Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/H65gu-8-LT7IY-ehhmnav_trUj8.roa
File: H65gu-8-LT7IY-ehhmnav_trUj8.roa (raw, json)
Hash identifier: G7LAzn4i3ld4ewHtjEJgryY2QRykIl9e8lGQQ8Y0hz4=
Subject key identifier: 1F:AE:60:BB:EF:3E:2D:3E:C8:63:E7:A1:86:69:DA:BF:FB:6B:52:3F
Certificate issuer: /CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Certificate serial: 0696A5D2
Authority key identifier: 67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/H65gu-8-LT7IY-ehhmnav_trUj8.roa
Signing time: Sat 01 Jan 2022 08:57:13 +0000
ROA not before: Sat 01 Jan 2022 08:57:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210512
IP address blocks: 193.9.17.0/24 maxlen: 24
213.108.133.0/24 maxlen: 24
91.229.112.0/23 maxlen: 23
81.161.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110536146 (0x696a5d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Validity
Not Before: Jan 1 08:57:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fae60bbef3e2d3ec863e7a18669dabffb6b523f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5d:75:c0:a8:71:dd:da:d4:fe:6d:b5:ca:cc:
4d:1d:de:4d:34:b0:c2:bf:28:f7:46:17:ce:06:49:
69:c1:ab:f1:6d:03:80:b5:93:ca:84:41:42:cd:c8:
a5:2a:28:81:0f:3f:56:1b:4a:c8:dd:52:15:db:cf:
26:7f:9f:52:8a:8c:f7:1c:c3:5a:fe:ba:10:b5:ca:
e3:03:97:34:8c:2a:82:22:4f:da:1a:6a:60:a6:23:
0d:a6:f9:45:cb:93:f9:60:cf:5c:6b:fc:4e:0e:00:
18:09:4f:37:66:b7:85:86:d4:fa:d3:c5:b0:ac:d6:
3e:8e:b9:12:77:7c:05:65:74:43:a4:3e:84:7f:85:
0a:79:59:e6:3e:93:46:21:98:99:2f:07:38:76:f3:
cb:52:1e:3b:ce:30:37:02:a0:8e:2a:07:cb:6f:c1:
b6:47:79:7b:a1:17:aa:e6:90:0c:4d:66:a4:43:0a:
30:e8:81:2c:0f:31:e4:25:b2:b3:4d:70:6f:c7:e6:
ad:a0:56:83:1c:5d:a1:60:8b:65:ed:4e:eb:4c:af:
35:53:ad:74:f1:2a:64:de:0e:5e:57:e8:72:66:c8:
05:77:81:3e:9b:45:45:77:fc:5a:88:02:ba:36:59:
44:b4:f7:92:c2:17:91:c7:38:da:3c:60:9c:9e:11:
b3:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:AE:60:BB:EF:3E:2D:3E:C8:63:E7:A1:86:69:DA:BF:FB:6B:52:3F
X509v3 Authority Key Identifier:
keyid:67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/H65gu-8-LT7IY-ehhmnav_trUj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.161.63.0/24
91.229.112.0/23
193.9.17.0/24
213.108.133.0/24
Signature Algorithm: sha256WithRSAEncryption
44:0a:f9:8a:f6:c7:30:66:2a:1a:93:ae:45:48:fb:05:38:99:
3d:4f:60:ea:21:3a:1f:2d:d3:65:1a:5e:ca:6f:9f:6a:5c:8f:
9f:5b:22:e3:cc:d4:06:36:69:9f:f6:a9:21:ed:0c:1f:15:1b:
a0:2c:f5:1c:51:13:29:ec:de:7c:15:1d:13:26:62:67:a4:ad:
ec:6e:e0:11:9d:84:48:da:e0:91:82:ee:8a:e8:96:a2:3b:d1:
23:69:54:68:0a:cd:8b:44:49:2b:96:d3:43:14:69:c6:82:f6:
c1:21:65:6c:c1:7c:20:7e:f3:d9:cc:f8:4e:23:f2:70:6a:49:
9d:59:55:2b:93:e7:aa:c7:3e:44:84:73:a4:1f:c9:92:fb:36:
16:75:9e:c5:9a:07:1d:c5:dc:cc:a4:10:5f:4a:da:69:cb:c6:
be:83:be:f5:84:b1:80:43:22:9b:22:f9:3e:8c:dc:ab:c6:63:
d0:dc:f8:ab:0f:c2:65:80:27:4c:76:58:97:ed:bc:b9:24:8e:
c6:00:6b:90:f5:c8:e0:4e:ee:4e:c7:68:c7:aa:94:a2:53:9c:
1e:d1:da:7b:ff:c4:56:42:fb:40:f7:e6:a5:06:f7:0d:a4:f8:
c0:7a:16:a1:d1:88:d3:ab:2c:0d:2d:3c:27:c1:f0:81:88:ef:
02:26:28:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:55 2023 by rpki-client on console-fra.rpki-client.org