Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/2309cc-fa79-44d1-8986-4d537cf01809/1/H2g-EhNCRk489wkzRhLsWLbNSQ8.roa
File: H2g-EhNCRk489wkzRhLsWLbNSQ8.roa (raw, json)
Hash identifier: mXZjL3ZjQ+Tp1Jk89vJ+7R9bvJ1j/MgJnYnMhBvVa7E=
Subject key identifier: 1F:68:3E:12:13:42:46:4E:3C:F7:09:33:46:12:EC:58:B6:CD:49:0F
Certificate issuer: /CN=68417da8aa4fe0b8cff188412eedda63cbdcf996
Certificate serial: 01763CAA
Authority key identifier: 68:41:7D:A8:AA:4F:E0:B8:CF:F1:88:41:2E:ED:DA:63:CB:DC:F9:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aEF9qKpP4LjP8YhBLu3aY8vc-ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/2309cc-fa79-44d1-8986-4d537cf01809/1/H2g-EhNCRk489wkzRhLsWLbNSQ8.roa
Signing time: Sat 01 Jan 2022 11:57:45 +0000
ROA not before: Sat 01 Jan 2022 11:57:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49101
IP address blocks: 193.56.11.0/24 maxlen: 24
2a0b:4740::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24525994 (0x1763caa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68417da8aa4fe0b8cff188412eedda63cbdcf996
Validity
Not Before: Jan 1 11:57:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f683e121342464e3cf709334612ec58b6cd490f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6a:53:b6:d7:79:7a:6c:4c:b2:0d:c0:00:88:
65:04:60:7d:4b:d5:18:8a:6e:68:18:8a:d6:d0:15:
56:a3:d9:bd:d5:eb:f1:47:ef:2b:a0:83:00:ce:50:
92:8d:dd:d3:5a:ee:5c:e5:14:78:0b:cb:3f:4f:5a:
2f:15:be:7d:d7:54:ba:d3:09:dc:b1:df:ae:40:ad:
57:bd:5d:71:84:48:ac:6c:cf:9a:fb:c7:99:07:fd:
ea:a7:fd:b8:74:4b:ff:2d:24:a4:4e:96:f5:82:94:
33:64:db:94:78:0b:eb:c2:7a:aa:b3:df:a1:90:47:
5e:dc:50:d9:cc:42:8a:ba:a6:45:d0:40:ba:41:4a:
05:f3:66:95:62:39:f2:81:c8:bc:44:5a:2e:d1:09:
83:e5:81:5e:cc:4c:6d:7a:bb:54:83:38:0b:17:1f:
b9:90:99:8c:ca:bc:02:11:e8:03:b7:f5:57:15:24:
6f:b7:ed:26:ee:ac:e6:f7:7c:d0:cd:b3:29:7b:16:
de:b4:d1:f0:65:ee:14:88:73:9b:16:82:af:43:46:
09:44:e9:32:66:dc:fb:c2:75:77:5e:a1:e5:4e:ee:
38:37:17:8f:df:ae:34:c1:eb:97:df:e1:b7:b5:13:
8c:8f:50:ec:58:bb:5f:96:f6:86:a0:d2:5b:25:e2:
e8:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:68:3E:12:13:42:46:4E:3C:F7:09:33:46:12:EC:58:B6:CD:49:0F
X509v3 Authority Key Identifier:
keyid:68:41:7D:A8:AA:4F:E0:B8:CF:F1:88:41:2E:ED:DA:63:CB:DC:F9:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aEF9qKpP4LjP8YhBLu3aY8vc-ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2309cc-fa79-44d1-8986-4d537cf01809/1/H2g-EhNCRk489wkzRhLsWLbNSQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2309cc-fa79-44d1-8986-4d537cf01809/1/aEF9qKpP4LjP8YhBLu3aY8vc-ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.11.0/24
IPv6:
2a0b:4740::/29
Signature Algorithm: sha256WithRSAEncryption
8a:ae:9f:f3:31:9c:5b:67:f9:6d:2e:32:a8:27:4a:b9:a7:42:
65:9e:9d:49:fe:91:f0:95:a6:21:3f:27:44:ca:86:89:cb:5f:
cd:95:83:9d:06:07:ce:9b:f6:16:f5:50:52:fe:08:8f:03:9f:
02:91:82:61:6b:7b:13:1b:7e:92:d7:14:d9:0c:f3:47:67:99:
d4:84:fe:78:82:44:ce:01:e7:a3:c0:cb:c1:13:cb:63:d3:3a:
36:4e:b2:d8:12:8a:a0:57:42:c8:60:7d:d3:9f:c9:74:88:01:
3e:9b:40:c6:69:39:60:bb:c0:9e:3f:26:86:80:b6:04:6e:39:
e2:05:92:b7:7c:5a:9b:78:ce:9c:19:85:82:b5:ff:ef:ae:74:
a5:50:9a:2d:84:6d:ae:b5:de:86:c0:f3:c5:dd:55:d6:ca:c4:
de:be:e7:3e:58:1c:be:a6:f4:81:8d:96:c3:ad:09:1d:d8:a6:
72:5a:34:26:c2:86:79:2e:cf:8f:3f:cc:bd:4b:d6:29:99:4a:
77:a9:b9:b4:9f:59:42:3c:30:73:36:26:93:fe:9d:95:14:02:
ad:9e:d3:8b:19:5f:7d:d4:98:4f:6e:72:64:ec:00:1c:29:e5:
83:35:57:3c:15:4a:d8:f5:8d:ce:b6:9c:20:76:3a:a2:71:b3:
d6:95:0c:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:01 2024 by rpki-client on console-fra.rpki-client.org