Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/HMY5_8cRnt0VCjq7Gruu5vADQW0.roa
File: HMY5_8cRnt0VCjq7Gruu5vADQW0.roa (raw, json)
Hash identifier: j3fGcIVM+ZNtfO9jxzDA1Z0DfqMptvZVA8818+C0giQ=
Subject key identifier: 1C:C6:39:FF:C7:11:9E:DD:15:0A:3A:BB:1A:BB:AE:E6:F0:03:41:6D
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10A164C4
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/HMY5_8cRnt0VCjq7Gruu5vADQW0.roa
Signing time: Sat 01 Jan 2022 09:05:10 +0000
ROA not before: Sat 01 Jan 2022 09:05:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209209
IP address blocks: 2a0e:b107:1560::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 279012548 (0x10a164c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1cc639ffc7119edd150a3abb1abbaee6f003416d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c8:4c:74:b3:02:17:44:cd:8e:46:1c:2f:a5:
32:02:a9:65:f5:2e:63:11:b9:60:68:bd:23:e4:a6:
09:05:3c:f7:b0:aa:26:a1:8c:b0:f6:13:0b:a3:9a:
9f:ab:7e:94:7e:d6:3c:b7:b5:01:fe:67:f0:ee:ce:
01:69:5c:2c:96:29:cb:39:31:f4:e7:a5:29:bc:55:
bf:fa:a2:2f:71:67:c6:6b:f8:9e:c9:8d:01:48:ec:
55:5e:75:6f:44:16:b5:e8:02:f1:d8:b7:93:e3:4e:
02:6a:fe:2c:b2:82:cb:44:1f:07:c3:36:68:f8:64:
52:01:57:39:f2:2d:71:b2:7a:21:8d:f5:9a:27:e1:
2b:21:28:03:a0:f2:7c:0b:ea:06:5c:95:e2:e3:56:
3f:8a:e3:8f:81:e6:a7:85:60:2c:34:b7:5c:30:97:
42:11:05:c2:8b:51:3c:af:a9:98:18:f9:6f:75:39:
7c:99:8f:c2:15:d2:c3:2a:60:36:22:2f:2f:82:1c:
ac:81:c7:e7:4c:44:05:ec:25:2c:90:45:10:f6:e0:
d7:af:5a:d3:fa:26:79:10:bc:60:fe:b3:c4:f4:32:
68:c1:ec:a9:5c:5f:c9:b4:36:6e:d0:76:2d:71:89:
e8:db:0c:e6:e2:ee:92:98:af:21:e7:ba:17:d6:93:
20:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:C6:39:FF:C7:11:9E:DD:15:0A:3A:BB:1A:BB:AE:E6:F0:03:41:6D
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/HMY5_8cRnt0VCjq7Gruu5vADQW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1560::/44
Signature Algorithm: sha256WithRSAEncryption
56:2c:70:d1:8b:f7:67:14:fd:46:09:9c:7a:ee:96:69:41:b9:
c2:e6:6a:9d:5c:3e:58:37:15:02:0d:89:ad:bf:92:74:f5:56:
39:1e:49:be:74:02:aa:42:55:3e:02:72:df:0f:74:12:07:c9:
2d:e1:e0:99:17:ba:25:ea:ae:c9:8d:02:61:98:bc:ce:bf:25:
73:50:7f:0f:8e:7b:ff:0c:8f:97:f8:4f:c2:82:eb:1b:15:6a:
c2:de:d7:bb:8a:f9:c6:4e:44:fd:08:f2:4b:2a:14:85:4b:e1:
27:85:b7:9a:08:55:64:96:37:5b:20:e0:a7:95:75:8e:ee:ac:
a9:7b:db:f0:48:ac:73:5c:1c:6b:50:59:01:f6:2a:4e:ac:83:
ff:68:1c:8f:71:d9:0b:ba:54:ec:25:59:06:96:e9:88:83:58:
32:32:88:29:8b:06:ed:5f:9b:7a:41:07:56:a5:b0:23:91:9f:
57:98:80:29:b9:d9:2b:ae:dd:c0:7e:55:51:ef:c7:45:47:35:
bd:21:23:fd:44:37:e2:86:fd:3f:f5:fa:4e:5a:8e:ac:f4:ce:
14:f7:12:87:55:ff:1c:e8:28:a2:97:c9:8b:10:69:3a:48:a8:
f0:76:c3:de:43:07:62:d2:b0:5c:0f:24:0e:a7:59:b8:0c:c4:
3c:d4:df:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:14 2023 by rpki-client on console-fra.rpki-client.org