Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/htxEGyhISbbABJOgFqMsMWza30k.roa
File: htxEGyhISbbABJOgFqMsMWza30k.roa (raw, json)
Hash identifier: YYZfPdw7uvJ2UvRERNT748yfSoNsrqSwKVTi3+hpJhk=
Subject key identifier: 86:DC:44:1B:28:48:49:B6:C0:04:93:A0:16:A3:2C:31:6C:DA:DF:49
Certificate issuer: /CN=2e252a477242fb45f20bb08020a403a2bb466a9b
Certificate serial: 37B5277A
Authority key identifier: 2E:25:2A:47:72:42:FB:45:F2:0B:B0:80:20:A4:03:A2:BB:46:6A:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LiUqR3JC-0XyC7CAIKQDortGaps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/htxEGyhISbbABJOgFqMsMWza30k.roa
Signing time: Sat 01 Jan 2022 02:51:59 +0000
ROA not before: Sat 01 Jan 2022 02:51:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201167
IP address blocks: 94.20.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 934619002 (0x37b5277a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e252a477242fb45f20bb08020a403a2bb466a9b
Validity
Not Before: Jan 1 02:51:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86dc441b284849b6c00493a016a32c316cdadf49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:6c:40:1c:1b:0b:79:84:ee:42:52:27:14:7c:
14:7e:5a:86:91:8a:b3:b0:1b:9e:57:48:9e:b0:d4:
df:0d:5e:18:63:dd:d3:f6:c9:45:10:14:f7:68:19:
59:ac:27:09:51:0e:cd:3a:ef:76:7a:ec:40:d6:c0:
27:53:aa:c0:ea:45:d8:a7:0e:7b:fd:1e:5f:99:90:
ae:9b:a7:74:21:d6:24:99:ce:8b:06:58:65:eb:8e:
0a:3c:06:d7:57:ae:27:73:b9:9f:1d:16:c4:75:2b:
c8:23:45:14:d2:a2:69:d6:83:c1:96:20:48:92:3c:
73:40:fb:d9:83:a8:66:53:5f:77:d1:78:2f:47:bc:
55:75:e7:78:41:83:ab:72:f2:2d:36:39:db:a3:51:
c5:45:7e:3e:c5:1f:ff:cb:23:0b:a6:5d:5c:fb:b2:
04:00:87:35:34:5d:36:ed:03:67:ae:ed:b9:cf:95:
1d:fb:bc:b5:7c:ab:a7:03:8d:b7:d9:15:46:e0:d9:
c5:6d:67:c6:1d:ab:d4:15:e0:76:21:86:fa:e8:51:
c6:8d:01:c1:6c:09:e2:e3:9a:88:89:ca:9a:83:6a:
c1:fe:55:71:ee:d6:c6:88:18:28:62:de:c5:5b:b0:
8e:b5:13:5d:86:e8:4f:1d:83:93:db:36:4d:29:84:
95:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:DC:44:1B:28:48:49:B6:C0:04:93:A0:16:A3:2C:31:6C:DA:DF:49
X509v3 Authority Key Identifier:
keyid:2E:25:2A:47:72:42:FB:45:F2:0B:B0:80:20:A4:03:A2:BB:46:6A:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LiUqR3JC-0XyC7CAIKQDortGaps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/htxEGyhISbbABJOgFqMsMWza30k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/LiUqR3JC-0XyC7CAIKQDortGaps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.20.239.0/24
Signature Algorithm: sha256WithRSAEncryption
83:6a:78:6c:f3:cc:84:f9:6a:ee:40:07:23:c4:da:7e:83:65:
75:6e:52:7b:78:45:59:ce:2d:fa:0a:fc:9f:52:81:e7:41:33:
37:25:7c:87:fc:f6:1e:72:06:36:b1:4c:07:72:c6:48:a6:57:
cb:09:87:d6:ce:ae:92:5d:b9:20:c3:09:8c:bb:c6:30:42:9b:
b1:3f:6a:6f:f8:6c:27:10:3d:82:8a:bc:2c:bf:89:7c:60:4d:
b2:fd:ae:20:35:21:0c:23:5a:bf:1c:5d:60:98:94:41:f1:e5:
31:94:94:5e:1e:44:af:a4:30:a1:c3:a0:c9:df:52:2d:96:8e:
85:72:84:5c:15:35:4f:4a:f6:e7:3d:af:cc:de:64:4e:dc:b8:
ec:0e:dd:bd:6e:43:cb:2e:94:c5:d2:6d:85:6b:ac:1b:23:06:
a7:25:24:9a:21:ab:db:d1:26:03:e3:71:7e:45:cb:4b:a4:15:
00:24:4e:7c:94:0c:10:b0:b8:25:a4:50:69:64:9a:2d:0e:08:
79:86:f5:11:ca:82:18:d6:97:5c:e2:16:ca:c6:27:88:11:4e:
61:e5:03:b2:b3:61:d5:c5:29:1d:92:21:40:0a:38:49:52:c5:
b3:16:5c:b1:b1:8b:ac:27:29:f2:46:7c:14:61:48:c2:3b:4c:
21:9b:51:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:50 2023 by rpki-client on console-fra.rpki-client.org