Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/HueBiCAF-RJrREqolCUjD4oVab0.roa
File: HueBiCAF-RJrREqolCUjD4oVab0.roa (raw, json)
Hash identifier: aL5sf1a6E1seDRPxEDORGDdTtKdIWOgDoaslAjR2Uds=
Subject key identifier: 1E:E7:81:88:20:05:F9:12:6B:44:4A:A8:94:25:23:0F:8A:15:69:BD
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 38945EB5
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/HueBiCAF-RJrREqolCUjD4oVab0.roa
Signing time: Sat 01 Jan 2022 05:54:27 +0000
ROA not before: Sat 01 Jan 2022 05:54:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202555
IP address blocks: 217.69.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 949247669 (0x38945eb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 05:54:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ee781882005f9126b444aa89425230f8a1569bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:dd:d2:3e:1d:9f:35:82:13:94:02:36:78:c6:
63:e2:55:3f:1e:e1:f4:b2:e1:93:5d:84:64:12:6c:
a6:ac:5e:10:b1:dc:14:28:63:5c:af:0e:77:2f:c7:
ce:57:a5:b9:bf:02:27:f1:61:02:93:1b:25:e1:a0:
c4:19:7a:b8:91:a8:d2:05:7c:44:b3:0f:82:38:8b:
14:68:f6:fc:65:b7:7a:99:76:24:81:e6:d4:f8:cb:
3d:e0:f8:29:6d:0b:7f:e1:34:d7:87:2e:ca:b6:7f:
44:18:65:60:38:12:67:94:05:fa:7e:95:74:3a:6e:
81:cb:5e:56:c3:b7:a8:00:25:93:32:0c:65:da:de:
f8:74:99:ba:5f:6c:fe:80:a2:5b:c2:ea:dc:4d:59:
33:6d:c9:a6:02:14:0f:18:56:89:8e:21:6c:11:00:
60:51:d2:50:1a:97:9d:09:96:c9:29:22:d8:80:84:
75:f1:f2:f1:73:58:e4:bb:07:49:cd:87:85:2b:da:
cd:61:92:6d:d0:0b:3c:32:b9:c0:cb:a4:8f:8b:26:
fe:6e:7b:83:3b:e5:8e:0b:f4:f0:6f:fb:d0:9d:32:
b9:7e:59:b1:13:b2:39:85:36:04:e9:a8:1d:5e:bd:
fb:14:94:1c:c5:51:87:ba:6c:15:42:62:09:df:e6:
bd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E7:81:88:20:05:F9:12:6B:44:4A:A8:94:25:23:0F:8A:15:69:BD
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/HueBiCAF-RJrREqolCUjD4oVab0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.69.113.0/24
Signature Algorithm: sha256WithRSAEncryption
99:79:34:07:c6:e8:91:5c:e8:6c:c7:3c:97:82:24:c6:b0:9a:
6a:50:a8:6d:7e:4b:9c:01:80:11:f9:b3:7b:d0:69:de:69:95:
72:16:9b:ba:17:25:24:63:76:97:91:af:fc:20:1e:e5:31:ab:
4a:07:4c:ee:9a:d1:a3:23:c1:e3:46:2f:fa:01:39:93:2e:38:
77:83:cd:48:2f:2f:95:c6:a7:04:bb:cf:c4:88:08:f4:fe:a7:
72:3a:0e:98:b7:98:b7:5d:00:6b:2f:b4:f6:a9:5e:24:9c:d6:
3c:11:c7:78:ba:b1:51:43:70:9d:30:c3:65:e7:68:6a:10:be:
27:c5:fe:88:ff:d8:a4:73:d8:0c:45:68:7a:b4:7b:10:99:dd:
d4:3a:20:a3:0d:d9:41:60:d9:ff:dd:fe:0c:43:d3:16:02:b8:
62:2b:27:5b:4d:33:b5:48:4b:f9:ff:1f:94:32:f7:b0:d0:43:
57:a3:a3:67:8c:ca:97:c9:71:e6:17:13:10:e7:8d:f5:ea:db:
0c:86:1d:c1:d9:ad:ca:1a:95:6a:d9:b0:49:a0:0a:c2:31:4a:
d8:a7:09:f0:26:91:df:9e:6f:84:fc:21:51:65:0f:a0:ce:9b:
5c:0a:07:f9:f8:12:c6:02:24:17:e3:62:6a:32:c9:c0:e7:63:
d3:48:56:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:37 2023 by rpki-client on console-ams.rpki-client.org