Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/4e198e-2f61-46f3-b5f6-06d6e947e38f/1/HbqzpZiUd6zqScw996tSRQRyWWM.roa
File: HbqzpZiUd6zqScw996tSRQRyWWM.roa (raw, json)
Hash identifier: ppd2BqS9mIFxxrrzX0Uz0Z0qGVbz0AP4z9SpRn+1PSY=
Subject key identifier: 1D:BA:B3:A5:98:94:77:AC:EA:49:CC:3D:F7:AB:52:45:04:72:59:63
Certificate issuer: /CN=0589ee303ff7d0d557599fa04b293dc2b16bb4d4
Certificate serial: 03BFA1C1
Authority key identifier: 05:89:EE:30:3F:F7:D0:D5:57:59:9F:A0:4B:29:3D:C2:B1:6B:B4:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BYnuMD_30NVXWZ-gSyk9wrFrtNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/4e198e-2f61-46f3-b5f6-06d6e947e38f/1/HbqzpZiUd6zqScw996tSRQRyWWM.roa
Signing time: Sat 01 Jan 2022 07:02:12 +0000
ROA not before: Sat 01 Jan 2022 07:02:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43435
IP address blocks: 78.155.96.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62890433 (0x3bfa1c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0589ee303ff7d0d557599fa04b293dc2b16bb4d4
Validity
Not Before: Jan 1 07:02:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1dbab3a5989477acea49cc3df7ab524504725963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:86:f4:1f:2e:a1:c8:ca:cf:d6:0c:ce:b7:fd:
b6:e3:4c:49:9a:fc:95:1c:a3:c1:1e:7b:75:eb:59:
e8:98:27:c4:e7:99:ef:df:f9:45:57:9b:93:5e:6d:
a4:3a:fb:19:bb:d8:74:0d:4a:aa:cf:c0:47:1a:63:
93:51:b4:3e:fe:52:f4:9c:7f:af:c7:09:3c:0a:25:
83:c2:13:ef:20:8a:5a:06:5d:41:51:ca:64:d6:d9:
ed:00:97:3d:f7:64:cc:40:45:76:11:d7:34:6a:f5:
81:bc:a5:21:5a:7e:93:49:aa:14:0a:8a:49:3d:aa:
d9:94:40:96:29:28:51:65:8a:5b:d2:25:0a:b3:b9:
22:00:43:09:9e:8a:45:d7:8e:f6:b6:24:8f:6c:61:
21:fd:c6:aa:e8:17:04:e7:db:ee:30:65:f8:7f:c4:
6b:ae:29:12:9e:38:c8:68:28:ef:5c:f2:27:f1:79:
53:87:cf:86:98:88:68:2c:96:f9:23:30:5c:74:a6:
09:6f:4d:2f:8c:99:61:54:35:ce:cf:b6:c1:1d:3b:
e4:bd:20:b3:26:1b:ff:f0:2a:16:5a:1b:c8:7c:10:
8d:a4:85:64:81:22:a3:c1:b5:1f:9c:25:6c:83:2d:
b9:62:10:74:8a:80:7f:9a:59:2f:0b:f5:1d:b4:aa:
09:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:BA:B3:A5:98:94:77:AC:EA:49:CC:3D:F7:AB:52:45:04:72:59:63
X509v3 Authority Key Identifier:
keyid:05:89:EE:30:3F:F7:D0:D5:57:59:9F:A0:4B:29:3D:C2:B1:6B:B4:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BYnuMD_30NVXWZ-gSyk9wrFrtNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/4e198e-2f61-46f3-b5f6-06d6e947e38f/1/HbqzpZiUd6zqScw996tSRQRyWWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/4e198e-2f61-46f3-b5f6-06d6e947e38f/1/BYnuMD_30NVXWZ-gSyk9wrFrtNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.155.96.0/19
Signature Algorithm: sha256WithRSAEncryption
9a:61:ef:e9:82:a4:c2:b6:ee:3f:ab:bf:3d:a9:0c:f9:92:42:
9b:46:a4:5c:3a:bd:da:21:a5:0e:68:1b:e4:72:13:25:2d:07:
64:7e:42:40:23:69:6d:18:8e:f3:0f:c0:48:3c:91:e2:bf:62:
c1:f0:d5:32:9e:36:15:fc:a2:08:94:c2:67:27:e5:9e:52:ae:
50:ef:a3:d8:f6:02:39:bc:0c:f0:98:91:df:5c:26:f0:40:0a:
ea:b4:25:2c:41:38:b0:73:00:81:e5:66:d3:fd:60:23:66:bd:
a8:d6:f0:62:31:cf:ec:bc:97:8e:94:be:c6:70:a7:40:7d:82:
11:77:c1:34:af:c2:46:99:ee:e7:ea:fc:9f:98:b3:44:38:ab:
32:ed:16:b6:a0:9d:1d:b7:fc:b8:11:ef:58:d2:ed:4a:67:6e:
73:27:d6:7f:d7:c2:2f:24:ca:8e:c6:37:dd:f3:67:8f:44:55:
fb:17:49:e1:af:b0:9f:8e:02:95:9a:15:2e:c3:e6:8f:7a:c2:
9e:04:2b:8b:81:39:f1:96:28:29:89:38:41:70:39:e8:fc:1d:
b6:ed:90:15:b6:31:6b:6c:91:fd:8b:10:11:a2:d5:67:c3:54:
25:f1:70:33:e1:97:90:82:ba:e3:75:9b:6c:a3:1a:1c:e7:8e:
85:36:f2:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:21 2023 by rpki-client on console-ams.rpki-client.org