Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/6f6826-1aad-4c3c-bd91-cca37e2f2729/1/RoHKxRk6VrEPjYhWwEWGDmktxUU.roa
File: RoHKxRk6VrEPjYhWwEWGDmktxUU.roa (raw, json)
Hash identifier: XsmuDZ0CM745dGOJ3sIgyWf0fZEeSdg5iaVPmvjXk48=
Subject key identifier: 46:81:CA:C5:19:3A:56:B1:0F:8D:88:56:C0:45:86:0E:69:2D:C5:45
Certificate issuer: /CN=f826ffe96cdc41efaa8bfb3125862d6594be9827
Certificate serial: 79F90B
Authority key identifier: F8:26:FF:E9:6C:DC:41:EF:AA:8B:FB:31:25:86:2D:65:94:BE:98:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Cb_6WzcQe-qi_sxJYYtZZS-mCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/6f6826-1aad-4c3c-bd91-cca37e2f2729/1/RoHKxRk6VrEPjYhWwEWGDmktxUU.roa
Signing time: Sat 01 Jan 2022 02:54:35 +0000
ROA not before: Sat 01 Jan 2022 02:54:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 134.76.0.0/16 maxlen: 16
195.12.38.0/24 maxlen: 24
2a06:93c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7993611 (0x79f90b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f826ffe96cdc41efaa8bfb3125862d6594be9827
Validity
Not Before: Jan 1 02:54:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4681cac5193a56b10f8d8856c045860e692dc545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:20:0c:b9:6d:f7:36:06:d1:06:73:20:b1:b7:
c7:6d:9c:e7:32:af:1b:f5:e7:84:a7:6e:24:2f:d1:
21:2b:57:4e:3e:71:a4:54:71:79:45:52:4c:a6:53:
74:3b:d2:ae:42:f4:9a:27:68:da:cb:61:7a:09:6c:
8c:9d:d1:24:ca:05:95:50:fb:93:dd:60:c5:0a:ad:
55:05:1e:07:bb:71:2d:91:d9:82:ca:20:21:36:75:
6f:88:1c:f3:a3:e4:e0:0f:ac:9c:82:82:ba:51:63:
00:23:e3:ed:05:4f:d9:19:7c:f4:d3:18:d6:35:1d:
55:78:9c:43:02:d1:7c:6f:a9:f0:58:4e:f9:7a:57:
43:e1:c2:21:42:77:c0:7c:95:fa:ad:a3:ce:1f:8f:
3e:d0:58:4a:96:b6:06:fa:0a:6d:94:25:ce:bd:84:
3d:a1:d5:22:46:84:34:26:ca:7a:c3:f9:0b:e5:40:
28:84:e5:4a:ad:f6:28:0c:b5:68:cc:2a:8b:37:f0:
89:84:c0:f1:8d:b6:76:c6:58:f6:42:8c:eb:71:6a:
30:9a:9d:f6:71:c1:f9:63:ed:69:8c:d4:8f:1b:44:
22:89:f0:13:d6:73:fe:c9:49:12:b8:10:ea:5c:e8:
66:cf:3d:fb:42:a8:bf:88:51:aa:5c:84:9b:7f:92:
61:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:81:CA:C5:19:3A:56:B1:0F:8D:88:56:C0:45:86:0E:69:2D:C5:45
X509v3 Authority Key Identifier:
keyid:F8:26:FF:E9:6C:DC:41:EF:AA:8B:FB:31:25:86:2D:65:94:BE:98:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Cb_6WzcQe-qi_sxJYYtZZS-mCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6f6826-1aad-4c3c-bd91-cca37e2f2729/1/RoHKxRk6VrEPjYhWwEWGDmktxUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6f6826-1aad-4c3c-bd91-cca37e2f2729/1/1-Cb_6WzcQe-qi_sxJYYtZZS-mCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.76.0.0/16
195.12.38.0/24
IPv6:
2a06:93c0::/29
Signature Algorithm: sha256WithRSAEncryption
a2:88:9a:7d:91:c8:f7:27:ac:1f:5e:34:3e:25:a6:08:17:3d:
34:7f:fc:eb:95:8b:25:f6:ed:a0:2d:60:92:b0:1c:4e:49:ee:
89:fd:57:35:1a:de:73:8b:3d:f4:36:38:b5:79:4a:96:06:db:
2b:b8:7f:a5:73:cb:19:6f:24:04:27:ce:cb:b7:c3:81:61:5a:
26:78:4c:a2:ff:60:8a:ff:30:56:24:81:b2:93:db:e4:29:0a:
6e:27:45:7f:09:84:91:4d:0e:8b:8d:3b:10:46:26:39:8b:93:
68:8a:84:e8:4f:9d:54:1a:7c:35:09:b3:91:6b:47:ad:73:95:
3a:ff:1b:22:cd:e9:f5:da:73:2b:94:69:09:27:76:dc:ab:77:
ca:15:03:ca:30:74:29:a1:8a:85:6c:65:34:d7:62:bf:75:3a:
d6:df:07:ab:fa:e6:56:9e:29:88:4c:21:48:92:cc:0c:3d:ac:
c8:45:24:25:26:27:34:08:fa:3d:de:48:fa:06:b8:0b:87:76:
0d:a2:db:4d:35:9f:1e:7b:c0:a5:d1:f2:15:6a:c1:cf:8f:6d:
1b:8b:f9:47:17:8b:cf:83:c0:1b:a3:4f:51:d1:9a:b3:78:98:
22:18:17:37:10:d1:8f:47:70:ee:f7:5f:1d:3f:d3:5e:96:94:
9b:62:59:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:28 2023 by rpki-client on console-fra.rpki-client.org