Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/870383-df9a-479c-8ee1-36dc2800fded/1/HgxDmeHPyJB2HWpJZLRKVSxLRhc.roa
File: HgxDmeHPyJB2HWpJZLRKVSxLRhc.roa (raw, json)
Hash identifier: dY/iV3R0KKNe0JGztMXFWvQV5iW9qn/MrAkzGnzbL2M=
Subject key identifier: 1E:0C:43:99:E1:CF:C8:90:76:1D:6A:49:64:B4:4A:55:2C:4B:46:17
Certificate issuer: /CN=6b1a157e20adca3b44067ba8d8dcabae698a8bec
Certificate serial: 01B58CA7
Authority key identifier: 6B:1A:15:7E:20:AD:CA:3B:44:06:7B:A8:D8:DC:AB:AE:69:8A:8B:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/axoVfiCtyjtEBnuo2NyrrmmKi-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/870383-df9a-479c-8ee1-36dc2800fded/1/HgxDmeHPyJB2HWpJZLRKVSxLRhc.roa
Signing time: Fri 20 May 2022 10:57:30 +0000
ROA not before: Fri 20 May 2022 10:57:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199429
IP address blocks: 2001:67c:11d0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28675239 (0x1b58ca7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b1a157e20adca3b44067ba8d8dcabae698a8bec
Validity
Not Before: May 20 10:57:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e0c4399e1cfc890761d6a4964b44a552c4b4617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e0:37:bc:8c:54:c3:14:1a:ad:ca:be:29:af:
ad:12:8a:d3:a3:3b:1f:eb:94:c5:77:78:d2:c7:d8:
0b:e5:c1:14:79:5f:c5:bb:bd:ab:62:8b:7b:d2:0f:
58:a2:11:d8:62:72:fd:4c:37:e3:ec:7e:8c:f6:2b:
b7:db:e2:68:fc:9a:01:26:68:c6:aa:dd:ad:68:af:
23:63:af:bb:fe:d1:45:23:c2:1b:b6:01:d7:a2:da:
05:ec:81:74:a5:86:04:a2:bb:06:5c:78:46:5b:81:
2a:f8:92:cc:d6:b7:58:6a:bc:7a:69:cf:73:7d:71:
64:50:bd:f0:97:e8:b2:c7:d4:e8:f5:88:b7:8e:dd:
69:7d:99:95:34:17:d7:8e:4e:02:b7:9e:54:99:8d:
ea:d8:e3:cd:d7:1c:1a:65:d3:49:ab:93:bf:03:42:
11:25:75:ab:7b:74:ad:a3:80:9d:1c:40:2e:5a:07:
d9:04:79:b6:6e:19:8f:9c:4d:37:aa:dd:ba:46:02:
f4:7b:cb:99:a7:d9:76:19:52:19:b1:db:e5:0c:78:
c4:b7:e6:be:18:4e:12:fb:d8:9a:d3:49:7b:a6:3c:
1e:97:f9:0e:6c:f7:7b:66:ce:54:7d:b0:f4:ad:0f:
66:31:3c:61:68:81:48:54:c9:3a:d9:fe:15:d8:5c:
99:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:0C:43:99:E1:CF:C8:90:76:1D:6A:49:64:B4:4A:55:2C:4B:46:17
X509v3 Authority Key Identifier:
keyid:6B:1A:15:7E:20:AD:CA:3B:44:06:7B:A8:D8:DC:AB:AE:69:8A:8B:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/axoVfiCtyjtEBnuo2NyrrmmKi-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/870383-df9a-479c-8ee1-36dc2800fded/1/HgxDmeHPyJB2HWpJZLRKVSxLRhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/870383-df9a-479c-8ee1-36dc2800fded/1/axoVfiCtyjtEBnuo2NyrrmmKi-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:11d0::/48
Signature Algorithm: sha256WithRSAEncryption
67:58:50:b9:3e:d2:dd:c9:7e:37:7a:41:05:71:90:ae:e5:c2:
8a:12:c2:07:21:7b:34:d6:25:41:b0:a9:a1:bb:cb:c6:26:36:
95:8e:e2:5e:24:e2:8d:f9:a7:12:91:5a:ac:55:f5:6e:a2:02:
d2:b3:b5:61:88:11:c4:ce:ce:11:85:ef:73:79:ea:81:02:5b:
b5:09:50:9e:d0:a4:e6:7b:80:68:32:49:66:0c:3c:93:37:2e:
35:eb:d8:fb:7a:e1:d3:b2:6f:80:03:a0:ca:76:e2:ef:cf:76:
5c:f3:47:cd:f2:0a:9e:9d:22:15:d0:df:94:bf:72:34:7e:4b:
12:93:18:5c:81:b9:a1:a5:98:02:18:af:07:a3:70:5b:b4:b7:
be:7d:ec:e3:38:2a:c2:f3:86:c7:89:3d:c4:f2:1c:8f:69:88:
43:fd:dd:5e:13:e6:12:08:18:81:fb:a8:2e:e8:fb:1f:df:8e:
f8:5b:5d:e5:0f:50:f0:6d:e8:c6:b4:f5:5a:88:12:b2:41:26:
0f:32:04:22:ba:b8:1d:75:22:a8:8b:d2:35:38:f0:e9:83:9d:
d3:7f:42:7a:27:4c:1e:d3:1d:42:38:e9:8d:99:b2:63:a9:f4:
e5:47:be:80:d0:01:96:4f:43:a1:80:18:8d:0a:eb:61:81:71:
83:07:4c:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:39 2024 by rpki-client on console-ams.rpki-client.org