Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/HgjGYCxeJF_D4a8ZY50Q3rJAth4.roa
File: HgjGYCxeJF_D4a8ZY50Q3rJAth4.roa (raw, json)
Hash identifier: bsotCnJgNBMPBdScmz7ZDxm3/JoEoeemRow+noNIW7o=
Subject key identifier: 1E:08:C6:60:2C:5E:24:5F:C3:E1:AF:19:63:9D:10:DE:B2:40:B6:1E
Certificate issuer: /CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Certificate serial: 029BF46B
Authority key identifier: B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/HgjGYCxeJF_D4a8ZY50Q3rJAth4.roa
Signing time: Sat 02 Jul 2022 20:23:25 +0000
ROA not before: Sat 02 Jul 2022 20:23:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212193
IP address blocks: 45.94.4.0/24 maxlen: 24
45.94.6.0/24 maxlen: 24
45.94.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43775083 (0x29bf46b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Validity
Not Before: Jul 2 20:23:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e08c6602c5e245fc3e1af19639d10deb240b61e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:13:fb:06:d2:26:f2:f0:69:96:bb:11:53:5e:
eb:5c:bb:42:c6:64:05:53:08:86:85:2d:a8:13:39:
2a:56:f7:96:c0:ff:63:fe:23:c7:0c:5a:c9:9a:7c:
cb:ae:78:7e:74:4b:4a:72:02:56:d4:d6:56:0d:c7:
ae:1f:0d:49:46:4c:8e:5d:e6:7c:81:7b:ea:ec:12:
4f:0d:bb:b6:dd:34:09:1b:ce:1f:dc:61:f4:a8:67:
11:2d:9b:0f:0b:63:e8:9e:55:a9:b6:d4:81:18:ea:
93:56:bd:d9:8d:27:6d:5c:85:16:c9:83:11:4a:38:
0d:a0:e4:98:bb:2c:88:7b:e9:6e:ae:95:a6:47:c0:
fa:43:f0:6b:a9:55:a7:cf:f8:0a:72:3c:29:3a:42:
55:c5:49:b5:13:c3:59:a7:73:50:26:be:f1:d7:f2:
53:09:82:47:b9:70:59:b6:df:0f:fb:5c:ec:48:19:
f9:4e:dc:f7:b5:1c:47:66:98:c2:06:fd:85:ef:c1:
f7:e1:b6:9b:b4:df:db:18:70:da:75:92:76:63:a5:
b1:60:d3:a1:68:9f:b2:4f:67:a6:29:3b:4d:1d:fc:
4f:02:0e:62:2e:88:a2:c4:98:00:d4:20:a9:49:4d:
22:94:73:ad:f9:90:79:19:fa:b5:7e:b0:d6:15:87:
46:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:08:C6:60:2C:5E:24:5F:C3:E1:AF:19:63:9D:10:DE:B2:40:B6:1E
X509v3 Authority Key Identifier:
keyid:B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/HgjGYCxeJF_D4a8ZY50Q3rJAth4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/ssC9r63qeNzjEvhi3fQrG9TE9kU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.4.0/24
45.94.6.0/23
Signature Algorithm: sha256WithRSAEncryption
13:ef:a5:da:b3:00:05:f8:ed:7f:f4:c4:7c:33:33:ee:29:70:
4e:b1:85:2e:ca:f6:63:06:30:4a:71:2a:df:4d:6a:21:02:89:
52:6f:bd:a0:e7:65:84:05:0b:d2:fe:65:0f:91:5c:da:4f:d9:
af:18:0a:9d:b3:44:cc:2d:56:de:7b:0e:1f:a1:4d:53:d4:ab:
1b:0f:b4:42:18:41:97:02:94:90:69:26:50:ae:6a:bc:e3:c8:
e2:14:0f:a4:0e:86:03:c3:b9:fd:1e:31:db:2a:a2:de:f8:1a:
9c:ea:f7:20:04:b7:4d:38:bf:ba:cd:3e:24:b2:3e:46:24:a0:
32:ce:cc:b1:98:2b:76:5c:8a:bf:42:4a:7a:29:ae:4e:c0:ff:
e1:87:0f:49:e8:b4:5f:d3:30:fb:9e:c7:70:5a:d2:44:d7:4b:
b1:8f:87:3d:7f:d2:69:aa:32:0c:cd:80:93:ca:ca:9a:48:dc:
95:61:9a:13:f8:5e:25:45:8a:cf:f4:51:95:dc:6e:3d:df:cb:
4b:fa:d7:38:42:1d:ba:b7:83:d0:71:67:df:05:4c:8a:88:1b:
37:94:f5:fc:ca:e0:8f:21:e5:b3:2d:fb:f0:a3:0c:04:29:cd:
bc:9d:39:09:13:22:fa:78:e4:2a:a8:12:41:03:18:2b:e0:42:
80:69:dc:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:36 2024 by rpki-client on console-ams.rpki-client.org