Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/HYBSUjpwIDPupkq2q0C1h7LBdrA.roa
File: HYBSUjpwIDPupkq2q0C1h7LBdrA.roa (raw, json)
Hash identifier: ebixmkgC/pSzmg4jNX8OBbniOHCzEeYD92ei6nAK4d0=
Subject key identifier: 1D:80:52:52:3A:70:20:33:EE:A6:4A:B6:AB:40:B5:87:B2:C1:76:B0
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 018536561C6938EF6F19F769737BB5D4547D
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/HYBSUjpwIDPupkq2q0C1h7LBdrA.roa
Signing time: Wed 21 Dec 2022 20:18:11 +0000
ROA not before: Wed 21 Dec 2022 20:18:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57142
IP address blocks: 176.126.175.0/24 maxlen: 24
188.240.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:36:56:1c:69:38:ef:6f:19:f7:69:73:7b:b5:d4:54:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Dec 21 20:18:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d8052523a702033eea64ab6ab40b587b2c176b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:02:b1:c6:c7:95:16:2f:4c:9d:6e:d3:73:01:
b7:d6:ca:cc:f5:51:4c:ec:2d:71:69:29:e6:94:05:
82:14:af:73:c7:97:57:44:1c:17:c2:74:2e:88:c7:
db:ae:53:09:d6:7b:e6:21:0f:6f:77:61:ab:fc:53:
a4:95:e7:40:cb:11:5f:35:0a:52:53:f5:1d:22:ce:
e8:40:6b:f4:47:c6:e1:7f:b5:67:b9:55:7e:b4:d9:
6f:55:2f:88:bc:08:f0:4c:40:2e:9f:67:cb:08:48:
c4:54:83:49:af:6c:54:d9:b6:02:f3:db:52:f0:c0:
ed:49:10:5f:da:da:70:4c:ff:21:bc:db:e4:a6:6a:
c0:50:2a:d3:43:cf:ab:5d:63:a2:09:2a:fc:fe:9b:
95:62:70:30:a8:92:e0:a3:17:ab:27:e4:1c:46:f9:
77:88:fe:fa:46:4d:5c:dd:9d:64:13:c0:bc:aa:92:
86:d3:b5:e5:ca:a3:ef:24:90:a6:6d:1f:05:c1:d3:
08:93:87:9b:a6:47:26:99:e2:d1:52:fb:85:88:7b:
8e:00:b6:33:b6:08:bc:b6:10:43:12:1b:59:02:c6:
e8:10:58:79:2a:f4:f5:15:c1:e0:d6:00:0e:94:f4:
d1:77:e0:7f:61:d2:eb:58:0c:4d:bd:2e:e5:db:54:
45:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:80:52:52:3A:70:20:33:EE:A6:4A:B6:AB:40:B5:87:B2:C1:76:B0
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/HYBSUjpwIDPupkq2q0C1h7LBdrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.175.0/24
188.240.208.0/24
Signature Algorithm: sha256WithRSAEncryption
63:19:b7:60:af:2e:45:23:1c:36:cc:ef:68:c7:ce:15:04:d2:
31:64:12:75:b3:1d:ec:28:de:7b:05:bb:97:ca:6a:16:73:5d:
d1:3f:71:49:b4:60:19:b5:80:88:2d:e9:a2:fc:09:ad:c1:41:
df:a6:7f:79:40:29:e0:75:e5:bc:61:88:91:5c:00:90:fd:2f:
ae:52:e6:de:8f:30:bd:67:16:db:4b:62:7a:1d:7f:94:60:04:
c1:03:bf:a6:cd:08:fe:a9:cc:d2:93:4a:d0:8e:84:f7:86:c4:
f9:23:34:bf:b8:d2:3c:d5:be:f9:f9:86:a4:fb:1a:f9:a7:c9:
12:4f:43:a3:34:7e:6e:90:0a:66:50:aa:00:a3:7b:c3:2d:39:
ff:46:e9:88:b3:cc:0a:28:b9:b7:8c:97:b1:5d:5e:02:4c:43:
0d:e9:94:34:57:be:19:e1:eb:6e:9f:96:0e:35:ba:27:e1:3b:
56:ad:00:12:61:e0:39:d9:3f:da:41:16:b9:b3:a3:27:1c:b3:
d9:de:0b:2c:f2:90:c8:59:73:50:53:fd:2a:ab:d0:c5:b0:f8:
18:f6:e6:29:fd:50:26:9d:23:17:80:8e:07:73:38:04:f2:58:
0f:35:f9:14:40:40:b1:e6:02:f9:c4:71:33:65:d5:a5:2a:0d:
fb:6d:70:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:04 2025 by rpki-client