Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/HyQX78LRW26WBIhCYHvdtveETew.roa
File: HyQX78LRW26WBIhCYHvdtveETew.roa (raw, json)
Hash identifier: TqFFySVVnVmWI/jN5yZNvtPHkSX6hC7WqKb49007Uss=
Subject key identifier: 1F:24:17:EF:C2:D1:5B:6E:96:04:88:42:60:7B:DD:B6:F7:84:4D:EC
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 010FE6
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/HyQX78LRW26WBIhCYHvdtveETew.roa
Signing time: Sat 22 Jan 2022 21:41:46 +0000
ROA not before: Sat 22 Jan 2022 21:41:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8245
IP address blocks: 194.48.184.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69606 (0x10fe6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: Jan 22 21:41:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f2417efc2d15b6e96048842607bddb6f7844dec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5b:c2:24:1e:08:f1:ea:39:27:02:d2:92:ed:
86:b6:53:7b:31:40:85:45:13:7b:b6:7a:db:88:bd:
03:42:7f:0c:77:fb:25:85:30:5d:d9:ce:60:76:58:
51:df:70:4a:d1:ac:d1:d3:8e:aa:6a:2e:ec:05:eb:
50:ef:85:8e:27:14:d7:94:a8:25:92:48:ed:c5:3b:
3f:d6:8a:79:46:b7:43:73:0e:f4:3c:97:98:a4:54:
37:36:98:1d:a5:42:f4:58:51:b7:16:5b:c7:13:f4:
ca:c5:9c:25:6b:f7:fa:47:f1:52:d3:ca:5a:42:91:
fb:db:ba:42:11:25:c0:0f:d9:a3:09:da:b3:b9:e3:
f9:98:08:89:a8:f3:9a:12:e0:0b:ac:96:df:a0:10:
9c:e4:90:77:37:dc:c7:69:08:b3:07:23:ea:db:bb:
58:fb:dd:b2:0a:6f:b5:cc:7b:bd:a7:f9:d4:7b:46:
64:bc:a6:77:74:7d:33:07:b8:0c:a1:7e:51:4b:68:
3f:06:3d:be:b5:e4:bd:10:19:03:e5:d9:23:e2:ad:
03:d5:f3:5a:ce:14:f9:08:a4:7f:dd:54:a0:82:23:
c8:be:a0:19:2b:b8:8a:f1:4f:22:fd:0b:58:b3:15:
aa:fd:58:4a:e4:03:da:ef:fb:8b:15:23:0c:d5:b8:
f9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:24:17:EF:C2:D1:5B:6E:96:04:88:42:60:7B:DD:B6:F7:84:4D:EC
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/HyQX78LRW26WBIhCYHvdtveETew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.48.184.0/22
Signature Algorithm: sha256WithRSAEncryption
57:e4:bf:89:94:8f:55:6c:4b:c9:0b:fa:d6:dc:5e:ec:30:aa:
f6:3a:52:03:b5:11:92:dc:ff:c0:a9:8d:8b:ed:ea:45:2e:f0:
aa:d8:5f:a3:92:5e:b2:49:83:c0:ca:05:25:09:20:a4:29:f4:
ab:b3:df:f8:52:4b:b2:d5:e8:a5:a3:ba:72:31:b7:2a:bd:90:
f2:f0:0f:a6:d9:3a:1e:99:e9:72:39:41:b4:47:28:99:92:fc:
59:3a:9e:02:c0:42:87:7e:1e:fe:75:db:12:ff:ff:f3:99:f6:
bb:0d:f3:46:a1:5e:79:e5:96:c6:6e:f2:51:e5:1b:25:2b:de:
c2:58:e7:d9:5a:b5:0b:fd:bf:c7:86:eb:49:a5:b9:7b:86:c5:
61:10:f7:aa:ae:d2:ab:05:7e:68:3b:0c:f2:eb:26:56:3c:39:
9a:ef:bf:5e:37:3d:7a:f2:b7:b9:30:d6:ed:df:7c:50:e2:60:
89:6c:73:af:df:00:fd:95:21:62:33:22:ee:5f:28:88:4e:44:
77:63:d9:d7:d5:f1:cb:89:04:42:ca:58:b8:fb:16:1f:55:4a:
7b:bb:cb:68:a1:87:a8:92:16:6d:9b:40:45:c7:02:ea:9b:d7:
7d:87:fa:74:46:72:1d:9b:ec:19:bf:b8:ae:16:8e:8e:cc:b9:
2f:a9:a8:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:43:49 2025 by rpki-client