Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/7cc6ea-774a-4876-84f9-304d2191a4f3/1/hCfAKeqb08EslA1XpF0bNFe3PtM.roa
File: hCfAKeqb08EslA1XpF0bNFe3PtM.roa (raw, json)
Hash identifier: EY3nYJlw9JDznGVWWn7gqbg1mvb/CEpNpZ+6G3ZOnHA=
Subject key identifier: 84:27:C0:29:EA:9B:D3:C1:2C:94:0D:57:A4:5D:1B:34:57:B7:3E:D3
Certificate issuer: /CN=656d33c5f16e3cdd960ae05c80d9f6f36fc553f2
Certificate serial: 0184C90B22E0CF71F04FB5143B405A26D012
Authority key identifier: 65:6D:33:C5:F1:6E:3C:DD:96:0A:E0:5C:80:D9:F6:F3:6F:C5:53:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZW0zxfFuPN2WCuBcgNn282_FU_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/7cc6ea-774a-4876-84f9-304d2191a4f3/1/hCfAKeqb08EslA1XpF0bNFe3PtM.roa
Signing time: Wed 30 Nov 2022 14:57:40 +0000
ROA not before: Wed 30 Nov 2022 14:57:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.219.146.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c9:0b:22:e0:cf:71:f0:4f:b5:14:3b:40:5a:26:d0:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=656d33c5f16e3cdd960ae05c80d9f6f36fc553f2
Validity
Not Before: Nov 30 14:57:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8427c029ea9bd3c12c940d57a45d1b3457b73ed3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:39:07:44:fb:6b:28:1d:df:82:b6:61:ed:98:
11:c7:4f:96:dd:07:55:80:82:f9:23:49:c7:b5:47:
c0:70:06:66:b6:7d:9a:ba:87:f9:5a:22:8e:06:ed:
bd:bc:4b:0e:8f:3d:e2:02:47:63:d1:d4:db:ed:50:
21:70:9d:90:91:ba:2b:ed:92:07:dc:4b:22:ea:cf:
55:88:37:c9:be:02:6a:4f:bc:03:fe:3f:20:18:56:
12:ce:55:34:06:75:1c:bb:8a:5b:2c:3a:09:f9:15:
1e:58:01:fc:36:8f:d8:b3:23:90:86:ce:d6:ae:00:
f0:e4:2b:8f:e5:7b:79:9c:b6:f3:6b:38:be:04:9b:
56:4b:e1:75:3f:21:5c:9c:17:77:5a:ca:0b:a0:e2:
a2:8f:e6:a7:93:d6:aa:0d:48:9e:b6:62:d8:2e:9b:
b6:5f:a3:15:d7:ae:2b:77:d0:51:0f:b1:07:74:80:
85:7d:5b:58:9a:7e:e2:11:10:c8:5b:18:84:e9:0e:
32:66:7f:34:42:37:47:d3:2d:ac:c7:99:74:f1:c5:
84:4e:7b:c1:91:57:da:6a:c1:b4:d7:42:fd:c1:e3:
6b:0a:2e:c5:4d:c5:b8:78:a3:86:aa:c6:8c:b8:c7:
5f:8e:23:3c:d6:43:1f:2f:32:2f:8b:69:db:cb:93:
c6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:27:C0:29:EA:9B:D3:C1:2C:94:0D:57:A4:5D:1B:34:57:B7:3E:D3
X509v3 Authority Key Identifier:
keyid:65:6D:33:C5:F1:6E:3C:DD:96:0A:E0:5C:80:D9:F6:F3:6F:C5:53:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZW0zxfFuPN2WCuBcgNn282_FU_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/7cc6ea-774a-4876-84f9-304d2191a4f3/1/hCfAKeqb08EslA1XpF0bNFe3PtM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/7cc6ea-774a-4876-84f9-304d2191a4f3/1/ZW0zxfFuPN2WCuBcgNn282_FU_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.146.0/23
Signature Algorithm: sha256WithRSAEncryption
19:84:93:0d:9c:4d:2d:2c:8d:e4:59:dc:40:77:24:01:28:3a:
a8:33:b0:36:10:c4:93:d0:7c:5c:d6:66:3f:f2:90:f7:7a:30:
d1:62:ed:61:64:dd:83:99:40:af:4f:c0:fb:91:6d:9a:37:30:
4a:b5:6a:ff:6d:0b:a0:57:6e:92:86:7c:86:a2:8f:5f:4a:e7:
77:2d:9e:ce:ae:f7:5c:18:38:a8:31:91:69:fc:66:1c:13:78:
ae:a6:49:f6:6c:97:59:61:fe:34:b7:00:31:af:45:c6:8f:e7:
26:c6:95:82:b9:34:aa:73:21:6d:ad:cc:f6:16:cb:4a:35:8d:
2d:38:17:f9:2e:69:ff:b3:66:5d:7a:b4:da:e4:eb:1f:e8:cf:
69:d7:0d:9d:71:8f:e7:ba:cc:d6:d0:c5:e5:ef:0a:d8:20:bc:
0e:9f:c3:76:0b:8f:2f:d9:b8:73:45:5c:cd:53:07:05:c7:5b:
b3:ed:3c:e9:24:24:c6:4e:d9:81:cb:b3:66:59:b9:32:e2:3e:
11:b2:16:9b:ff:f3:e4:dc:8f:f8:e7:98:80:42:cc:32:47:69:
a1:50:d2:42:2a:df:53:b0:dd:1a:b6:26:64:8c:5d:98:f4:35:
da:0e:ae:17:ed:bf:60:71:70:13:33:77:b6:4b:36:b2:24:b9:
a9:dc:9e:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:33 2023 by rpki-client on console-ams.rpki-client.org