Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/H_1HZHpKpHOHI8ZR09q8wWhzw5Y.roa
File: H_1HZHpKpHOHI8ZR09q8wWhzw5Y.roa (raw, json)
Hash identifier: GjvlNQGCpR8fOxdTHnPY3A/3sgljQkHM6u3Rdmf7QwI=
Subject key identifier: 1F:FD:47:64:7A:4A:A4:73:87:23:C6:51:D3:DA:BC:C1:68:73:C3:96
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 02CF0FBB
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/H_1HZHpKpHOHI8ZR09q8wWhzw5Y.roa
Signing time: Sat 26 Feb 2022 11:41:29 +0000
ROA not before: Sat 26 Feb 2022 11:41:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 85.158.147.0/24 maxlen: 24
109.205.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47124411 (0x2cf0fbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Feb 26 11:41:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ffd47647a4aa4738723c651d3dabcc16873c396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:93:de:e6:61:47:c2:39:36:87:1b:08:7d:40:
17:16:af:44:5f:24:cd:2a:97:f6:54:51:ec:7b:85:
35:c1:9e:52:61:26:44:69:84:b5:76:5d:5d:87:ee:
1f:e4:e0:2b:15:60:3c:43:af:db:17:a8:d6:62:0c:
da:77:cb:f8:d4:0a:ac:a4:c7:7b:22:d1:b9:ce:80:
9d:2a:0e:f0:7b:c1:fa:4d:58:7a:b8:8b:0b:14:12:
30:99:ca:6d:30:59:02:75:6e:ec:05:b5:eb:5b:de:
30:d5:bb:66:29:33:1b:d2:41:08:c8:eb:36:e7:be:
ac:b7:be:ea:49:43:87:3b:5a:cd:d1:93:29:62:e2:
02:aa:8e:16:3f:ef:1c:bf:19:8e:d5:f7:86:9c:8f:
43:a5:e3:71:08:5e:c9:eb:1b:aa:48:de:c9:9e:9d:
de:fd:4e:4e:b0:38:96:4f:0a:02:ab:db:f5:7e:e6:
49:01:3f:69:b7:ae:09:54:d6:6e:ae:59:7e:da:1c:
69:ea:34:5a:d4:e2:61:2b:a0:8b:3b:5d:25:b3:62:
03:36:a4:61:d4:ec:3a:9c:02:9b:17:48:0d:e9:db:
dd:14:40:f6:0b:d1:a9:34:9e:b7:8e:a2:35:39:d7:
03:a7:ea:c9:5c:01:3a:60:8c:41:2f:69:42:05:3b:
7b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:FD:47:64:7A:4A:A4:73:87:23:C6:51:D3:DA:BC:C1:68:73:C3:96
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/H_1HZHpKpHOHI8ZR09q8wWhzw5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.147.0/24
109.205.210.0/24
Signature Algorithm: sha256WithRSAEncryption
55:a5:b0:a4:06:5f:33:ac:20:0b:e8:75:03:2b:56:f8:4d:a0:
95:3a:b6:13:14:11:d9:e9:91:f1:e3:22:f4:af:9b:f1:c4:f3:
11:31:cf:55:e3:81:44:fd:7d:43:b1:12:36:44:3c:f2:a0:89:
0a:8b:34:a5:57:71:11:cf:4e:a0:f9:35:ef:69:75:77:0b:c5:
57:66:0d:bf:80:0c:9a:47:2b:7a:4e:c1:5f:05:5f:62:f8:a4:
c6:4c:1e:f3:ca:c0:e6:e6:88:59:8d:63:24:68:ab:e7:75:39:
04:b0:4e:7a:89:ca:ae:86:03:2c:a8:e0:77:41:2d:45:b9:f9:
f8:cf:32:79:3d:52:d7:23:cb:c6:e0:f8:6e:4b:bf:94:b1:23:
bd:42:4c:cc:65:42:e0:9b:c2:41:4a:6f:cc:03:d2:8a:33:94:
35:28:7d:f2:64:7f:18:85:9e:e7:21:8d:7e:72:df:15:fa:49:
90:15:48:66:6b:e6:f0:7e:69:96:35:6f:46:ee:a2:7c:28:8e:
1c:6c:4a:a5:ab:33:63:e4:b6:6b:53:90:af:12:82:9b:c6:6c:
46:d3:0d:18:cc:05:fa:23:6b:48:a5:22:f9:33:84:55:63:56:
eb:5c:e6:b8:92:23:28:e8:6d:ea:09:50:66:91:91:f1:28:04:
77:2c:d6:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:00 2023 by rpki-client on console-fra.rpki-client.org