Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/huGlreZzLoPtK0ptwjg6ueqTORA.roa
File: huGlreZzLoPtK0ptwjg6ueqTORA.roa (raw, json)
Hash identifier: Aqb5TsHMqc/fwSrIRSV7g5VBP+QjAUmz/wSnCxPvalk=
Subject key identifier: 86:E1:A5:AD:E6:73:2E:83:ED:2B:4A:6D:C2:38:3A:B9:EA:93:39:10
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0E198779
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/huGlreZzLoPtK0ptwjg6ueqTORA.roa
Signing time: Sat 01 Jan 2022 01:58:16 +0000
ROA not before: Sat 01 Jan 2022 01:58:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49434
IP address blocks: 195.133.80.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 236554105 (0xe198779)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 01:58:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86e1a5ade6732e83ed2b4a6dc2383ab9ea933910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c8:2e:ea:1a:6d:9d:aa:8d:8c:8c:be:41:0d:
cc:65:63:87:a7:3a:b3:02:9a:8b:e1:7d:80:b6:64:
af:ae:7d:85:03:3d:fa:b6:b2:2d:e8:19:c6:90:6e:
4c:e6:4b:d0:f6:1b:a2:37:6a:71:11:65:54:c7:0b:
71:9b:b0:dc:a7:35:a9:05:6a:cf:6a:d6:0d:75:a4:
0f:07:d0:fc:8b:d8:b5:d0:b2:d8:14:e1:93:50:02:
50:4c:3a:cb:18:75:d6:59:54:05:b8:01:90:5e:db:
8d:dc:3d:22:df:8e:3d:33:6a:93:d7:59:45:85:84:
65:ae:35:e9:dc:bf:53:fd:91:15:2d:e7:93:f7:11:
b5:35:f2:83:b5:12:57:55:2a:08:d5:8c:8a:5a:85:
dd:5e:da:5d:1c:cf:29:d2:28:05:40:cf:09:81:31:
9f:e2:92:03:4b:96:4d:17:a7:cf:76:47:98:d0:27:
16:8f:0c:cc:9e:13:32:d7:6d:cc:2c:d1:8c:51:a2:
11:e3:57:6d:fe:8d:93:28:80:fa:18:06:c4:1f:23:
f6:ff:a2:a9:c1:e9:d9:42:73:07:98:f4:c8:fa:08:
50:4a:a0:4c:2c:b9:c0:cb:46:b9:ea:82:07:73:ee:
8b:f7:a7:8f:6b:ce:8e:ef:bd:eb:7c:f7:42:e6:1d:
76:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E1:A5:AD:E6:73:2E:83:ED:2B:4A:6D:C2:38:3A:B9:EA:93:39:10
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/huGlreZzLoPtK0ptwjg6ueqTORA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.80.0/23
Signature Algorithm: sha256WithRSAEncryption
56:cd:a9:de:5c:af:ae:ea:21:58:c4:e5:0c:b2:72:2f:2b:1a:
f2:fd:db:f0:bd:e0:5e:db:df:e2:94:0e:0a:58:f0:ab:c3:76:
2d:c5:48:19:4c:50:03:a1:64:16:9c:6c:0f:ea:80:b5:20:bc:
c6:6a:9a:4a:9c:af:09:b4:6c:92:78:b9:69:fc:7f:a9:8f:5b:
24:40:c3:09:03:96:cc:13:c5:9a:c4:25:41:eb:4d:ce:4e:23:
0d:82:25:8e:06:c5:0b:22:ff:03:db:fd:ba:be:f5:d5:84:1d:
bb:7d:7e:c9:95:8d:c8:77:d9:5d:a2:b4:5f:c7:04:f1:9d:97:
76:8a:a5:90:0b:a5:b8:86:e3:b0:47:54:e0:5f:7a:f1:06:2f:
7c:ce:33:51:74:1b:ef:a6:76:0f:37:ff:ba:e3:c5:8e:87:c8:
d3:89:cd:53:87:ec:75:ea:27:d6:3d:15:6b:de:10:01:27:b2:
c1:4c:58:f4:79:55:6d:7d:0d:a2:62:08:9e:3f:93:a6:06:ff:
f8:89:3e:25:87:9a:1c:5d:75:0c:ee:e4:31:87:94:3f:09:f3:
e0:ac:50:79:57:b3:7b:5d:4a:ca:45:42:f9:75:46:b2:0c:af:
40:18:80:df:e1:65:2b:69:e2:d2:75:cb:5e:cb:85:ef:36:a1:
8d:a3:6c:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:24 2024 by rpki-client on console-fra.rpki-client.org