Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/1f9ced-6bc2-486b-a4b6-09bdeb6afabd/1/HOkDlmgZLQznfJDE0ujf4kimD_8.roa
File: HOkDlmgZLQznfJDE0ujf4kimD_8.roa (raw, json)
Hash identifier: pyOM6xtJSfhDOEUK6QrsyCW40cb7rxlLyA1AClRnFPM=
Subject key identifier: 1C:E9:03:96:68:19:2D:0C:E7:7C:90:C4:D2:E8:DF:E2:48:A6:0F:FF
Certificate issuer: /CN=1a001d77025f052af7d0e62e1701016b9e22e002
Certificate serial: 0D6C6FCE
Authority key identifier: 1A:00:1D:77:02:5F:05:2A:F7:D0:E6:2E:17:01:01:6B:9E:22:E0:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GgAddwJfBSr30OYuFwEBa54i4AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/1f9ced-6bc2-486b-a4b6-09bdeb6afabd/1/HOkDlmgZLQznfJDE0ujf4kimD_8.roa
Signing time: Sat 01 Jan 2022 00:58:04 +0000
ROA not before: Sat 01 Jan 2022 00:58:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205451
IP address blocks: 185.218.44.0/22 maxlen: 22
2a0c:8b00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225210318 (0xd6c6fce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a001d77025f052af7d0e62e1701016b9e22e002
Validity
Not Before: Jan 1 00:58:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ce9039668192d0ce77c90c4d2e8dfe248a60fff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:fe:df:12:93:66:68:2b:ed:9b:11:8c:1e:af:
d6:fb:17:f5:c1:41:a3:f4:3b:16:72:b6:f3:d1:6d:
e9:d9:2e:9a:8d:90:62:61:03:e4:23:38:33:43:76:
2a:11:dc:7d:be:4f:89:66:d7:88:99:8e:2e:83:be:
8e:92:1a:3d:8c:81:87:39:d7:98:05:1d:a0:70:54:
80:90:62:04:6d:f5:9c:b4:c7:47:8d:3e:c7:44:6f:
6c:a0:14:18:fd:e4:cc:e7:90:d7:fb:7f:6c:72:ae:
76:01:9a:27:45:b5:b6:0c:1b:ca:43:27:7c:c0:0d:
0a:aa:50:c6:45:39:f4:fd:d7:1f:0c:86:ae:9d:97:
cc:cf:f4:0a:06:1e:ae:75:0f:1b:12:de:81:1d:8a:
67:07:41:a3:3f:8b:65:21:f7:5f:f2:3f:95:49:66:
30:6e:ba:b6:bf:05:5b:8a:f6:fa:c3:2e:f0:37:07:
10:cb:25:55:95:2d:e3:9a:9a:7b:4a:e4:f6:51:5f:
81:bf:83:11:11:78:d5:4c:64:cf:4b:43:5f:9d:2f:
86:f9:9b:4d:8a:df:ce:98:72:62:40:cf:03:c5:3d:
0d:fb:53:78:2a:24:22:e4:32:69:a8:44:1b:8a:ca:
eb:46:10:67:58:f8:b1:38:b9:52:0d:f7:b9:8d:3b:
ca:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:E9:03:96:68:19:2D:0C:E7:7C:90:C4:D2:E8:DF:E2:48:A6:0F:FF
X509v3 Authority Key Identifier:
keyid:1A:00:1D:77:02:5F:05:2A:F7:D0:E6:2E:17:01:01:6B:9E:22:E0:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GgAddwJfBSr30OYuFwEBa54i4AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/1f9ced-6bc2-486b-a4b6-09bdeb6afabd/1/HOkDlmgZLQznfJDE0ujf4kimD_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/1f9ced-6bc2-486b-a4b6-09bdeb6afabd/1/GgAddwJfBSr30OYuFwEBa54i4AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.44.0/22
IPv6:
2a0c:8b00::/32
Signature Algorithm: sha256WithRSAEncryption
13:a0:e7:5a:84:f4:75:05:72:68:52:9f:2e:9c:d1:a8:b9:c6:
ca:a2:90:46:bb:82:3d:d3:88:4b:05:bc:09:0d:b2:0b:21:55:
f4:31:33:a9:09:89:49:35:65:b2:9d:d8:6f:26:e6:5f:38:31:
cc:d2:3f:d0:65:10:ad:5e:6f:cf:ef:59:31:95:e5:55:5b:09:
4f:d1:bf:76:d3:14:7b:bd:e7:0d:0a:f0:5e:a3:87:26:6c:b3:
e7:21:3b:16:92:3e:9e:53:3e:07:fb:21:07:7e:86:92:4a:96:
eb:29:17:8d:a5:9e:a5:e4:ba:24:7d:56:1e:75:03:25:a4:1f:
fc:22:89:12:75:95:3b:81:52:9e:17:4d:cb:65:36:cf:bc:9a:
e6:47:16:8c:c5:b8:59:06:4f:81:cf:05:d8:c9:6d:5e:df:cc:
07:bf:d7:24:c4:77:7d:f7:e5:55:f2:79:a5:6a:49:41:48:fa:
f6:e4:31:d7:f5:fb:45:ab:50:6d:76:c8:f6:53:55:39:21:8b:
4b:b8:40:a7:2d:2c:d2:84:f7:84:ec:a7:5b:d0:9f:f6:03:46:
9e:0b:31:a0:5f:17:a9:82:21:3f:44:50:94:ac:18:ea:f5:2e:
9d:e0:1d:19:57:14:e2:b4:fe:c0:73:96:0f:54:88:6b:b8:fd:
b0:4c:02:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:27 2023 by rpki-client on console-ams.rpki-client.org