Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/HV_QcyMuuNBnaV5tSqe9azl5X_0.roa
File: HV_QcyMuuNBnaV5tSqe9azl5X_0.roa (raw, json)
Hash identifier: kgoinG/UYMr/QT6b1+8IkyT12/PLWTxkyDmTcKVJySI=
Subject key identifier: 1D:5F:D0:73:23:2E:B8:D0:67:69:5E:6D:4A:A7:BD:6B:39:79:5F:FD
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 0187F9C0A8CEDD229DA72C673216781C87C0
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/HV_QcyMuuNBnaV5tSqe9azl5X_0.roa
Signing time: Mon 08 May 2023 05:06:05 +0000
ROA not before: Mon 08 May 2023 05:06:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48108
IP address blocks: 94.131.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:f9:c0:a8:ce:dd:22:9d:a7:2c:67:32:16:78:1c:87:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: May 8 05:06:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d5fd073232eb8d067695e6d4aa7bd6b39795ffd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:44:2d:d6:fd:d2:40:c7:f8:d3:cc:b5:81:c7:
04:4d:17:4d:06:17:b6:8b:35:8b:1d:31:aa:ae:da:
d9:60:bb:ee:61:24:92:e9:c7:83:5b:80:79:6b:3b:
66:ca:d2:7c:9b:91:52:ba:3b:b1:da:b9:fa:c3:cc:
62:56:31:f7:ed:12:1a:27:87:3c:ee:70:8c:b9:7f:
70:ce:7e:fd:d1:63:ff:df:b1:37:2f:10:b1:60:bb:
34:87:94:c4:02:fc:8a:ca:cb:5a:d8:1b:75:db:21:
b1:3f:d6:1e:0b:3c:1f:c7:f4:33:fe:9e:93:68:0b:
19:31:22:e9:76:dd:4a:2b:2f:77:fa:ac:f7:85:49:
90:06:62:cf:71:b6:19:fc:31:93:17:0f:65:8d:9f:
76:d3:7e:72:24:94:a5:bf:51:36:31:3c:05:6a:50:
a5:c3:c5:5c:4b:f8:42:b6:5b:5f:09:23:89:27:be:
59:91:90:93:8e:95:2c:89:bd:13:8d:d1:9e:ef:82:
5f:e1:9b:14:9e:fe:11:c0:56:0c:a4:e6:a4:d1:d8:
85:cf:12:15:55:8f:26:bf:5f:1c:3b:8b:19:e8:1c:
b8:86:96:86:b9:db:3c:2b:8d:17:5c:ac:38:56:9f:
1d:f0:67:3f:82:fd:e2:ed:d1:33:0b:1e:29:ca:f8:
52:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:5F:D0:73:23:2E:B8:D0:67:69:5E:6D:4A:A7:BD:6B:39:79:5F:FD
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/HV_QcyMuuNBnaV5tSqe9azl5X_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.104.0/24
Signature Algorithm: sha256WithRSAEncryption
34:16:a9:54:fc:64:85:94:a8:ba:dc:d5:00:a3:21:5d:63:e1:
f6:51:33:bc:f2:d3:24:c6:cd:10:21:ec:a6:c4:90:fb:c1:f6:
d4:d6:ac:d1:5c:4f:bf:e1:f4:d9:47:b2:08:bd:8b:9b:aa:6f:
34:b1:1f:61:98:7e:c1:d8:86:51:a2:bf:61:6f:b2:10:c9:bc:
e6:07:a3:f3:d9:c9:51:60:f4:83:25:f8:a1:37:29:cd:23:f1:
00:7b:ba:53:ed:d2:8e:cf:f5:87:c8:f1:82:fc:73:d8:de:57:
9d:51:63:8b:5a:a5:cb:c1:a4:40:fe:e6:89:41:b2:81:8a:f5:
70:ad:27:37:43:f8:26:fc:ad:6e:c1:4f:cd:94:1c:0f:0e:09:
06:59:19:61:eb:4e:2f:ca:7a:cf:16:e5:70:95:82:dc:38:0e:
a5:3c:a0:23:37:61:af:f3:bf:76:0c:c7:42:5c:bf:a9:ce:4e:
96:a6:03:b1:40:1c:99:04:de:27:fd:7a:5e:03:4b:06:3d:ee:
66:23:d9:3f:eb:a5:4c:ea:13:9d:6f:d4:7c:b5:f0:be:5c:ee:
2a:08:4d:b0:fd:af:e7:e6:6b:1b:01:99:88:d7:42:65:92:6c:
7b:5b:fc:88:f9:98:78:77:1e:c6:d6:3a:c4:28:1c:dd:77:f3:
a3:2d:f0:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:25:05 2025 by rpki-client