Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/f8aa40-23e1-45f6-84f3-08b4205067b3/1/HJMDtCwS78RK1cl9jX04mmlBGpw.roa
File: HJMDtCwS78RK1cl9jX04mmlBGpw.roa (raw, json)
Hash identifier: u96MSQPZLZdiJquQ6AwtmvAk5s9NKPDS46mhpJq+Mew=
Subject key identifier: 1C:93:03:B4:2C:12:EF:C4:4A:D5:C9:7D:8D:7D:38:9A:69:41:1A:9C
Certificate issuer: /CN=755397e4fac505622aba4868b9091c4e3ffff6fd
Certificate serial: 0FC2A15E
Authority key identifier: 75:53:97:E4:FA:C5:05:62:2A:BA:48:68:B9:09:1C:4E:3F:FF:F6:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dVOX5PrFBWIqukhouQkcTj__9v0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/f8aa40-23e1-45f6-84f3-08b4205067b3/1/HJMDtCwS78RK1cl9jX04mmlBGpw.roa
Signing time: Sat 01 Jan 2022 12:03:36 +0000
ROA not before: Sat 01 Jan 2022 12:03:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206479
IP address blocks: 2001:67c:16c8::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 264413534 (0xfc2a15e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=755397e4fac505622aba4868b9091c4e3ffff6fd
Validity
Not Before: Jan 1 12:03:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c9303b42c12efc44ad5c97d8d7d389a69411a9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:53:b4:d6:f8:47:ae:14:63:5d:c1:2d:d2:f0:
07:9a:8b:62:19:a9:32:7f:09:f5:4f:b7:b3:1b:6c:
d3:4b:90:8a:cb:f8:47:42:5b:ea:f1:8b:78:ae:a9:
0d:a8:09:3f:b3:2f:60:1f:bd:64:11:28:ab:cc:6b:
b5:51:b3:b6:5d:01:45:6a:8a:4e:56:03:99:d2:44:
15:f0:b2:81:9a:43:6b:9a:8c:07:d2:df:b5:bd:56:
6e:a8:db:e3:0e:e2:9d:12:2f:44:33:86:cf:e0:e7:
cc:ad:3c:a4:b9:bb:b9:b3:dc:38:34:b5:27:26:68:
63:20:5c:66:4f:b6:ac:93:ab:d7:9f:1d:a6:02:e4:
c4:e5:8d:d6:fd:86:cc:b4:10:bd:4d:2a:16:61:46:
6e:b0:0c:07:f1:7d:50:0b:a8:9d:fe:cb:15:9d:81:
8d:27:70:f6:4f:f2:4d:3f:00:21:6f:24:8e:7a:ad:
eb:3e:5d:e5:aa:c9:3f:e0:fe:2b:e8:9a:5b:b8:80:
f1:52:21:6d:1d:44:ee:e5:e5:05:77:49:9d:88:4f:
15:b4:2b:d1:6f:c5:d9:b2:b6:17:a8:f2:26:4a:60:
58:10:54:0c:7d:04:11:b3:b1:5b:ea:cc:9c:f8:3e:
ad:a0:d7:cd:34:01:9c:57:d4:94:8a:c1:96:48:10:
db:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:93:03:B4:2C:12:EF:C4:4A:D5:C9:7D:8D:7D:38:9A:69:41:1A:9C
X509v3 Authority Key Identifier:
keyid:75:53:97:E4:FA:C5:05:62:2A:BA:48:68:B9:09:1C:4E:3F:FF:F6:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dVOX5PrFBWIqukhouQkcTj__9v0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/f8aa40-23e1-45f6-84f3-08b4205067b3/1/HJMDtCwS78RK1cl9jX04mmlBGpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/f8aa40-23e1-45f6-84f3-08b4205067b3/1/dVOX5PrFBWIqukhouQkcTj__9v0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:16c8::/48
Signature Algorithm: sha256WithRSAEncryption
d2:97:71:7b:65:d1:1e:31:62:27:0e:29:cb:32:c2:c8:bf:e9:
2f:3e:52:02:7c:d6:8f:43:fa:4f:6f:e3:6e:2d:4c:80:96:5e:
f9:aa:90:b4:22:86:dd:e6:68:72:78:be:2b:ee:1e:52:f9:4a:
1f:49:3b:63:04:63:96:11:e5:40:87:04:c1:13:97:35:72:1b:
db:f3:8f:ed:e8:aa:90:f0:73:bf:70:bb:7e:2a:b8:4e:e8:96:
a7:5b:ec:4e:cc:07:9f:14:cd:bc:20:52:89:1a:a2:4d:25:d1:
ff:09:a1:b0:7c:7c:71:ce:ce:88:12:08:26:dd:95:81:e6:c6:
d9:b7:32:9d:6b:6c:31:9e:60:c0:fb:1d:b5:e1:33:a4:1b:ad:
cd:9e:d0:37:08:6c:93:a1:45:94:ea:4b:b6:a4:75:a3:82:9b:
ca:68:d9:76:cd:9e:62:c3:9f:10:f0:7f:be:64:ef:40:93:be:
77:cc:5b:a4:82:31:1b:2b:6f:35:88:da:a6:70:7d:e0:95:20:
88:69:59:ab:91:0f:f7:69:cb:7a:9c:79:1f:db:aa:28:f4:ad:
95:97:dd:e0:ef:99:75:49:4c:7e:12:cd:a0:b5:dd:76:ab:27:
84:81:ec:c7:31:47:30:d0:5e:25:74:b3:95:e6:c9:e8:72:29:
1b:71:80:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:10 2023 by rpki-client on console-ams.rpki-client.org