Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/RUHKDXST6D5dJUPZ9dh--pm4d4w.roa
File: RUHKDXST6D5dJUPZ9dh--pm4d4w.roa (raw, json)
Hash identifier: bfqjT5A7D1gDQtajMCxqPZB9YR6DM50s/j1xMBbH05o=
Subject key identifier: 45:41:CA:0D:74:93:E8:3E:5D:25:43:D9:F5:D8:7E:FA:99:B8:77:8C
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0184F17A639BAF49B006F9274712FBBC2303
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/RUHKDXST6D5dJUPZ9dh--pm4d4w.roa
Signing time: Thu 08 Dec 2022 11:24:00 +0000
ROA not before: Thu 08 Dec 2022 11:24:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208911
IP address blocks: 194.15.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:7a:63:9b:af:49:b0:06:f9:27:47:12:fb:bc:23:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Dec 8 11:24:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4541ca0d7493e83e5d2543d9f5d87efa99b8778c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:69:f2:71:87:4e:a9:0b:af:e1:b8:71:84:dd:
b8:4b:71:50:e1:b2:66:64:a4:19:37:b6:62:09:8e:
d3:e6:eb:4e:84:fd:37:91:40:a2:87:32:60:85:8d:
b7:c8:ba:a0:cb:41:23:c8:db:d1:96:18:1e:2f:fc:
3d:d5:bb:f0:84:75:e1:83:f1:e7:ca:ed:30:6d:cb:
55:fd:24:8a:45:40:b9:bb:b8:a1:7b:96:e6:95:ab:
27:3b:86:69:77:70:f3:aa:9a:1b:b2:56:c7:94:67:
9e:ca:a0:00:21:44:70:dd:ac:d9:d8:95:af:23:f6:
ee:b5:72:89:73:ab:fe:e5:59:1a:c8:c2:fc:d1:55:
95:44:6f:14:8f:ec:85:64:60:68:08:da:37:bb:fa:
85:29:06:4b:87:71:35:af:aa:37:64:9c:03:20:a8:
ed:dc:74:21:f5:77:b2:a5:6c:83:06:86:61:4a:0c:
63:fe:69:45:f1:7c:36:59:13:28:65:86:92:7c:50:
e8:6f:de:e7:2f:bd:e1:0e:a5:41:bf:96:10:0b:f3:
a6:fe:e6:31:c9:c3:78:4a:14:4a:da:d8:26:4d:ef:
7f:1c:b4:26:7c:48:19:05:d2:f5:4e:72:79:69:7f:
b8:99:ea:59:ce:1d:ca:37:6a:e4:7f:75:79:82:64:
c6:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:41:CA:0D:74:93:E8:3E:5D:25:43:D9:F5:D8:7E:FA:99:B8:77:8C
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/RUHKDXST6D5dJUPZ9dh--pm4d4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.52.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:d0:4f:39:a0:23:12:ca:c8:47:8d:f5:82:86:81:66:60:c7:
ff:fa:d6:38:90:f3:c7:71:04:14:db:d8:0d:2d:42:b6:08:a0:
75:ed:e3:d5:b7:f3:e2:6a:71:9e:1c:9b:6e:cb:b1:e4:51:11:
31:e7:0c:a1:a8:e9:42:2e:be:e0:9f:e9:9e:55:fa:da:e4:8c:
d0:f7:34:9f:90:25:5b:3f:60:d4:d8:6b:bd:0b:4b:ba:c4:03:
92:f6:1d:b0:bb:e6:34:59:08:5a:99:d0:d9:17:32:80:fb:f8:
5a:97:c0:20:e5:0e:27:4e:a4:b7:5f:c5:f1:ae:e2:41:57:e9:
b3:23:01:d0:5e:94:38:18:74:46:da:8d:0e:6f:11:b5:b1:b7:
2a:74:57:97:96:64:4b:cb:e4:be:9a:cc:95:d9:e0:58:b3:ce:
44:24:6e:17:3d:ac:da:fe:99:4e:e3:ce:40:e2:51:28:a3:65:
26:85:86:c6:a6:59:7a:7e:56:b8:3b:93:9a:93:d4:6c:1a:33:
70:33:93:0a:ea:ac:23:73:56:4d:fd:01:15:94:b5:4e:83:4b:
5d:fc:c6:27:22:57:c7:4d:c0:b1:bc:a3:1e:51:2b:34:bf:36:
ef:78:4d:d2:44:63:74:8b:eb:4f:07:2d:62:bb:6a:20:a0:5e:
ae:74:92:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:18 2024 by rpki-client on console-ams.rpki-client.org