Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/HmQkpVE0il3JdSiFR0fBxyjKiKU.roa
File: HmQkpVE0il3JdSiFR0fBxyjKiKU.roa (raw, json)
Hash identifier: kaboi+z9ndAtvVJyq8CFxL+GQlB93HlueBQXq+r6trI=
Subject key identifier: 1E:64:24:A5:51:34:8A:5D:C9:75:28:85:47:47:C1:C7:28:CA:88:A5
Certificate issuer: /CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Certificate serial: 01499414
Authority key identifier: 98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/HmQkpVE0il3JdSiFR0fBxyjKiKU.roa
Signing time: Sat 01 Jan 2022 03:55:10 +0000
ROA not before: Sat 01 Jan 2022 03:55:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48806
IP address blocks: 80.94.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21599252 (0x1499414)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Validity
Not Before: Jan 1 03:55:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e6424a551348a5dc97528854747c1c728ca88a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d6:8d:b4:4c:1c:6a:73:6f:65:aa:8b:d9:47:
47:6e:fb:34:78:d4:01:c6:dd:63:3c:bf:7e:03:1f:
cb:e6:1f:3e:e1:b1:b7:95:c8:68:18:95:27:f9:cd:
dc:19:88:47:a4:54:58:d9:d9:e0:5d:3f:38:15:95:
90:da:ca:02:ca:6b:f9:00:f4:e9:7d:58:c5:2d:50:
b2:00:59:56:3d:2b:84:05:f4:9d:0b:75:08:e1:2b:
7f:f7:19:3b:52:13:fd:44:36:44:bf:fc:d1:8d:64:
56:d0:df:fe:c9:c8:5b:09:74:dd:b4:9b:8c:e3:80:
aa:2b:8f:22:6c:0f:ad:b3:90:85:08:52:2d:49:66:
15:8a:17:7d:3e:08:79:66:f2:52:5b:ed:78:84:70:
87:45:ac:54:e7:01:38:d3:41:11:74:ef:37:36:c7:
b9:58:d6:56:48:23:13:a2:69:19:1a:4b:f2:6e:02:
af:06:e7:9b:ea:35:3e:b9:4b:5b:bb:be:d6:00:b4:
de:b7:f7:16:61:04:4a:a4:d1:19:b8:53:33:aa:91:
a3:dc:ad:1f:b7:f0:3e:b7:14:60:a9:24:5a:5b:91:
e7:65:16:62:e0:ac:08:78:33:ab:3e:51:d5:76:41:
e2:f8:6e:e7:45:76:54:5a:6c:e0:7c:8d:06:5b:25:
8b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:64:24:A5:51:34:8A:5D:C9:75:28:85:47:47:C1:C7:28:CA:88:A5
X509v3 Authority Key Identifier:
keyid:98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/HmQkpVE0il3JdSiFR0fBxyjKiKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/mGihmSu4A33egdDIzcBpX87hfCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.94.89.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:33:8c:a4:8d:ae:5a:20:b2:b4:59:f3:42:68:98:f4:65:d7:
5d:5c:0d:11:e1:d8:51:a9:65:6b:b6:f6:84:af:a5:1e:09:27:
52:32:78:d0:22:e9:ff:ea:24:2b:23:eb:4c:b2:20:9c:25:86:
21:19:b9:45:fa:de:dc:c7:cc:dd:64:b3:e7:8e:d9:2d:56:cc:
8b:0a:cc:71:74:52:70:1c:c1:e6:29:24:f1:99:ef:37:9f:70:
69:27:19:2e:58:df:01:0e:c6:af:26:f9:bb:c5:60:05:5c:40:
84:6e:2e:18:95:78:68:dc:13:f1:10:70:26:d4:de:9e:23:d0:
bb:d6:07:91:37:f7:c4:5b:a5:9d:e1:67:ae:57:23:00:c5:5c:
27:29:dd:14:64:b5:00:39:ec:ac:ed:bd:36:0c:2d:41:ef:16:
af:76:12:d3:21:74:bb:4f:65:d9:b4:3e:2f:0a:97:39:84:2e:
d6:64:12:9f:1e:30:76:93:0b:27:36:74:c1:cd:78:e1:37:57:
a6:f3:bc:5c:4c:d5:ac:15:14:69:71:88:8b:d7:48:df:23:5d:
3a:e2:63:69:62:d3:3c:e8:f4:33:d2:30:10:88:18:c7:e9:7b:
4e:79:45:9b:bb:d1:1d:e1:64:b7:6f:47:78:ec:8b:b5:80:cf:
c7:0c:81:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:54 2024 by rpki-client on console-fra.rpki-client.org