Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/9d0a15-d546-4970-9a81-8596c2af9dcc/1/hkePqM9Dq5C1Q5_zgCedJfGjeK0.roa
File: hkePqM9Dq5C1Q5_zgCedJfGjeK0.roa (raw, json)
Hash identifier: kDfpaGS7D2c1DVKug8AZAvsjW6RlhwQX1bBnLTnyi4I=
Subject key identifier: 86:47:8F:A8:CF:43:AB:90:B5:43:9F:F3:80:27:9D:25:F1:A3:78:AD
Certificate issuer: /CN=6857a9bb297f0b3c444ab0af673a52750e979b4e
Certificate serial: 106F6A92
Authority key identifier: 68:57:A9:BB:29:7F:0B:3C:44:4A:B0:AF:67:3A:52:75:0E:97:9B:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aFepuyl_CzxESrCvZzpSdQ6Xm04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/9d0a15-d546-4970-9a81-8596c2af9dcc/1/hkePqM9Dq5C1Q5_zgCedJfGjeK0.roa
Signing time: Sat 01 Jan 2022 10:57:25 +0000
ROA not before: Sat 01 Jan 2022 10:57:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 141.14.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 275737234 (0x106f6a92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6857a9bb297f0b3c444ab0af673a52750e979b4e
Validity
Not Before: Jan 1 10:57:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86478fa8cf43ab90b5439ff380279d25f1a378ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:cb:96:6a:b8:e2:ee:d2:05:9b:c3:c4:30:d8:
26:9d:18:9b:4c:0f:7c:e6:ed:10:fc:ab:33:2f:6a:
a4:5b:67:90:56:a7:9a:8a:56:e2:40:e0:a7:67:87:
35:de:28:4c:f3:cc:c5:d4:4d:af:56:21:1f:8b:cf:
d9:29:01:67:58:3a:fe:3a:e4:26:89:fc:98:90:80:
d5:0a:e0:0c:9f:13:47:17:62:46:2a:82:47:ed:f8:
18:fa:30:26:ed:a5:02:a8:0e:82:21:0e:31:a5:d3:
f6:e9:5f:68:b6:12:90:63:58:a4:96:5d:48:98:91:
a4:96:2a:be:e7:82:c3:db:ac:a2:24:18:32:0e:51:
1d:fe:48:ea:41:4a:bf:9b:78:99:b9:59:6a:78:21:
cd:fd:81:81:42:6f:17:ca:16:df:e7:32:58:67:aa:
04:8c:5f:15:bc:26:ec:72:b0:e7:c5:cf:83:62:6c:
ed:1b:df:ae:52:3a:c4:23:0e:ee:71:45:4d:2b:93:
c3:57:75:7f:17:23:45:54:95:5e:67:71:6c:24:d2:
b4:bd:f2:4d:eb:14:6b:2e:2a:0c:c3:45:b8:ce:4e:
cf:3c:ee:f6:38:4a:50:3f:9d:e7:a3:7d:a5:26:3b:
82:1c:5f:e6:0c:5f:1f:9a:85:46:71:42:30:68:0a:
3e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:47:8F:A8:CF:43:AB:90:B5:43:9F:F3:80:27:9D:25:F1:A3:78:AD
X509v3 Authority Key Identifier:
keyid:68:57:A9:BB:29:7F:0B:3C:44:4A:B0:AF:67:3A:52:75:0E:97:9B:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aFepuyl_CzxESrCvZzpSdQ6Xm04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/9d0a15-d546-4970-9a81-8596c2af9dcc/1/hkePqM9Dq5C1Q5_zgCedJfGjeK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/9d0a15-d546-4970-9a81-8596c2af9dcc/1/aFepuyl_CzxESrCvZzpSdQ6Xm04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.14.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0d:05:14:25:1e:76:d2:2a:61:5e:09:31:d1:25:99:5a:4d:3d:
b0:aa:e1:9b:f5:4c:dc:ae:78:75:da:b3:15:f4:35:91:cb:1d:
41:c5:fb:b7:29:9b:26:02:26:b4:f8:95:34:64:b8:0e:c8:37:
0b:b6:64:4e:ba:30:fa:a4:70:86:d1:e5:c2:d2:0d:53:38:94:
3e:f0:b2:38:2c:fd:27:4c:15:15:91:23:39:0e:ac:eb:c5:ce:
ae:43:44:7b:e0:79:dc:da:bc:a9:4c:04:57:cf:a4:ff:0c:5f:
0d:4d:c2:62:ee:5d:0a:18:f7:96:e2:21:9f:30:c2:d0:03:4f:
f4:64:6e:2b:f0:5c:ce:7f:c3:46:b5:b7:36:cc:ac:88:e2:64:
f8:41:bd:55:e0:83:ec:ae:68:39:ff:57:0e:26:fb:34:15:a3:
0b:af:59:65:09:20:d5:69:95:1d:7c:1d:dd:ea:06:ae:c1:81:
57:9a:ef:d4:5a:04:3f:02:89:4e:93:bb:6b:91:7b:af:8d:19:
9c:61:15:a3:cb:e4:db:39:3c:c4:88:c0:d3:14:41:3e:5a:fb:
3e:30:52:1b:9d:9d:a3:29:14:c0:84:7c:33:c9:7a:27:f8:b8:
97:90:fb:1d:03:8c:67:8c:06:da:ad:ed:6f:1d:a9:0b:b2:0a:
35:33:7b:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:25 2023 by rpki-client on console-ams.rpki-client.org