Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/7af99d-da85-41a5-aa4f-fa6654a2a6fe/1/HUqlDDwyGk4UODqWFVHf35jczP4.roa
File: HUqlDDwyGk4UODqWFVHf35jczP4.roa (raw, json)
Hash identifier: w9URSmqHGjYe4CZdLh/cayrjqXpuvoxxDulJHfPUMYQ=
Subject key identifier: 1D:4A:A5:0C:3C:32:1A:4E:14:38:3A:96:15:51:DF:DF:98:DC:CC:FE
Certificate issuer: /CN=8fe613beebb7ef36992c0491ad13b26707057260
Certificate serial: 0182BFDA5EEE9A6C0EED1B2735ADF7B0CB94
Authority key identifier: 8F:E6:13:BE:EB:B7:EF:36:99:2C:04:91:AD:13:B2:67:07:05:72:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-YTvuu37zaZLASRrROyZwcFcmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/7af99d-da85-41a5-aa4f-fa6654a2a6fe/1/HUqlDDwyGk4UODqWFVHf35jczP4.roa
Signing time: Sun 21 Aug 2022 10:02:15 +0000
ROA not before: Sun 21 Aug 2022 10:02:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201887
IP address blocks: 5.255.128.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:bf:da:5e:ee:9a:6c:0e:ed:1b:27:35:ad:f7:b0:cb:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe613beebb7ef36992c0491ad13b26707057260
Validity
Not Before: Aug 21 10:02:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d4aa50c3c321a4e14383a961551dfdf98dcccfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:64:1d:9a:3a:2b:5f:0e:81:02:94:b8:94:56:
37:7a:01:22:65:4d:ce:ad:32:c9:a8:7e:f4:f2:27:
37:60:1e:36:46:25:40:fc:6a:a3:f4:ea:67:52:ef:
d4:39:86:fe:70:d5:62:3b:e1:4d:0e:60:db:6d:58:
b1:1b:e9:5d:d7:d5:ed:5e:02:31:a8:a7:bc:22:9f:
6b:7c:bd:eb:53:73:3b:23:b7:12:ae:51:cd:6b:8f:
63:fd:37:b7:c9:29:fb:5c:ae:a5:ae:27:1f:6b:b3:
8d:8a:ca:fe:45:d4:b4:62:a5:c9:b9:bc:17:53:ba:
00:fe:4f:09:7d:90:47:b1:53:c9:6f:fa:8a:d5:fc:
99:5a:28:83:a3:1e:e6:7f:91:55:dd:68:64:5f:f2:
ff:cc:47:61:b9:f5:e5:96:63:ad:dc:29:e8:73:91:
81:f7:a2:ee:38:84:ab:f8:47:e3:2d:61:be:e3:8c:
40:b2:31:59:0b:a6:70:03:6b:12:fb:5e:61:02:96:
de:9e:4d:64:b4:85:72:78:15:2a:0b:a0:b7:62:fb:
01:04:f3:fe:78:cb:23:86:f1:c5:02:13:d7:69:11:
16:b4:0f:70:56:bd:69:4c:c7:00:d9:25:98:98:c2:
d1:58:a7:7e:47:cf:a9:5a:12:b2:55:57:9f:48:f1:
0f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:4A:A5:0C:3C:32:1A:4E:14:38:3A:96:15:51:DF:DF:98:DC:CC:FE
X509v3 Authority Key Identifier:
keyid:8F:E6:13:BE:EB:B7:EF:36:99:2C:04:91:AD:13:B2:67:07:05:72:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-YTvuu37zaZLASRrROyZwcFcmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/7af99d-da85-41a5-aa4f-fa6654a2a6fe/1/HUqlDDwyGk4UODqWFVHf35jczP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/7af99d-da85-41a5-aa4f-fa6654a2a6fe/1/j-YTvuu37zaZLASRrROyZwcFcmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.255.128.0/21
Signature Algorithm: sha256WithRSAEncryption
7b:fd:ea:c4:8d:3d:b6:5f:93:79:d4:59:cc:7f:2d:34:35:86:
a1:49:f9:37:a3:a1:22:7d:09:2d:72:ce:17:7e:05:42:fd:4f:
0a:8f:bb:b2:78:bc:c9:5d:da:a4:68:2a:db:be:20:a7:5a:c6:
48:4e:56:28:f0:5d:51:45:85:9b:6f:a9:e4:7f:71:b0:4c:fc:
85:e5:ea:d2:65:5f:a2:71:6e:bb:56:0b:1e:8c:e2:7a:9f:6b:
5a:72:f5:dd:c9:7a:f1:f9:7c:2b:75:ec:7d:47:35:44:15:21:
d4:6e:80:a9:bf:3a:d8:33:8c:6b:42:40:12:c4:f8:f3:f9:0e:
4e:02:5e:89:74:1f:3f:3d:ed:34:2e:77:7d:64:a4:c8:00:c6:
be:07:e0:61:3a:3c:17:56:ca:b3:9d:0f:4d:0c:e4:90:ac:4f:
2c:e9:64:56:44:bb:45:98:00:13:35:85:ee:a4:31:f9:10:5f:
4d:60:ce:b8:cd:6d:10:b2:d2:fb:2c:8e:33:11:b6:19:32:41:
48:34:c1:07:49:22:65:63:a4:d5:a5:39:b4:62:73:9f:59:48:
9a:dc:aa:3e:34:ab:7c:27:99:27:59:20:88:3b:3e:3d:5c:d6:
5c:37:22:46:5b:8c:80:d5:d6:f7:16:02:01:8e:5b:ee:c8:03:
3b:0c:e5:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:20 2024 by rpki-client on console-ams.rpki-client.org