Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/HaAa5v3ks2zHvpNBmgrllKPTkaM.roa
File: HaAa5v3ks2zHvpNBmgrllKPTkaM.roa (raw, json)
Hash identifier: rv6QQMVrm+zT0pcOc2zH5haPoW/D3XVKjhVMm+HhnwA=
Subject key identifier: 1D:A0:1A:E6:FD:E4:B3:6C:C7:BE:93:41:9A:0A:E5:94:A3:D3:91:A3
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 01822B2248D6FA718BA12FF107BEDC4834BA
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/HaAa5v3ks2zHvpNBmgrllKPTkaM.roa
Signing time: Sat 23 Jul 2022 12:57:23 +0000
ROA not before: Sat 23 Jul 2022 12:57:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208476
IP address blocks: 185.231.113.0/24 maxlen: 24
45.139.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:2b:22:48:d6:fa:71:8b:a1:2f:f1:07:be:dc:48:34:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Jul 23 12:57:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1da01ae6fde4b36cc7be93419a0ae594a3d391a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d6:51:87:f3:4d:44:71:21:a5:1e:54:25:b6:
6b:c5:f5:cf:c5:c9:c6:19:1c:34:45:10:33:38:27:
57:e6:a6:78:b5:7c:52:81:32:98:e3:4f:19:f9:48:
18:eb:d8:e6:30:2e:ab:cc:0c:0c:5d:66:9f:fd:b3:
58:83:31:29:d6:30:74:5e:b5:f3:be:ec:44:cd:99:
a5:14:f9:02:29:30:64:67:a3:1d:6b:28:49:08:82:
a4:0f:60:3f:52:7d:ea:bc:97:5b:97:73:c6:9c:2c:
2a:f5:44:94:0a:93:6c:ae:d8:8b:5b:0c:59:37:08:
2c:6d:08:65:45:e7:5b:d9:55:41:c3:b7:13:08:e1:
a8:7e:86:c6:58:da:02:8b:d9:ae:8f:ba:47:fd:49:
55:ae:7a:c0:dd:74:12:93:3e:a3:03:ee:43:c3:c7:
5c:71:eb:5c:76:19:aa:67:0c:d5:c3:1f:47:b8:3d:
02:c2:91:86:87:cd:cc:54:d5:3e:6b:65:ef:81:71:
31:64:a0:6c:13:bd:6e:fb:3f:58:d6:2f:3d:c5:b4:
2a:b1:a3:d3:93:81:c4:78:a7:3d:62:54:94:8e:b6:
a4:6f:81:78:ee:d0:1e:fb:74:38:90:5d:25:62:88:
28:c7:b5:9e:39:5e:28:fe:db:a7:ee:79:52:18:bb:
c1:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A0:1A:E6:FD:E4:B3:6C:C7:BE:93:41:9A:0A:E5:94:A3:D3:91:A3
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/HaAa5v3ks2zHvpNBmgrllKPTkaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.8.0/24
185.231.113.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:c0:9d:66:ed:3b:34:11:34:88:ab:5d:d5:90:8a:ec:4d:7f:
6c:31:f9:3d:f7:ba:c8:81:75:f9:b4:71:2b:18:29:77:54:91:
68:68:70:ad:5a:a4:ca:03:85:76:f9:7e:a4:fb:4c:9b:ba:06:
12:06:3f:ac:1f:28:ce:3f:12:74:ff:87:9d:f7:c8:4b:6b:8b:
59:cc:ee:fc:05:7a:b6:99:aa:66:f3:c9:6a:58:b4:33:41:f8:
13:67:9e:2d:24:3e:56:4c:94:6b:fd:62:7d:6a:92:c7:89:9d:
40:ab:7b:f3:8c:1a:03:15:fc:13:b6:70:c0:3c:67:72:1a:e7:
3a:ba:07:8a:68:c4:a0:30:75:42:36:d2:1a:57:be:e4:e2:8e:
d9:a3:ec:d8:54:f3:cd:bb:75:71:ca:ba:62:b0:06:aa:b6:5d:
d3:f6:48:55:57:29:59:d8:e5:f8:ce:71:bf:99:f0:da:fa:d6:
16:be:16:7a:cb:8c:9e:4a:cf:8d:0a:3d:d7:13:b4:97:40:c8:
07:18:87:1b:0e:11:53:77:a9:ad:77:53:c8:9e:40:15:79:63:
39:f7:e9:fc:a2:33:b6:c5:38:65:57:30:6b:2d:75:a4:ee:11:
84:42:f8:00:28:ea:89:e1:c3:04:c1:85:29:6d:01:b7:8d:cf:
ee:44:24:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:20 2023 by rpki-client on console-fra.rpki-client.org