Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/cddf94-8d51-41cd-8a5b-a0b4930cbd1e/1/HePDapeHYAF3V7SFRJolVv5Cxg0.roa
File: HePDapeHYAF3V7SFRJolVv5Cxg0.roa (raw, json)
Hash identifier: aui7gaJZac+bVG+PBZQycspVaTmRvzFr25Z/BT5/M+Y=
Subject key identifier: 1D:E3:C3:6A:97:87:60:01:77:57:B4:85:44:9A:25:56:FE:42:C6:0D
Certificate issuer: /CN=96179b39d1c1d28f5063ca921d6007e363e1c60b
Certificate serial: 06CC29BC
Authority key identifier: 96:17:9B:39:D1:C1:D2:8F:50:63:CA:92:1D:60:07:E3:63:E1:C6:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhebOdHB0o9QY8qSHWAH42Phxgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/cddf94-8d51-41cd-8a5b-a0b4930cbd1e/1/HePDapeHYAF3V7SFRJolVv5Cxg0.roa
Signing time: Sat 01 Jan 2022 15:03:15 +0000
ROA not before: Sat 01 Jan 2022 15:03:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209633
IP address blocks: 139.28.184.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114043324 (0x6cc29bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96179b39d1c1d28f5063ca921d6007e363e1c60b
Validity
Not Before: Jan 1 15:03:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1de3c36a978760017757b485449a2556fe42c60d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cf:01:b6:a5:2a:cd:ee:46:d1:fc:1e:f0:80:
7d:70:56:4d:e2:9c:c4:13:09:b8:3a:d5:71:b7:94:
bb:5b:09:51:6e:4d:99:df:8f:d2:3f:47:ce:b1:0b:
35:b5:33:24:ea:32:3b:f8:92:1f:b3:98:38:dc:ca:
d4:d9:c1:7f:79:9e:9a:07:54:77:f5:e1:9a:23:fa:
cb:82:8c:8c:ff:eb:74:af:dc:4d:d0:35:0c:ec:5c:
7d:3b:c9:5d:d2:d0:e0:40:bc:9e:1e:52:e7:08:76:
96:a9:2c:f8:58:df:7e:39:cb:d5:81:01:50:49:a6:
15:e1:6b:d9:18:52:34:91:11:c3:aa:ae:0d:38:ee:
46:da:69:11:1d:b0:b1:70:d3:00:ed:1b:a1:7c:8f:
8b:fe:3b:ef:b2:e2:85:52:87:e6:8c:43:7b:0a:ec:
ca:42:19:98:ea:ca:38:87:80:bd:90:4e:d9:f1:f3:
f3:e6:e0:18:af:2d:87:04:3b:b8:6f:28:11:7e:a1:
53:8a:7e:56:ac:9b:cb:33:a3:3a:95:e5:90:aa:03:
d4:e1:d4:47:6c:2b:8a:a1:9a:bb:d1:4c:f4:49:10:
0c:fb:e2:43:a8:09:92:8a:f2:4c:ba:50:ed:82:b9:
aa:0d:8a:e5:2d:4d:62:83:66:74:82:09:fc:70:41:
67:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E3:C3:6A:97:87:60:01:77:57:B4:85:44:9A:25:56:FE:42:C6:0D
X509v3 Authority Key Identifier:
keyid:96:17:9B:39:D1:C1:D2:8F:50:63:CA:92:1D:60:07:E3:63:E1:C6:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhebOdHB0o9QY8qSHWAH42Phxgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/cddf94-8d51-41cd-8a5b-a0b4930cbd1e/1/HePDapeHYAF3V7SFRJolVv5Cxg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/cddf94-8d51-41cd-8a5b-a0b4930cbd1e/1/lhebOdHB0o9QY8qSHWAH42Phxgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.184.0/22
Signature Algorithm: sha256WithRSAEncryption
38:3f:70:96:6a:cc:be:92:be:cf:3d:4c:db:d5:1a:a0:e6:e7:
44:1e:42:c3:3d:27:52:89:27:7f:60:77:23:08:60:e4:0e:78:
c4:e3:f3:56:4e:d0:db:86:3a:37:81:85:34:1e:0d:db:5e:2e:
8a:bb:b4:c2:aa:b9:b5:c2:27:40:6b:86:33:8e:36:c2:e0:a0:
7f:8f:68:d1:66:af:b7:33:f1:bd:47:08:06:13:d3:8b:77:d6:
69:5a:e6:7b:fc:d3:5b:60:64:61:05:8c:7d:c2:ce:08:44:34:
bb:3d:3b:d2:ce:61:9e:0e:50:0c:e9:ec:3c:88:93:6b:d4:21:
92:b8:2c:4d:94:d1:24:10:f5:bb:1f:2d:bd:26:1a:3f:01:ac:
f3:c5:87:69:b8:a9:2f:c7:f9:ad:bc:22:c8:54:dd:bc:27:cc:
be:e3:be:d3:fd:79:cf:26:10:ad:25:7c:63:55:3c:2f:28:fd:
1f:b4:b1:4a:68:89:f6:13:63:ec:e1:3e:4c:4b:a3:c5:49:eb:
df:91:e1:a1:ad:64:eb:3a:6b:34:01:37:20:ff:14:47:22:27:
11:e6:1a:a6:1f:e8:b2:30:ac:f4:57:ab:29:99:23:79:02:04:
92:d8:0d:2f:d3:9d:99:f7:81:42:65:75:f3:80:8e:8d:73:22:
cf:ea:c6:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:00 2025 by rpki-client