Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/HwUhpa6nsdmePSm3co-GVxqqRsw.roa
File: HwUhpa6nsdmePSm3co-GVxqqRsw.roa (raw, json)
Hash identifier: 1DY8rkfHvHDC5nowjXs9vhp3gvkIzdZ6Vxow3BCqOdE=
Subject key identifier: 1F:05:21:A5:AE:A7:B1:D9:9E:3D:29:B7:72:8F:86:57:1A:AA:46:CC
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2CA87A6B
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/HwUhpa6nsdmePSm3co-GVxqqRsw.roa
Signing time: Sat 01 Jan 2022 04:59:38 +0000
ROA not before: Sat 01 Jan 2022 04:59:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57355
IP address blocks: 217.17.37.0/24 maxlen: 24
2001:1a68:30::/52 maxlen: 52
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 749238891 (0x2ca87a6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 1 04:59:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f0521a5aea7b1d99e3d29b7728f86571aaa46cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:24:9c:3d:79:de:0e:47:17:b7:cf:e8:48:e1:
a8:89:b2:71:b6:7d:15:13:54:04:0e:e2:0c:ef:4a:
0c:e1:88:82:44:53:c8:3c:e9:53:cc:61:77:b1:2f:
66:6a:a1:8c:11:ea:db:0f:09:1d:de:25:69:ef:ed:
a0:76:85:02:6a:6f:67:62:44:a2:63:55:c1:1f:7e:
0c:0d:71:a0:78:c4:a1:79:18:ed:94:ea:a7:84:c9:
3f:76:79:6b:8a:6a:18:86:ab:e5:0c:7d:37:e2:7d:
62:69:00:ed:a9:fe:6f:f5:0d:82:8a:61:2c:74:5b:
77:53:31:10:95:93:2f:e3:87:43:47:b3:97:5a:93:
35:2c:31:f9:61:b7:b2:09:3d:3e:9d:10:95:68:f4:
1c:96:2e:b1:10:ab:8d:ca:68:bf:f6:a7:9f:f3:7b:
29:d7:1f:9e:45:9e:d5:f5:aa:41:a4:5b:0a:49:2f:
e8:5b:60:03:6e:cd:17:6d:0c:95:b2:ef:fe:02:ed:
cb:e3:9f:48:0a:8b:5f:68:3c:aa:ee:4f:23:ae:de:
59:72:f1:e0:cc:a6:43:45:15:32:4b:be:9d:0f:7d:
a0:39:b6:47:62:78:77:b1:ed:69:ba:e9:52:fc:ad:
6c:74:52:3d:25:ad:67:2a:4e:c5:52:61:c7:8d:87:
13:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:05:21:A5:AE:A7:B1:D9:9E:3D:29:B7:72:8F:86:57:1A:AA:46:CC
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/HwUhpa6nsdmePSm3co-GVxqqRsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.17.37.0/24
IPv6:
2001:1a68:30::/52
Signature Algorithm: sha256WithRSAEncryption
36:9d:28:e1:1a:d7:73:47:84:fa:50:d8:40:5b:48:f7:46:54:
80:81:34:ef:f3:02:34:1d:f9:b2:84:72:3b:27:db:6e:e3:b7:
25:9f:79:ee:c2:5c:d5:a6:34:82:fb:09:22:a4:d2:82:8f:1f:
e7:10:86:09:9b:79:d7:82:e2:52:0d:01:48:6e:b6:11:a1:f4:
5f:b8:fc:65:73:6d:fe:f2:26:89:a3:d1:6b:21:20:9d:a4:6b:
48:91:16:91:f4:21:f1:6f:22:9e:8a:a9:fd:28:c9:48:33:b5:
22:fb:04:d6:be:b5:84:c1:d3:4d:6a:5b:d8:e7:99:b0:4e:88:
ba:54:f2:1d:8f:cb:b9:02:43:e6:2e:2f:a9:c3:bc:ec:56:89:
2d:a1:2f:7b:78:a0:d3:d0:1f:68:23:8c:b5:1f:ca:b6:39:7a:
40:c4:47:a0:86:d3:3e:84:6e:c7:db:f6:d3:d4:0c:d0:33:f6:
43:df:45:d9:e7:26:7b:bc:7a:9a:2c:2e:58:b4:2e:ad:46:79:
b8:8c:19:c2:f5:8c:c4:e4:93:0d:39:3d:6d:83:a1:c8:8d:2b:
30:cd:fd:75:1c:32:f9:96:43:ac:20:21:af:65:6c:f0:f5:db:
34:10:5b:05:bc:fc:08:17:9e:92:40:4d:ba:2f:8b:bc:61:1d:
07:10:f8:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:04 2025 by rpki-client