Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/9479ca-3db5-4f62-8e23-730b17f069ab/1/hgTwLt44hhbLUB0VXoDJL86sv5s.roa
File: hgTwLt44hhbLUB0VXoDJL86sv5s.roa (raw, json)
Hash identifier: xGJEEpOEz+1mVnlk9+hpYWG4v0nvjhzrpr87m6/1Zow=
Subject key identifier: 86:04:F0:2E:DE:38:86:16:CB:50:1D:15:5E:80:C9:2F:CE:AC:BF:9B
Certificate issuer: /CN=3246795ad68a6badd5afcb6ba4653e9c090fc85a
Certificate serial: 04135A88
Authority key identifier: 32:46:79:5A:D6:8A:6B:AD:D5:AF:CB:6B:A4:65:3E:9C:09:0F:C8:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkZ5WtaKa63Vr8trpGU-nAkPyFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/9479ca-3db5-4f62-8e23-730b17f069ab/1/hgTwLt44hhbLUB0VXoDJL86sv5s.roa
Signing time: Sat 01 Jan 2022 00:52:24 +0000
ROA not before: Sat 01 Jan 2022 00:52:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49388
IP address blocks: 188.94.8.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68377224 (0x4135a88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3246795ad68a6badd5afcb6ba4653e9c090fc85a
Validity
Not Before: Jan 1 00:52:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8604f02ede388616cb501d155e80c92fceacbf9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9e:95:6d:a1:30:08:b2:f7:df:b9:07:81:fa:
4d:70:00:e6:10:74:7c:a7:48:90:c4:bb:78:66:c1:
98:20:75:72:0d:32:90:d0:71:91:54:f0:07:b1:7d:
85:12:ea:5f:81:d9:e7:c9:60:80:0f:29:37:45:b3:
28:c1:23:c5:7f:31:54:aa:92:e5:68:b1:8f:dc:84:
2f:00:e2:c0:99:9a:f8:f0:0f:ad:85:f6:b4:f0:86:
f1:78:d6:dd:4b:8a:92:35:d6:8b:ba:6b:0a:4d:c9:
77:da:a0:a3:79:d7:85:1a:f0:59:32:39:3c:12:7f:
67:69:f7:11:0f:96:07:ec:18:d2:34:b8:03:31:e4:
bb:5d:65:60:09:0b:2f:92:ad:11:33:c0:d8:59:77:
27:1c:7d:5e:1e:2c:e3:60:13:df:e4:2d:cc:3a:1f:
29:c4:70:72:84:eb:cd:82:12:a9:97:24:71:79:a6:
aa:72:ed:f6:2a:7b:a7:4f:5f:b1:bf:42:b8:09:b0:
29:82:b5:fa:f4:e4:bb:46:2e:4e:1b:1a:ad:e7:19:
fb:5c:5a:84:10:03:0c:44:45:21:f1:7e:fe:ed:38:
ea:3a:88:bd:e0:e1:e9:af:3c:8c:20:eb:79:81:7e:
b3:a2:11:80:bf:78:76:33:4c:25:00:a1:9f:9c:e9:
83:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:04:F0:2E:DE:38:86:16:CB:50:1D:15:5E:80:C9:2F:CE:AC:BF:9B
X509v3 Authority Key Identifier:
keyid:32:46:79:5A:D6:8A:6B:AD:D5:AF:CB:6B:A4:65:3E:9C:09:0F:C8:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkZ5WtaKa63Vr8trpGU-nAkPyFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/9479ca-3db5-4f62-8e23-730b17f069ab/1/hgTwLt44hhbLUB0VXoDJL86sv5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/9479ca-3db5-4f62-8e23-730b17f069ab/1/MkZ5WtaKa63Vr8trpGU-nAkPyFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.94.8.0/21
Signature Algorithm: sha256WithRSAEncryption
b2:54:60:7a:b9:66:c6:00:36:50:20:06:d1:d1:d0:54:b0:5d:
ec:38:78:4c:76:c3:3f:6c:ab:90:1c:78:34:30:18:00:d7:28:
f6:80:26:ef:5d:6e:c1:88:11:88:2c:bb:b8:b5:e3:04:bc:61:
3e:3f:5a:c6:ff:40:aa:51:71:94:39:5d:f5:47:1e:3b:7e:5a:
39:e7:ff:1a:e8:68:1e:b5:5f:3f:57:b4:2d:8f:df:78:91:db:
42:3e:f2:0f:ee:21:04:a2:e0:6b:5c:30:13:3b:d0:bc:6b:53:
93:d2:df:e3:2e:60:c4:ab:a0:2d:a7:5f:c1:fd:59:23:2e:73:
fc:a0:64:e0:ba:4a:e8:28:4f:a4:59:dc:6b:6b:6d:f5:37:1b:
c2:d6:7f:f1:1a:d3:77:6a:0b:82:79:02:06:4d:c2:fd:b2:b8:
60:11:7c:a8:6b:0e:8d:2b:fe:e6:8c:aa:9d:0f:16:67:36:8d:
68:e6:b7:52:4e:e7:46:11:d6:95:36:84:52:e1:ef:6b:5a:eb:
4d:fb:03:b1:ca:19:ea:54:39:d9:a3:7b:4c:e1:12:4d:ff:49:
0f:5d:ac:7f:ae:27:5c:ed:18:0c:d4:68:83:1a:33:d8:52:99:
2b:b7:a7:ea:b8:13:4c:61:f3:55:b1:99:e5:5b:37:63:84:5c:
42:71:c5:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:13 2024 by rpki-client on console-fra.rpki-client.org