Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/a275fe-86f0-41e9-8263-69db6a8f58d7/1/HdWY67dVnB4WfdMR5XySaAPqqgI.roa
File: HdWY67dVnB4WfdMR5XySaAPqqgI.roa (raw, json)
Hash identifier: 8WEnHX1VkI9ShhLPacDXI5iXn+0/XG5kFceWAFEYKqk=
Subject key identifier: 1D:D5:98:EB:B7:55:9C:1E:16:7D:D3:11:E5:7C:92:68:03:EA:AA:02
Certificate issuer: /CN=d2c81b1d028f2af61ea9b422679a5f8de90572e7
Certificate serial: 09304E39
Authority key identifier: D2:C8:1B:1D:02:8F:2A:F6:1E:A9:B4:22:67:9A:5F:8D:E9:05:72:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0sgbHQKPKvYeqbQiZ5pfjekFcuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/a275fe-86f0-41e9-8263-69db6a8f58d7/1/HdWY67dVnB4WfdMR5XySaAPqqgI.roa
Signing time: Sat 01 Jan 2022 06:58:54 +0000
ROA not before: Sat 01 Jan 2022 06:58:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62061
IP address blocks: 185.180.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154160697 (0x9304e39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2c81b1d028f2af61ea9b422679a5f8de90572e7
Validity
Not Before: Jan 1 06:58:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1dd598ebb7559c1e167dd311e57c926803eaaa02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7c:54:c0:3b:44:11:01:e7:cd:29:a9:f4:78:
86:94:ce:2d:46:fd:f8:1c:9d:d0:70:62:d8:eb:b1:
23:28:f5:9a:d3:3e:74:0e:b8:b0:11:e7:c4:c7:c3:
ec:f8:8c:17:19:87:21:4a:75:b4:c4:65:e0:91:90:
fc:cc:00:d9:e8:7c:37:92:2d:29:16:9a:ff:4f:17:
43:81:0e:25:95:33:95:5a:79:42:16:b4:8d:d1:70:
26:21:6e:79:2e:7e:44:08:33:1a:00:67:d8:d1:d6:
c9:d6:84:2e:af:7e:fe:12:b9:6d:49:ef:e1:47:da:
a6:e5:a4:00:c8:6c:80:99:33:62:bc:09:b5:98:85:
2c:73:5e:06:d2:04:f1:05:f7:06:27:31:47:75:15:
5e:62:11:86:3d:01:eb:86:4d:f3:81:78:38:6a:98:
a3:f7:af:4f:6e:a2:e9:df:c6:66:29:79:75:12:3d:
58:3b:a4:9a:45:8c:af:4f:ac:c2:50:04:ca:6c:c7:
85:cd:bb:b8:cc:29:84:75:28:c2:72:84:e8:73:36:
41:a0:0d:e3:cc:21:c5:aa:70:4e:96:71:b7:14:1e:
bd:24:13:5c:33:16:1d:78:e9:8f:6f:9c:32:2e:2e:
5a:bf:cd:03:1d:59:09:d6:90:5a:1e:06:ec:94:e2:
07:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:D5:98:EB:B7:55:9C:1E:16:7D:D3:11:E5:7C:92:68:03:EA:AA:02
X509v3 Authority Key Identifier:
keyid:D2:C8:1B:1D:02:8F:2A:F6:1E:A9:B4:22:67:9A:5F:8D:E9:05:72:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0sgbHQKPKvYeqbQiZ5pfjekFcuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a275fe-86f0-41e9-8263-69db6a8f58d7/1/HdWY67dVnB4WfdMR5XySaAPqqgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a275fe-86f0-41e9-8263-69db6a8f58d7/1/0sgbHQKPKvYeqbQiZ5pfjekFcuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.39.0/24
Signature Algorithm: sha256WithRSAEncryption
64:b7:54:15:69:f9:75:82:2b:4f:73:37:6b:f1:35:ce:f0:66:
e1:f7:70:76:e1:29:0b:49:51:b9:5f:a9:85:55:8d:30:9f:64:
de:cf:f8:f6:65:8c:bf:76:64:e1:c3:d9:32:58:8f:e8:37:be:
b4:c5:14:81:12:d9:98:21:ca:d4:e6:83:43:e4:92:d4:0c:d0:
9f:d0:c0:2c:80:6b:fe:61:4b:ae:53:e0:53:5b:58:c0:21:4e:
d1:80:a6:87:a8:a6:02:33:af:ea:c6:6e:36:a7:cb:90:5b:4b:
f1:b0:14:52:4c:95:39:d3:b3:74:72:c3:b2:f1:6b:4b:1c:e8:
fe:aa:33:9f:ac:7a:37:22:ee:ec:4b:fc:ad:40:fc:b6:a5:84:
15:4b:31:5c:3e:ee:49:92:f1:36:a4:c7:6f:f8:3a:ee:8b:15:
8e:ef:ae:4c:a5:fa:24:73:95:05:56:19:36:7b:ab:f5:b6:e5:
41:a3:75:1f:e3:cb:1f:0c:77:15:18:31:4a:39:d0:f9:4d:ed:
18:68:30:0a:12:d8:c7:1d:dd:57:d1:e0:d0:b7:14:04:5d:e6:
59:64:35:09:65:73:b8:44:19:07:ab:bf:4c:6a:d6:36:dc:ed:
ed:54:49:7a:a7:6e:4a:d1:75:1e:04:14:63:a9:bd:d4:d5:a2:
14:8a:1f:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:43 2023 by rpki-client on console-fra.rpki-client.org