Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/dc7345-75cb-4420-a3f0-65fb10a06e89/1/RHEnZ1ghtMe_E6y2D717JYafC5s.roa
File: RHEnZ1ghtMe_E6y2D717JYafC5s.roa (raw, json)
Hash identifier: CCol+mtDG5/Qc8gr7byh0a5oFg3Eb+nApSUP+R3NfLc=
Subject key identifier: 44:71:27:67:58:21:B4:C7:BF:13:AC:B6:0F:BD:7B:25:86:9F:0B:9B
Certificate issuer: /CN=2abcc5c664a4a82305892a8c433e94ffe32dadb7
Certificate serial: 0269A5
Authority key identifier: 2A:BC:C5:C6:64:A4:A8:23:05:89:2A:8C:43:3E:94:FF:E3:2D:AD:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KrzFxmSkqCMFiSqMQz6U_-Mtrbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/dc7345-75cb-4420-a3f0-65fb10a06e89/1/RHEnZ1ghtMe_E6y2D717JYafC5s.roa
Signing time: Wed 25 May 2022 13:39:13 +0000
ROA not before: Wed 25 May 2022 13:39:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206070
IP address blocks: 185.197.104.0/22 maxlen: 22
185.212.160.0/22 maxlen: 22
185.245.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158117 (0x269a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2abcc5c664a4a82305892a8c433e94ffe32dadb7
Validity
Not Before: May 25 13:39:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=447127675821b4c7bf13acb60fbd7b25869f0b9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:9d:11:ee:f5:ed:c1:74:0f:9a:66:f4:31:56:
e2:fc:34:4c:ed:35:b5:1f:81:ff:41:f6:f8:f3:c6:
fe:04:06:17:43:54:dc:03:72:13:7a:04:7a:ff:33:
0e:ce:73:3b:08:6c:4d:95:3a:b8:81:91:8e:3b:af:
bc:5b:19:8c:90:b2:57:0a:87:f0:63:fc:04:a8:e4:
59:9d:29:b7:d5:c8:3b:fc:74:f8:46:a4:a2:f5:a4:
18:01:9f:28:3a:c9:f8:22:be:e4:64:27:de:3a:62:
6a:44:61:e7:9f:e6:4e:08:99:b5:48:11:25:d5:fb:
47:bf:0c:44:d6:95:0b:38:a1:96:65:7c:18:d3:87:
69:35:8a:7b:cb:c6:97:3a:85:0c:27:f3:96:36:a8:
5e:0f:36:f1:d3:e9:b8:9f:9e:8d:de:8c:46:97:f0:
a5:33:4c:6c:90:de:69:12:9e:05:06:b9:3d:c6:4f:
7a:4d:ae:e1:f3:1c:f6:17:21:65:92:0d:bf:83:a2:
03:b4:46:c1:e9:e6:18:63:23:b0:fc:f9:94:74:fc:
7f:f8:dd:aa:90:60:33:dd:6c:17:55:63:e6:46:ab:
2d:d8:eb:7f:d7:f9:38:d9:ba:f2:81:39:a4:85:56:
4b:2c:28:de:80:43:2e:66:de:ae:f7:ea:56:48:2b:
25:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:71:27:67:58:21:B4:C7:BF:13:AC:B6:0F:BD:7B:25:86:9F:0B:9B
X509v3 Authority Key Identifier:
keyid:2A:BC:C5:C6:64:A4:A8:23:05:89:2A:8C:43:3E:94:FF:E3:2D:AD:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KrzFxmSkqCMFiSqMQz6U_-Mtrbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/dc7345-75cb-4420-a3f0-65fb10a06e89/1/RHEnZ1ghtMe_E6y2D717JYafC5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/dc7345-75cb-4420-a3f0-65fb10a06e89/1/KrzFxmSkqCMFiSqMQz6U_-Mtrbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.104.0/22
185.212.160.0/22
185.245.24.0/22
Signature Algorithm: sha256WithRSAEncryption
14:87:64:02:27:e8:19:06:f1:b6:13:b2:68:37:aa:46:f1:60:
19:a6:32:f1:74:92:b0:b0:7b:90:9b:ed:71:63:f9:4b:1c:65:
52:ec:61:53:c4:fa:d9:ac:89:92:8f:18:31:7c:13:12:4b:f0:
b2:56:5a:18:3f:71:63:fb:ff:f1:c0:ad:74:8c:2d:c3:2a:0a:
2a:8e:dc:44:c4:64:21:9a:db:28:79:8c:1d:1b:c7:5f:e9:84:
96:a2:b1:8c:27:0e:c5:64:d0:82:86:8d:58:53:fb:d1:ce:b0:
33:36:f8:d2:cb:6d:81:34:85:4a:a7:6a:42:d8:80:f4:79:d5:
53:a9:c4:25:a6:f4:eb:be:c3:0e:11:dd:8c:69:a1:4f:5a:a2:
65:05:49:2b:b6:b1:82:9c:31:87:3f:14:f3:4d:7b:86:ae:09:
5a:21:91:69:27:7b:89:a8:5f:38:fd:96:3c:3e:d8:50:51:9c:
71:42:ff:fb:a5:2c:6e:f8:e5:38:2c:b6:d2:72:3e:57:e4:64:
55:63:68:c7:d0:d3:6c:b6:b7:d9:8e:0f:d5:4f:1e:74:49:70:
68:3c:b6:1c:60:a3:80:5b:ec:e2:0b:4f:15:2e:5e:75:4c:73:
6b:3c:f5:25:8d:c3:04:c3:5d:71:a2:7f:64:da:fc:0f:09:c2:
e9:e2:17:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:02 2023 by rpki-client on console-fra.rpki-client.org