Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/HKTjE-_491VH1DeXJQEa9JI6d9o.roa
File: HKTjE-_491VH1DeXJQEa9JI6d9o.roa (raw, json)
Hash identifier: q64Hqsnfq5ugYoflOSAvHtYNgla22ea76tXLQZd6dEY=
Subject key identifier: 1C:A4:E3:13:EF:F8:F7:55:47:D4:37:97:25:01:1A:F4:92:3A:77:DA
Certificate issuer: /CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Certificate serial: 01821D6EE5B2CC25A2E61F0D52FC85D3616A
Authority key identifier: E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/HKTjE-_491VH1DeXJQEa9JI6d9o.roa
Signing time: Wed 20 Jul 2022 21:06:23 +0000
ROA not before: Wed 20 Jul 2022 21:06:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44307
IP address blocks: 96.125.144.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1d:6e:e5:b2:cc:25:a2:e6:1f:0d:52:fc:85:d3:61:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Validity
Not Before: Jul 20 21:06:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ca4e313eff8f75547d4379725011af4923a77da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:90:5f:66:fc:df:c2:9b:f9:e1:fc:d6:ee:52:
af:7f:c9:e8:97:d5:8f:c9:93:a2:97:7d:31:23:8b:
eb:06:d0:3b:2a:be:71:ac:7c:75:60:51:5c:85:d6:
e7:60:a9:8d:4f:46:82:a7:45:76:ae:8e:87:0f:d0:
aa:f0:ec:5f:03:ac:f6:6e:cf:36:88:ef:40:04:35:
ca:58:b9:af:8c:5e:7a:d9:ed:db:01:84:8c:57:66:
92:d0:6c:80:f4:3a:51:80:9c:4b:d1:02:54:8a:7a:
d0:0e:40:4a:f8:ed:a7:d3:17:cb:6a:89:55:08:8e:
aa:79:a7:5a:6d:34:5c:17:bc:09:e2:84:4c:94:85:
83:91:0e:5b:ad:79:fc:5c:bb:24:0c:ca:40:4a:54:
7c:dc:84:e3:84:48:c8:05:64:c2:0f:86:0a:f9:39:
53:50:8e:2f:6e:01:7e:31:f3:81:62:f2:ed:61:14:
5a:1b:b5:6b:b8:e4:d5:22:f5:17:bf:98:eb:44:cb:
56:9c:98:c5:e6:be:0b:72:a4:af:0a:ef:f4:8d:9e:
2c:29:40:63:0e:2b:07:5a:08:56:af:2a:f0:f6:cb:
ae:8d:87:06:ca:7b:77:18:b1:53:d5:f0:fb:40:56:
b6:e2:f3:2d:16:9c:d2:c6:c9:2c:35:4d:f5:ec:d9:
82:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:A4:E3:13:EF:F8:F7:55:47:D4:37:97:25:01:1A:F4:92:3A:77:DA
X509v3 Authority Key Identifier:
keyid:E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/HKTjE-_491VH1DeXJQEa9JI6d9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/4tDEmg6X4NXzztO3trn3LKDLU9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.125.144.0/20
Signature Algorithm: sha256WithRSAEncryption
cd:24:d7:3a:d7:e4:bc:ae:3c:14:41:0b:b3:13:bb:e2:38:94:
eb:96:04:82:ba:20:06:11:6d:05:04:d6:6f:d8:3c:13:76:f3:
f8:1f:1c:97:99:76:a5:e5:17:27:41:9e:80:3d:72:61:8f:a6:
6d:1f:3c:82:06:1b:d9:be:7b:a1:c4:dd:65:dc:82:d0:2c:30:
98:51:89:06:19:25:0d:b4:b7:58:84:2a:26:26:8f:1c:48:41:
57:6f:c1:ed:34:c1:38:7b:19:bc:75:be:80:88:87:a9:dd:0e:
c6:e0:0e:d2:03:eb:51:fc:22:17:8b:6c:ec:fd:92:82:41:20:
bd:f9:65:0e:c9:d4:3c:6e:6b:3c:0b:04:aa:d9:2c:ce:1c:ed:
f4:11:f7:17:54:de:40:f6:1a:f3:18:6c:50:91:2a:72:f2:7c:
5f:16:60:cd:72:ea:45:a6:5f:85:d9:9b:86:33:d1:f8:fd:7f:
ef:ef:5a:ab:d3:9a:ae:e1:52:d4:6b:5c:8a:88:b2:79:b7:8e:
43:8d:55:b6:07:27:c0:ac:0e:77:44:82:1f:66:59:f2:15:48:
b8:ec:ad:35:8c:71:d4:cb:cb:36:b4:be:66:d0:79:1c:bc:aa:
05:e6:1d:df:4b:f6:ad:b0:c3:00:a3:bb:72:75:d0:30:47:6b:
ac:36:e0:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:48 2024 by rpki-client on console-fra.rpki-client.org