Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/hgpLtxhE-kLoEhxS5owxcxabVOI.roa
File: hgpLtxhE-kLoEhxS5owxcxabVOI.roa (raw, json)
Hash identifier: oLwmVLO7jzmVRqZAfD4FS5ZuFl6hGec+3+0A5KLSlV0=
Subject key identifier: 86:0A:4B:B7:18:44:FA:42:E8:12:1C:52:E6:8C:31:73:16:9B:54:E2
Certificate issuer: /CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Certificate serial: 0A7CBCDC
Authority key identifier: B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/hgpLtxhE-kLoEhxS5owxcxabVOI.roa
Signing time: Sat 01 Jan 2022 02:54:14 +0000
ROA not before: Sat 01 Jan 2022 02:54:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5606
IP address blocks: 2a00:ece1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175946972 (0xa7cbcdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Validity
Not Before: Jan 1 02:54:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=860a4bb71844fa42e8121c52e68c3173169b54e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:20:3e:28:12:32:74:fc:77:a3:58:b4:df:2c:
e0:02:22:0f:65:ee:1c:73:d9:97:65:dc:b0:d2:2c:
72:fc:ea:64:de:3b:4c:92:c5:e2:fd:c1:82:9a:02:
d2:2a:f4:75:ce:aa:06:42:70:d0:db:4c:bb:4e:e0:
89:fd:bc:c6:fa:33:19:6d:41:0f:80:21:a1:2b:f9:
4a:32:02:7f:6f:53:e4:26:1b:bc:d0:d5:c2:de:c0:
85:39:60:9b:60:48:08:bd:e4:f0:2b:02:e2:2e:22:
e0:af:12:59:d0:2b:95:64:32:38:39:82:f0:ff:14:
82:ab:42:e0:20:9f:67:d6:fa:b4:d6:e5:cb:be:04:
44:47:0a:63:3d:ea:39:f1:fa:9a:ab:86:fc:b4:57:
9f:00:e0:6a:81:3d:9e:25:28:f4:a8:65:3b:a6:76:
a4:60:e5:d7:70:f7:c0:dd:3c:6a:79:ea:1f:74:7a:
69:b3:b8:b9:67:c9:3c:33:02:b8:f0:e9:a0:05:9c:
a5:5f:8b:dc:a2:56:91:19:70:a5:ea:07:72:59:1d:
3b:b4:37:d4:f1:3b:aa:d9:3c:8a:8d:76:ba:6c:12:
82:56:0d:13:a3:16:e5:72:d4:8b:97:45:8c:65:24:
93:30:90:28:6f:c8:bc:ba:a1:30:c1:d7:ff:13:0e:
a0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:0A:4B:B7:18:44:FA:42:E8:12:1C:52:E6:8C:31:73:16:9B:54:E2
X509v3 Authority Key Identifier:
keyid:B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/hgpLtxhE-kLoEhxS5owxcxabVOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/sMIK4drMoxgVsnRwKSfBpanbx7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:ece1::/48
Signature Algorithm: sha256WithRSAEncryption
4e:94:48:b1:db:f3:6d:13:2a:e3:f6:22:3f:7e:46:67:55:f4:
54:a1:ce:af:d7:f5:cf:2e:f2:0e:53:3b:a9:52:14:cf:91:ce:
ce:70:94:22:da:7d:04:cf:76:7d:23:16:77:e9:8c:fe:8a:19:
16:72:a4:80:d9:f3:1e:cd:2d:a1:c3:2d:e6:f5:ec:bb:49:d2:
12:85:d9:31:63:25:bf:de:dd:51:63:a6:bb:95:fa:79:de:d0:
ec:1d:14:77:11:f0:ab:a8:20:d5:7d:5c:7c:7a:6d:f2:b2:32:
a5:85:79:c8:de:a0:53:c3:12:58:5f:70:97:d2:a3:fe:37:ec:
dc:09:e8:01:ca:f8:91:ae:98:05:9d:70:26:aa:2e:98:45:0a:
20:53:8c:3f:09:50:aa:be:8b:84:2c:8b:fd:5a:1b:28:3d:47:
fb:a0:1f:22:37:be:d6:77:8a:b9:43:f7:54:24:56:11:62:39:
59:45:7e:b1:25:be:8b:8e:c4:7e:0d:9b:ae:a9:86:6e:a2:66:
8f:6c:bf:4c:81:f9:bb:62:56:d0:32:4a:3f:62:b7:d8:a3:4d:
54:c2:75:23:46:0f:fa:43:49:24:bf:10:fb:67:49:4f:71:2f:
8e:15:6e:2e:2e:6d:06:33:9d:0e:98:6b:1a:3d:96:3c:c1:a2:
f1:25:1d:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org