5:8b:3a:8c:1b:48:
aa:9a:bc:8c:de:32:84:dc:f4:98:1a:ca:07:77:92:
65:17:12:94:a2:ea:3c:ce:65:37:44:23:09:95:3c:
e4:0b:d5:1d:27:c4:65:e1:5e:bb:44:cf:23:fa:82:
a2:cb:4d:45:7f:86:55:d0:51:82:87:be:11:df:dc:
a7:b3:58:9f:cc:57:5c:f3:c2:05:7d:f2:ea:6b:ee:
e6:6e:4c:0a:0b:d7:fe:02:41:ad:f8:1f:4c:c9:43:
97:d4:a5:9b:95:94:65:4a:dc:a0:e6:d9:be:14:03:
6c:f4:95:61:c0:35:75:ae:78:84:55:11:9c:7f:fb:
6b:46:03:83:a3:b0:9a:31:e8:29:4a:2e:4b:30:9e:
a3:58:d1:3d:74:af:82:0b:0f:ac:be:5f:bf:97:9f:
a7:c9:9f:1b:7b:cb:b3:ce:ed:77:6a:01:6b:66:e0:
48:4f:ea:f7:09:42:e9:35:c3:a9:bc:d4:3c:d8:e6:
c4:6f:6c:eb:57:21:ac:d9:e3:22:b6:54:e4:5a:fe:
fc:1f:26:d1:81:86:5a:e6:61:dc:ed:d9:29:32:dd:
cd:44:8b:e1:09:40:e9:12:36:8d:d4:87:dd:77:da:
5b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:22:31:30:19:89:05:3D:46:80:EF:94:2F:0E:D2:9B:96:B8:A2:81
X509v3 Authority Key Identifier:
keyid:3E:1A:E1:5B:E8:6E:B0:C4:D9:A7:64:CC:7A:8F:65:99:5B:F8:C9:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PhrhW-husMTZp2TMeo9lmVv4yQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/73f23a-e977-41c3-922d-b27c3412426a/1/HyIxMBmJBT1GgO-ULw7Sm5a4ooE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/73f23a-e977-41c3-922d-b27c3412426a/1/PhrhW-husMTZp2TMeo9lmVv4yQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.224.0/22
IPv6:
2a04:45c0::/29
Signature Algorithm: sha256WithRSAEncryption
86:6b:f9:9f:53:4f:f0:90:f1:2f:29:37:60:65:2d:50:c1:f6:
63:7b:c1:f9:84:1e:c3:d4:f9:9b:af:41:7e:b9:73:72:9c:32:
95:bc:22:cb:c9:4b:07:d5:f5:74:b8:78:e8:0d:5b:cc:e7:f5:
ef:83:77:39:f3:4f:c4:a5:31:d9:cf:d5:84:44:eb:44:ef:2e:
9c:ca:b7:23:b2:14:8e:0b:7d:99:27:8a:e6:9c:29:00:67:5b:
16:1a:7d:a0:99:dc:ee:6b:7e:2f:ec:9a:74:3a:1a:9b:b1:dd:
8d:79:7e:69:84:c6:55:35:5e:64:e8:62:10:58:00:49:61:36:
98:d9:fa:a6:ce:fa:4c:ef:e7:87:5a:ef:0b:8f:f2:ac:02:e3:
ea:4b:8c:30:df:43:21:40:93:51:ee:65:1e:e3:bd:9c:34:ae:
22:72:7c:3e:b6:52:58:2a:2c:f8:e2:b3:d9:e2:dc:44:9c:5c:
21:0f:85:67:1e:53:e2:db:89:e0:29:81:6d:dd:2b:01:8d:5d:
53:09:7a:c0:14:da:47:08:c4:f7:5d:fe:1e:61:29:f9:d5:fa:
ac:2e:56:c2:f0:8e:ae:3b:20:b6:a0:4a:eb:0a:0c:d6:ad:8c:
da:37:33:5b:02:4e:8b:74:42:a6:15:3c:8f:95:75:ef:dd:bf:
60:f2:c8:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:27 2024 by rpki-client on console-ams.rpki-client.org