Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/Hpi1gpDm7a7xYe0ttGmidaXwZBA.roa
File: Hpi1gpDm7a7xYe0ttGmidaXwZBA.roa (raw, json)
Hash identifier: c72igfW4xE8wjSaQrGbQYZm95lawxGQArjDVEG/MYCs=
Subject key identifier: 1E:98:B5:82:90:E6:ED:AE:F1:61:ED:2D:B4:69:A2:75:A5:F0:64:10
Certificate issuer: /CN=375a064f301026bc3cf87666d6a820128212a811
Certificate serial: 1BC995D9
Authority key identifier: 37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/Hpi1gpDm7a7xYe0ttGmidaXwZBA.roa
Signing time: Sat 01 Jan 2022 12:59:48 +0000
ROA not before: Sat 01 Jan 2022 12:59:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7922
IP address blocks: 2a03:2880:d001::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 466195929 (0x1bc995d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=375a064f301026bc3cf87666d6a820128212a811
Validity
Not Before: Jan 1 12:59:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e98b58290e6edaef161ed2db469a275a5f06410
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:95:b2:74:66:b0:37:e0:60:66:07:f5:df:bb:
8f:92:ba:2a:0a:5c:46:0d:c7:44:70:a9:e8:38:54:
ed:d4:1a:f9:a3:46:44:95:ee:fd:86:44:ed:fd:49:
b6:ed:5f:50:40:2b:11:b3:1e:e1:cb:74:b9:5d:6b:
1c:88:76:2d:6e:8d:de:98:30:df:c7:83:39:95:06:
56:58:e8:07:e1:af:7b:d5:24:ba:b3:16:45:2c:54:
fb:fe:4c:12:19:97:a1:0a:a2:6d:22:e5:d5:82:e9:
19:78:f9:55:f1:64:4b:70:0e:7d:e8:6f:73:c4:e3:
ab:59:6e:68:0e:0d:53:22:9c:a4:f9:cb:08:62:1b:
2c:4f:1d:b4:08:f6:43:59:f1:29:b1:b8:ba:e0:81:
25:4c:3b:30:0c:83:fa:c3:58:ee:5a:43:e2:fc:8e:
a7:cc:f1:f7:84:ee:f0:d8:22:c9:0e:ed:ad:bf:5b:
59:16:6d:ec:9d:2f:9c:c0:e1:60:36:63:8f:ed:6b:
18:9a:f6:9b:d3:8c:f1:a7:6f:4f:ea:ee:4e:2a:39:
78:c9:52:3a:7e:91:9d:70:57:81:bb:43:5f:5f:2f:
cf:f9:a7:63:51:e7:4b:ea:be:f3:19:26:d4:f3:25:
18:af:7e:27:40:3a:4b:5d:6b:0b:ef:a4:38:d6:f7:
ee:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:98:B5:82:90:E6:ED:AE:F1:61:ED:2D:B4:69:A2:75:A5:F0:64:10
X509v3 Authority Key Identifier:
keyid:37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/Hpi1gpDm7a7xYe0ttGmidaXwZBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:2880:d001::/48
Signature Algorithm: sha256WithRSAEncryption
cf:43:3b:40:49:ce:c9:82:b9:73:3d:19:3c:0a:9d:41:76:b9:
ce:8f:09:76:f0:3b:2a:6e:21:01:ee:17:85:1f:65:ee:d0:c9:
74:a7:34:45:99:4f:ef:ea:61:78:cc:4b:0b:f3:fa:00:1c:89:
bf:6c:b9:a9:f7:f8:a1:dd:b3:d0:c4:c1:97:1a:ed:0e:50:1b:
bc:b6:d9:20:0f:a2:42:fd:b8:57:b3:83:21:cc:2a:59:aa:68:
74:e6:2f:c4:d3:84:2f:2c:9a:68:bc:b4:e3:00:44:05:2e:f1:
c7:1e:bc:70:5e:41:9d:2a:5b:a0:a2:ab:4f:b4:96:fc:89:2c:
04:8f:cf:35:e6:12:87:05:57:88:08:0a:1c:58:89:d3:e7:db:
b6:43:3b:75:bb:f6:b3:14:04:11:4a:43:9a:1d:5a:2c:eb:29:
06:d4:81:75:ed:b0:b4:ec:d7:2c:98:00:fd:6b:7f:a7:13:80:
8a:3f:1d:31:84:83:24:ae:a8:ae:60:be:02:0c:0f:7c:96:6a:
42:e9:2a:73:5c:0e:87:e2:21:84:18:03:77:15:f0:17:99:86:
72:ea:97:03:09:31:45:72:a6:b9:ce:e7:10:64:88:a3:39:a7:
ac:1f:95:50:cf:5c:dd:bd:df:d0:ac:d4:a6:b7:67:21:dc:bd:
ca:47:83:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:09 2024 by rpki-client on console-ams.rpki-client.org