Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/HupOCT6hU-geZpZHYGs_Tvsrl8Y.roa
File: HupOCT6hU-geZpZHYGs_Tvsrl8Y.roa (raw, json)
Hash identifier: WdqoJwdakAkVuInFa0P9WfJIUq/kbq/I/XglSXMt9xQ=
Subject key identifier: 1E:EA:4E:09:3E:A1:53:E8:1E:66:96:47:60:6B:3F:4E:FB:2B:97:C6
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 5621CA
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/HupOCT6hU-geZpZHYGs_Tvsrl8Y.roa
Signing time: Sat 01 Jan 2022 00:51:59 +0000
ROA not before: Sat 01 Jan 2022 00:51:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3215
IP address blocks: 194.5.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5644746 (0x5621ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: Jan 1 00:51:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1eea4e093ea153e81e669647606b3f4efb2b97c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:6d:5c:95:6c:cc:a8:29:f5:c4:db:f3:d7:b6:
bd:6d:83:d4:10:23:18:b6:e3:fa:1d:4d:0d:15:38:
bd:50:ee:fe:b3:9b:f6:34:f7:40:72:55:57:f8:eb:
01:e5:58:ed:d1:63:98:81:0b:7b:a5:07:03:42:06:
d3:a2:f2:b4:d4:c9:d2:92:a1:b1:5c:1d:67:90:d1:
de:61:c0:62:16:d3:46:79:9e:4c:2e:31:e0:2a:9a:
9b:bb:ec:50:f1:2b:e2:11:05:8e:d4:3f:82:2a:05:
85:44:37:cd:82:d0:46:70:c7:f6:92:1e:7f:3c:cf:
a6:56:c3:5a:7c:d7:73:eb:99:ee:31:2a:89:4a:9a:
b8:c4:7f:66:7e:1b:ae:09:2d:63:c5:21:7c:76:0d:
27:1c:68:2c:e2:74:56:34:56:64:0c:55:52:28:29:
51:24:97:d9:4d:35:7b:f8:0b:ab:f8:ca:dd:e2:0e:
50:71:67:f0:6e:e6:41:4f:f1:ab:c9:bd:dc:dc:7e:
fa:26:f0:03:cd:f6:7e:b4:32:54:fb:67:94:9d:09:
02:b6:c4:ec:0d:b4:61:b7:38:b6:aa:6d:5a:43:78:
31:c2:7f:eb:ed:23:25:79:6d:a0:61:d9:9c:63:94:
9e:ea:e9:53:66:ec:5e:ee:95:f6:06:e9:3d:b6:0c:
1e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:EA:4E:09:3E:A1:53:E8:1E:66:96:47:60:6B:3F:4E:FB:2B:97:C6
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/HupOCT6hU-geZpZHYGs_Tvsrl8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.189.0/24
Signature Algorithm: sha256WithRSAEncryption
65:9a:26:fe:0b:49:af:ad:f4:58:b3:21:6f:8b:05:90:60:69:
f7:91:cd:dc:2d:77:d1:85:1f:8b:c8:cf:da:c6:09:7d:ad:00:
b2:fd:98:16:68:78:7e:2f:d0:73:34:e1:96:f3:1a:87:99:63:
7f:b4:25:8f:86:cf:ca:7d:a5:09:4e:70:ad:9b:04:95:ec:0e:
62:d0:9d:e1:02:0f:69:93:d7:ec:9f:7e:9d:97:08:c1:28:f1:
0e:9f:b3:0f:c6:c4:61:63:bc:9b:82:54:66:83:a3:80:31:3a:
30:8b:59:cd:4b:2d:c2:41:66:19:c3:78:54:b4:cf:da:52:ff:
17:9f:93:65:01:72:e0:21:09:ce:1c:0c:5a:11:3d:61:66:a4:
a7:22:6a:9d:fd:5c:8a:87:d4:8a:9b:58:86:e5:bf:ba:4e:d1:
58:ca:f0:ba:63:ed:0e:35:b6:68:3d:14:01:ab:59:a7:3a:4f:
2f:d6:10:21:51:19:bf:37:3f:9d:4e:c1:59:4f:75:12:dd:70:
a8:c8:a6:bf:92:e0:3d:89:5c:da:49:34:2d:9f:a6:fa:a4:23:
15:93:5e:66:b4:61:5c:74:6a:b3:ce:b8:0a:2e:01:9b:42:7a:
19:80:91:ac:4b:7b:3b:24:a3:3d:28:73:1a:7b:20:29:66:86:
d3:c2:1c:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:02 2024 by rpki-client on console-fra.rpki-client.org