Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/AHuQ2HnU9E2H-LlutqosWAPQosY.roa
File: AHuQ2HnU9E2H-LlutqosWAPQosY.roa (raw, json)
Hash identifier: qrihWsqFgAdfx1Z65ZnztyU18yZOSys2b1R2dq+rHwg=
Subject key identifier: 00:7B:90:D8:79:D4:F4:4D:87:F8:B9:6E:B6:AA:2C:58:03:D0:A2:C6
Certificate issuer: /CN=b43c9c1bdd1e15288ab930d40051b3653cb09e7a
Certificate serial: 10510F2A
Authority key identifier: B4:3C:9C:1B:DD:1E:15:28:8A:B9:30:D4:00:51:B3:65:3C:B0:9E:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDycG90eFSiKuTDUAFGzZTywnno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/AHuQ2HnU9E2H-LlutqosWAPQosY.roa
Signing time: Sat 01 Jan 2022 05:01:13 +0000
ROA not before: Sat 01 Jan 2022 05:01:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 134.176.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 273747754 (0x10510f2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43c9c1bdd1e15288ab930d40051b3653cb09e7a
Validity
Not Before: Jan 1 05:01:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=007b90d879d4f44d87f8b96eb6aa2c5803d0a2c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e5:29:2e:a8:8f:87:8c:ae:2e:3b:5c:ea:93:
34:e4:00:4c:4e:87:c2:1d:0d:ef:86:87:a7:d9:87:
b7:a2:ab:8b:d5:b1:1a:75:36:00:45:1e:b6:a6:b9:
12:a5:1a:64:58:37:66:e3:c0:85:4e:ff:4a:55:1f:
98:4a:64:9c:f1:b9:16:17:78:a7:66:d0:ac:97:e3:
76:54:a0:b6:6f:ff:2c:e7:9a:51:bc:3c:88:12:7c:
cd:96:aa:95:eb:f1:9c:b8:01:22:14:fa:d0:88:d4:
1f:64:f9:a1:37:c8:68:19:e7:c7:2f:47:3c:6b:e8:
8d:c4:9e:e2:7f:a7:f5:54:1a:2a:49:d5:88:5e:94:
37:dd:08:8b:e6:22:b1:1e:44:59:79:1d:fb:c1:df:
ed:26:15:76:8c:29:cc:08:09:81:0c:d6:5d:c7:81:
68:e4:76:b3:68:3c:25:11:3c:c3:e5:72:96:b4:7e:
22:15:97:ae:6f:41:53:21:13:0c:f4:fa:d8:7b:91:
3d:38:c3:4d:2b:0e:05:56:7b:fa:c5:2c:72:b1:14:
2a:63:98:75:ea:ec:4a:6e:99:98:dc:08:9e:68:d9:
a3:52:fa:5c:60:53:3a:42:48:b5:0a:fc:02:81:38:
10:16:72:9d:f2:d8:4f:73:4f:89:b1:56:6b:b5:51:
48:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:7B:90:D8:79:D4:F4:4D:87:F8:B9:6E:B6:AA:2C:58:03:D0:A2:C6
X509v3 Authority Key Identifier:
keyid:B4:3C:9C:1B:DD:1E:15:28:8A:B9:30:D4:00:51:B3:65:3C:B0:9E:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDycG90eFSiKuTDUAFGzZTywnno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/AHuQ2HnU9E2H-LlutqosWAPQosY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.176.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0d:67:2b:c5:13:b5:d3:88:b6:3d:ee:60:48:c5:40:c6:66:c0:
c7:d2:6f:13:73:71:44:09:16:6e:b1:be:5d:bd:fe:44:0d:9d:
24:a8:78:a2:c2:ae:1e:f2:7a:83:51:56:7e:b4:6b:be:83:97:
db:c9:fa:c2:d0:69:5b:60:25:82:75:d5:42:a7:00:6a:ca:d3:
a3:48:e2:0a:0a:51:40:e1:2f:4a:aa:90:e5:c6:de:16:19:91:
c5:64:83:2a:11:5a:66:5e:16:c8:37:e0:06:8d:7a:0b:f4:21:
ed:66:3d:8d:51:10:02:e8:74:34:65:b7:21:03:ba:c8:ba:99:
22:63:3d:c2:6f:73:c7:15:e1:b9:da:37:10:75:c0:2a:09:b9:
0b:9a:87:93:70:0c:76:e8:f1:19:87:7c:6c:d1:3b:93:93:76:
f6:86:2c:2f:69:fe:51:ac:22:bd:6e:be:df:62:52:45:c6:97:
16:a8:5e:a4:fa:52:45:35:7b:16:c9:e0:78:91:55:12:83:68:
0f:c2:50:a5:2b:a1:e6:c6:ff:ec:38:a4:ea:5d:0c:b1:81:70:
d8:4e:4f:82:7a:bf:35:3c:48:d6:fd:36:48:a3:f0:43:5e:a9:
27:e2:42:ea:f4:43:91:68:15:0f:15:79:72:94:37:30:83:9c:
5e:4b:00:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:39 2024 by rpki-client on console-fra.rpki-client.org