Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/8d02cd-c9b5-401d-a50a-75069ae77326/1/hyb-1yuObLkrEYDwzdF3F9tO4-s.roa
File: hyb-1yuObLkrEYDwzdF3F9tO4-s.roa (raw, json)
Hash identifier: hT+8adctgPEbaF7+RszBmObevFtdUkRp4edM1r2xQGw=
Subject key identifier: 87:26:FE:D7:2B:8E:6C:B9:2B:11:80:F0:CD:D1:77:17:DB:4E:E3:EB
Certificate issuer: /CN=984133b31d96b27c1af818114b169c9a5745e094
Certificate serial: 0753E8C5
Authority key identifier: 98:41:33:B3:1D:96:B2:7C:1A:F8:18:11:4B:16:9C:9A:57:45:E0:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mEEzsx2Wsnwa-BgRSxacmldF4JQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/8d02cd-c9b5-401d-a50a-75069ae77326/1/hyb-1yuObLkrEYDwzdF3F9tO4-s.roa
Signing time: Sat 01 Jan 2022 10:55:49 +0000
ROA not before: Sat 01 Jan 2022 10:55:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198991
IP address blocks: 176.122.32.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122939589 (0x753e8c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=984133b31d96b27c1af818114b169c9a5745e094
Validity
Not Before: Jan 1 10:55:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8726fed72b8e6cb92b1180f0cdd17717db4ee3eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e5:51:e3:85:58:6e:b7:39:56:c8:e2:e7:86:
53:20:fe:cd:4a:4d:10:ba:be:22:9d:80:b9:da:35:
ea:37:1a:86:87:32:28:09:a5:dc:ad:23:2e:2e:72:
62:70:43:65:67:2c:26:5f:5e:b5:b4:02:42:fa:fe:
94:5e:66:fa:6b:52:06:2c:d4:b7:4a:6c:21:e7:3e:
a8:f5:71:23:a3:a7:c3:7d:d3:eb:71:3b:18:63:25:
af:a8:b1:83:9a:1e:bf:3f:55:bd:a6:2c:50:c8:c2:
73:01:e9:00:92:c0:24:52:d9:c6:cc:6e:41:35:da:
a4:c3:b9:0d:7f:9d:e5:c7:f9:2f:06:ef:7b:8a:18:
38:19:45:52:66:6f:21:9e:22:6b:5b:40:b4:20:3f:
a4:cb:d9:1e:3d:fa:6a:81:67:bd:6a:b7:cd:77:8c:
e9:ce:58:5b:2a:23:39:35:a6:16:b4:39:05:7e:66:
0e:6d:50:86:2b:53:3f:45:7e:3e:19:35:2c:23:84:
0a:df:76:26:ee:52:30:07:09:6b:e8:5d:36:21:81:
ad:f9:90:ce:73:b6:88:1e:b1:44:13:39:8b:9d:42:
f8:3b:74:9c:b9:a3:c5:3c:b1:e4:89:a1:eb:13:8a:
16:05:c7:6e:00:48:2a:0b:d9:41:84:03:f2:6f:5c:
34:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:26:FE:D7:2B:8E:6C:B9:2B:11:80:F0:CD:D1:77:17:DB:4E:E3:EB
X509v3 Authority Key Identifier:
keyid:98:41:33:B3:1D:96:B2:7C:1A:F8:18:11:4B:16:9C:9A:57:45:E0:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mEEzsx2Wsnwa-BgRSxacmldF4JQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/8d02cd-c9b5-401d-a50a-75069ae77326/1/hyb-1yuObLkrEYDwzdF3F9tO4-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/8d02cd-c9b5-401d-a50a-75069ae77326/1/mEEzsx2Wsnwa-BgRSxacmldF4JQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.122.32.0/20
Signature Algorithm: sha256WithRSAEncryption
3b:d6:43:fa:c5:8e:2f:27:3b:de:73:ca:78:9f:db:eb:d2:00:
18:fe:27:e9:6b:97:25:5b:4f:7c:d5:59:32:cf:48:8f:75:32:
4e:d5:f0:01:1d:d2:b5:cc:67:cc:b7:64:27:38:86:b8:1f:62:
c8:2f:76:e8:28:38:29:e2:ae:76:4e:1f:ad:2b:b2:88:51:91:
06:45:f5:3e:a8:d1:79:65:d6:dd:1e:ca:be:b9:e3:ee:e3:51:
f3:51:a9:cb:16:e6:25:ac:e6:d5:73:eb:61:f2:f1:b9:4a:f0:
f9:a8:66:2f:1d:19:4d:cd:af:ae:8d:bb:0e:97:29:69:13:8e:
a4:08:00:27:a2:0f:0e:13:90:32:9e:da:10:89:ab:c5:72:90:
cc:d2:ae:70:21:f5:64:7e:3f:09:cb:b8:78:df:33:ad:7d:52:
42:a8:0d:94:f6:4a:58:91:26:54:0f:7e:01:35:14:6d:5d:a1:
b6:2e:16:f9:83:5e:1e:f5:71:b7:8d:6f:ff:0d:0a:65:23:39:
a2:24:ad:08:c7:f9:85:11:b5:b1:8d:97:5f:ad:cd:65:37:11:
8e:51:58:37:96:31:cf:b5:f1:aa:9d:e4:5e:d7:da:04:e1:3f:
f1:27:b5:98:3d:c2:c3:51:b1:94:37:48:7c:bc:f0:79:11:2c:
a6:36:4e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:32 2023 by rpki-client on console-ams.rpki-client.org