Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/962b3f-fc26-4549-ae02-4d049a1eaf2f/1/HKZ_coW2Co-NsyznNqQfTkFi3m0.roa
File: HKZ_coW2Co-NsyznNqQfTkFi3m0.roa (raw, json)
Hash identifier: J0AaDXoMNRh1bfYPt3E2sFEFDHwUplxKXoE7DPBGvis=
Subject key identifier: 1C:A6:7F:72:85:B6:0A:8F:8D:B3:2C:E7:36:A4:1F:4E:41:62:DE:6D
Certificate issuer: /CN=d9a988916d51406f9a269f30a02d0086b57f4d5a
Certificate serial: 03A0A8C0
Authority key identifier: D9:A9:88:91:6D:51:40:6F:9A:26:9F:30:A0:2D:00:86:B5:7F:4D:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2amIkW1RQG-aJp8woC0AhrV_TVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/962b3f-fc26-4549-ae02-4d049a1eaf2f/1/HKZ_coW2Co-NsyznNqQfTkFi3m0.roa
Signing time: Sat 01 Jan 2022 04:52:34 +0000
ROA not before: Sat 01 Jan 2022 04:52:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205133
IP address blocks: 46.227.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60860608 (0x3a0a8c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9a988916d51406f9a269f30a02d0086b57f4d5a
Validity
Not Before: Jan 1 04:52:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ca67f7285b60a8f8db32ce736a41f4e4162de6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3d:77:f3:7c:20:10:26:ec:7a:bf:04:77:c6:
64:22:a6:f8:b9:7e:18:ec:f6:b6:3d:06:84:a3:19:
c7:6f:fc:02:39:cf:ba:a5:1b:93:10:e8:ec:51:a4:
38:ba:a4:9a:80:8b:f1:51:4e:84:54:af:71:94:f8:
c8:5e:95:68:dc:e8:a1:c7:28:7e:0a:a5:cc:9c:4f:
3a:50:f9:4d:7d:7d:29:4b:00:9d:c8:6a:95:7f:58:
11:6c:fc:41:f4:d6:0f:2f:b2:36:4e:f1:1d:f7:ad:
16:f2:ac:82:00:eb:d6:2e:a2:47:0e:37:f9:43:09:
92:e5:60:0b:ad:4f:04:29:11:ac:3a:45:7b:6d:ec:
e1:66:76:fd:ce:1a:13:07:38:07:b3:65:8e:93:3a:
65:0c:4a:60:aa:61:6d:c3:c1:85:fa:2a:32:8c:09:
e7:5a:d3:37:e4:ad:7d:f6:ee:d2:56:b9:e9:5d:5e:
aa:a1:2f:fb:6b:1f:52:1e:c5:f5:71:56:f7:48:99:
99:05:9e:e8:bf:a3:e8:a9:e7:02:51:b9:14:1f:7c:
b1:e8:ed:86:95:09:9a:c6:f8:d2:08:e2:57:18:b7:
92:87:f9:1c:09:a7:50:9a:a5:33:7b:2b:a8:6e:5d:
d4:9d:0f:9c:7b:a3:32:f7:a1:c5:7c:a7:15:f0:a0:
b2:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:A6:7F:72:85:B6:0A:8F:8D:B3:2C:E7:36:A4:1F:4E:41:62:DE:6D
X509v3 Authority Key Identifier:
keyid:D9:A9:88:91:6D:51:40:6F:9A:26:9F:30:A0:2D:00:86:B5:7F:4D:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2amIkW1RQG-aJp8woC0AhrV_TVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/962b3f-fc26-4549-ae02-4d049a1eaf2f/1/HKZ_coW2Co-NsyznNqQfTkFi3m0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/962b3f-fc26-4549-ae02-4d049a1eaf2f/1/2amIkW1RQG-aJp8woC0AhrV_TVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.35.0/24
Signature Algorithm: sha256WithRSAEncryption
12:38:b4:b0:f3:ae:b7:f0:d0:b6:bb:11:9b:67:e8:15:6c:c4:
8a:18:25:6d:a1:08:d1:50:24:6d:5b:ee:a4:ba:ff:52:fd:39:
fe:d8:c6:13:9b:47:a5:8b:ef:9f:9d:a8:40:be:2e:e9:48:80:
26:96:5c:56:7b:6f:f4:d1:a7:68:68:31:76:88:e4:31:8b:51:
cc:d4:80:fa:d6:6f:fe:50:10:03:67:5f:c4:54:40:47:d3:15:
6c:6d:50:b0:85:7b:06:65:d3:82:bc:5d:22:bb:96:6e:11:57:
bb:aa:eb:3e:43:a6:4e:97:ba:1a:e3:8f:49:21:4f:e8:02:14:
9a:20:2a:aa:61:9c:c7:c7:4b:0b:16:a9:18:ed:42:bc:bd:ef:
22:67:4a:6a:ae:5b:d8:d1:c6:5a:af:af:11:e9:f1:14:c3:6a:
3f:48:92:d4:64:e4:3a:26:40:8a:e1:6e:0a:61:43:3e:71:45:
78:55:89:6b:5a:b4:73:24:28:9c:6c:83:0e:b7:1d:3d:51:d4:
0d:75:40:20:e2:00:2b:66:6b:4f:ac:a1:f6:2c:dd:12:a9:b1:
9a:02:8c:2b:cf:1f:97:d7:64:cc:6e:f3:48:db:de:b6:0e:eb:
41:c7:5a:67:40:b0:78:b7:40:4c:bf:ac:d0:5d:b8:3b:36:b6:
37:a8:77:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:31 2025 by rpki-client