Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/HSHsyuPM84KE-spZ-TdoP9IASXY.roa
File: HSHsyuPM84KE-spZ-TdoP9IASXY.roa (raw, json)
Hash identifier: 2UYL3aWA9wSUZ+Qz3xaCU+Gqy5pJhBFHMiA+ayixynk=
Subject key identifier: 1D:21:EC:CA:E3:CC:F3:82:84:FA:CA:59:F9:37:68:3F:D2:00:49:76
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 18835270
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/HSHsyuPM84KE-spZ-TdoP9IASXY.roa
Signing time: Tue 21 Jun 2022 11:55:45 +0000
ROA not before: Tue 21 Jun 2022 11:55:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6874
IP address blocks: 82.179.112.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 411259504 (0x18835270)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jun 21 11:55:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d21eccae3ccf38284faca59f937683fd2004976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9f:29:15:bf:4f:d7:ad:4a:f5:b8:df:78:04:
26:b2:b0:cb:35:b5:75:2f:51:5a:43:0c:47:f8:47:
3a:53:30:bd:18:73:20:13:b6:96:96:74:5b:27:60:
e8:77:b2:86:e2:a9:d0:bb:8e:47:71:35:62:27:85:
c1:e2:76:36:7d:da:df:e9:36:2a:88:d6:93:20:78:
38:7f:72:32:b7:1d:6c:9b:e8:35:fd:24:59:f3:55:
89:a6:1d:a6:f5:52:66:90:69:01:d1:20:38:14:66:
6f:9f:25:49:ee:fe:8f:2a:99:39:5a:d3:59:b2:fe:
10:b8:33:70:f3:45:ad:47:5b:25:4a:f1:c2:44:80:
15:27:97:ae:fa:9b:3e:82:c0:3c:be:ab:a7:e5:26:
e7:29:01:61:13:1d:2c:24:01:c2:e5:d8:c7:d4:49:
80:ad:b7:b7:48:d9:b5:e9:e5:c1:9b:1d:69:50:0a:
42:1c:b9:78:a2:63:f5:d9:f3:0b:26:e0:de:51:da:
7b:ae:02:a7:67:61:50:e5:f8:e9:24:5a:1f:65:f7:
f6:de:2a:53:5f:c1:5b:bd:48:84:ce:c8:a8:b2:b1:
eb:3e:f3:3b:7b:93:fa:d5:58:dc:8b:8d:2e:3e:c3:
42:c2:76:2d:f3:d2:27:70:20:c0:b4:90:e4:9c:86:
a0:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:21:EC:CA:E3:CC:F3:82:84:FA:CA:59:F9:37:68:3F:D2:00:49:76
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/HSHsyuPM84KE-spZ-TdoP9IASXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.179.112.0/20
Signature Algorithm: sha256WithRSAEncryption
15:49:2f:41:1b:b2:7d:f1:95:1c:e1:33:46:d4:b6:cd:68:dc:
15:f9:cd:ef:a7:0a:8c:14:ff:02:63:8c:21:d6:56:ce:da:25:
26:de:99:4c:db:ba:89:21:44:b9:81:f8:56:c9:76:a2:09:8f:
3a:6f:8c:58:99:5c:2e:60:f2:60:16:ea:5e:d9:ab:e6:95:0e:
af:0c:f2:cd:93:7a:d2:39:3d:16:dc:ce:8b:fd:0b:74:98:65:
75:38:1f:fb:8d:46:88:82:4f:ec:cc:24:2b:01:01:87:24:5e:
14:8b:2a:8c:e2:0f:2c:a9:db:be:f6:0e:8e:b2:c8:f4:e1:7e:
f1:2d:ce:6b:6b:01:bf:3e:e3:5b:2f:25:4e:49:7d:16:88:00:
dc:e5:7d:46:ab:d8:28:01:38:ba:30:cb:07:c3:63:40:4c:c7:
ae:c5:9d:c1:50:9f:92:85:ba:43:98:49:ca:e3:03:b5:14:03:
ac:ac:1f:fc:d6:3e:d1:b5:a7:b2:bb:2d:9f:5a:f2:b5:82:85:
bb:1c:ef:e1:52:a3:3b:18:e7:98:29:1c:64:8d:fb:c0:71:86:
5f:36:73:ba:80:12:a7:15:e8:27:ea:f1:9e:3c:a5:cb:a1:de:
48:bd:de:12:9b:c9:a4:24:f0:5d:ec:fa:ad:a6:13:5e:77:82:
f3:cd:97:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org