Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/hb0zDu5HlDerumEPGSnS015kuzE.roa
File: hb0zDu5HlDerumEPGSnS015kuzE.roa (raw, json)
Hash identifier: UJ5t5tvFzPFyXZcUUGTMxcUFzNO0CdYmsy7Vpbuqy9k=
Subject key identifier: 85:BD:33:0E:EE:47:94:37:AB:BA:61:0F:19:29:D2:D3:5E:64:BB:31
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 0AD0E45A
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/hb0zDu5HlDerumEPGSnS015kuzE.roa
Signing time: Sat 01 Jan 2022 03:02:40 +0000
ROA not before: Sat 01 Jan 2022 03:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212512
IP address blocks: 160.20.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181462106 (0xad0e45a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Jan 1 03:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85bd330eee479437abba610f1929d2d35e64bb31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f9:f0:5a:8f:70:c6:05:92:70:d4:a1:29:09:
fd:b6:1e:4a:fd:1a:78:00:0f:ca:ec:4c:da:dd:d6:
6f:db:a8:fd:5e:e9:b8:92:cd:76:5c:73:c2:7a:15:
57:f1:75:f5:b4:13:3d:30:9b:7b:b8:42:83:e3:89:
f4:24:68:a3:93:b1:65:67:f3:79:ab:50:59:45:35:
a9:6f:27:0e:11:4c:25:ed:c0:6f:6f:05:3e:9e:61:
14:65:05:af:65:e0:7d:1a:7e:98:e8:17:9e:30:e9:
12:80:48:45:b7:df:08:93:70:8e:86:7d:ae:91:f4:
15:92:0c:f4:2e:04:6c:fd:e5:6c:dd:b0:df:b8:cd:
91:2c:f9:68:63:ec:f8:46:1a:14:44:0b:76:79:61:
45:9b:1e:64:cf:7a:9a:11:0b:ea:95:ad:c3:45:09:
ac:34:7e:44:4c:f8:45:91:6d:e1:f2:4d:2f:d4:3f:
75:6d:d9:b8:bf:ab:43:5a:a7:31:c6:e2:83:3d:40:
7e:c2:22:ba:a4:40:d2:f2:bf:3a:9f:02:9d:9c:60:
54:d1:9f:74:e9:79:f3:fc:5e:c8:14:f0:48:79:c3:
8e:88:48:f0:98:a1:74:39:ea:e9:f3:65:d5:a8:90:
d9:68:17:4a:65:c2:4f:c3:c6:a8:14:21:38:67:17:
db:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:BD:33:0E:EE:47:94:37:AB:BA:61:0F:19:29:D2:D3:5E:64:BB:31
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/hb0zDu5HlDerumEPGSnS015kuzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.20.109.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:c5:af:15:4e:e4:01:38:ad:df:d5:51:4e:56:8e:e6:db:66:
06:84:7c:b3:fa:4d:d4:17:df:2b:bd:3a:37:6f:0d:de:e9:03:
36:2c:30:47:5e:b9:23:66:27:08:84:c6:ca:59:96:bf:cd:a0:
f5:94:e7:a5:b3:60:aa:58:77:b4:76:ae:4a:c1:47:be:4b:45:
53:a4:d8:a3:14:87:eb:eb:11:43:38:47:43:da:89:ae:5e:90:
ec:94:03:ce:04:40:13:2b:34:61:89:bf:6a:8b:0c:07:61:fb:
9b:8f:a2:60:27:0c:80:68:c2:4b:38:2c:df:40:5b:47:ea:e2:
25:8e:53:66:59:76:a6:20:21:0a:fc:93:08:2d:ae:8a:be:26:
c0:84:41:1c:66:35:f1:17:6c:43:1a:aa:30:8e:70:df:d3:5d:
45:f9:ec:4b:0c:ed:ea:50:31:e4:23:f6:ef:b2:65:f4:5a:ff:
67:a8:45:1e:8a:f4:20:3d:ac:13:75:37:fd:97:4a:8b:81:e2:
ad:f5:59:ea:76:18:e3:94:12:14:df:24:37:35:90:59:cd:19:
2c:da:5b:cd:ef:c2:6d:44:21:3d:00:56:ea:90:f6:b3:7f:0f:
ec:2b:16:a9:b9:d9:b7:68:25:cc:7a:a6:33:2b:7b:c4:76:50:
f7:e0:52:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:24 2024 by rpki-client on console-ams.rpki-client.org