Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/HUxukqWNO1Nxph5lE8fP-kPSil4.roa
File: HUxukqWNO1Nxph5lE8fP-kPSil4.roa (raw, json)
Hash identifier: jJ5b3mRqOJqDmIfST6/6Cz56nUR6ZReNNsj3mxA5s6Q=
Subject key identifier: 1D:4C:6E:92:A5:8D:3B:53:71:A6:1E:65:13:C7:CF:FA:43:D2:8A:5E
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 06CF08E7
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/HUxukqWNO1Nxph5lE8fP-kPSil4.roa
Signing time: Sun 03 Apr 2022 21:26:18 +0000
ROA not before: Sun 03 Apr 2022 21:26:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 45.151.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114231527 (0x6cf08e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Apr 3 21:26:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d4c6e92a58d3b5371a61e6513c7cffa43d28a5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e3:bd:14:07:2e:bd:0e:13:73:ce:5a:0a:7c:
e6:c5:c4:b6:ef:b9:fe:50:21:fc:36:1a:30:61:9f:
3e:a4:60:f6:a2:f5:86:15:bd:d6:05:6e:f1:25:38:
f0:42:e6:f2:6c:b3:5e:29:4c:a9:6c:64:9b:d7:c9:
64:1c:64:dc:d9:eb:ad:1c:24:66:e6:71:f0:f6:ca:
54:a3:21:95:1c:3e:e7:33:33:31:40:2c:9b:60:6f:
43:38:25:fc:e8:35:e0:85:1f:68:5e:68:d4:ff:eb:
d0:db:8b:08:f4:c6:c9:d2:68:d4:e6:86:bc:b7:6f:
f2:11:c5:41:8c:07:36:1f:a9:c9:aa:03:a5:4b:0d:
eb:ba:79:24:4d:bd:16:61:1f:ab:a7:95:e7:b8:ae:
49:41:91:f2:d0:5f:9c:b4:14:91:63:ca:dd:9f:0d:
b4:fb:51:a1:bc:22:0c:4b:ea:f4:b1:69:bb:3e:d3:
d2:6e:44:e2:0e:31:7b:b8:67:4e:f7:31:34:61:bf:
9d:09:87:98:c7:6e:23:ee:a1:16:3b:86:8b:b4:04:
0c:b8:46:1e:fb:1d:21:e3:a2:d3:b0:96:1d:e5:2c:
67:af:48:13:5f:a9:e6:18:93:b3:c5:88:38:09:33:
af:a1:9e:2c:4a:3f:92:b5:ba:13:98:fc:d2:8f:4d:
92:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:4C:6E:92:A5:8D:3B:53:71:A6:1E:65:13:C7:CF:FA:43:D2:8A:5E
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/HUxukqWNO1Nxph5lE8fP-kPSil4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.99.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:ed:f9:ed:a5:54:7d:ce:16:0b:56:1b:33:13:68:07:44:c7:
ac:6e:f2:ea:86:e2:cc:3a:01:17:81:88:31:03:14:0f:10:35:
b7:df:94:0e:bb:ef:be:97:34:a8:8f:1d:16:8b:ed:2d:fb:69:
35:03:6b:6a:bc:9a:c8:1b:20:df:46:2a:10:cf:52:9d:44:2d:
a1:2f:cc:d6:69:72:be:ae:c0:bc:87:64:ad:73:5e:ff:4a:f1:
27:bb:47:96:77:b2:7d:e9:75:06:bd:89:b4:0c:88:82:86:7e:
f0:91:77:fe:21:8e:6b:89:2d:ce:95:6f:41:76:3b:e6:7d:be:
23:fa:6c:05:82:b2:ed:db:45:c6:e2:f6:c6:2d:d7:d7:21:85:
8d:e6:19:73:ba:49:f2:f1:4b:8f:58:d5:01:eb:6b:3a:09:db:
34:b0:e6:19:70:d4:64:74:29:7e:fe:99:d3:28:a7:f8:4a:9c:
72:4f:e2:08:e9:7e:ab:f4:19:73:df:8c:10:31:be:da:04:dc:
1b:14:de:46:64:b5:9b:47:4d:e2:6e:97:35:b6:9e:bf:6c:bd:
1c:7e:a7:d8:4c:83:5e:83:e7:6b:5e:08:a1:22:18:83:19:88:
3b:bc:1b:21:1b:97:47:0e:57:25:48:84:8e:c4:bf:1a:e0:5e:
aa:f9:03:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:25:27 2025 by rpki-client