Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b8072f-f355-4dd6-9393-6a65d8041803/1/HXbl7bjwlEkJIqiqUB7w6mM8RmY.roa
File: HXbl7bjwlEkJIqiqUB7w6mM8RmY.roa (raw, json)
Hash identifier: a5uh/k57/GGlzrX5YzGqQY2LjdoZksVUBJik5XPKiBg=
Subject key identifier: 1D:76:E5:ED:B8:F0:94:49:09:22:A8:AA:50:1E:F0:EA:63:3C:46:66
Certificate issuer: /CN=5e51c193fb7ff1746a215c41817f50ecba5a581a
Certificate serial: 01A3998C
Authority key identifier: 5E:51:C1:93:FB:7F:F1:74:6A:21:5C:41:81:7F:50:EC:BA:5A:58:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlHBk_t_8XRqIVxBgX9Q7LpaWBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b8072f-f355-4dd6-9393-6a65d8041803/1/HXbl7bjwlEkJIqiqUB7w6mM8RmY.roa
Signing time: Sat 01 Jan 2022 07:03:16 +0000
ROA not before: Sat 01 Jan 2022 07:03:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39138
IP address blocks: 2001:678:f90::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27498892 (0x1a3998c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e51c193fb7ff1746a215c41817f50ecba5a581a
Validity
Not Before: Jan 1 07:03:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d76e5edb8f094490922a8aa501ef0ea633c4666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:60:5e:b6:1b:31:5e:a2:c4:14:4e:21:d4:8d:
a6:40:5e:03:12:dd:4e:f4:59:c4:f4:19:3e:3a:c0:
24:52:74:26:d9:ff:4a:7a:41:53:e1:5c:87:73:97:
df:8b:61:51:60:42:7d:2f:bf:74:db:e8:40:fc:68:
df:11:5b:ae:49:31:ae:22:7b:b1:39:66:76:2c:6f:
59:06:cc:41:78:74:fc:22:1c:9e:84:da:dc:ca:e8:
9b:a6:74:f9:e6:d2:1c:0c:47:95:52:b0:f8:0c:2a:
99:43:00:c1:f0:48:e2:54:e3:97:45:a1:6c:14:0d:
d5:67:07:82:53:1d:cd:82:4b:98:c9:f5:df:27:64:
a5:ba:0e:48:45:80:c1:17:18:47:ef:32:3d:ef:92:
8e:9e:54:fb:bf:15:77:94:d8:ef:d7:a7:e4:f7:d7:
05:f8:d3:6c:e2:f3:4f:3f:df:2d:c3:de:57:19:42:
2c:57:fd:9a:14:91:4a:80:fc:e7:fb:17:ee:f3:72:
9d:8c:e2:c3:cc:e4:c8:e4:3e:ec:5a:40:c1:0b:e4:
37:05:ca:10:07:66:af:34:ea:46:7c:41:0a:3c:6c:
2e:c5:d6:a5:fe:87:03:fc:7f:c5:be:93:17:f9:f3:
50:4f:a5:e7:c3:f1:e2:8c:1c:6c:4f:6a:fc:39:47:
88:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:76:E5:ED:B8:F0:94:49:09:22:A8:AA:50:1E:F0:EA:63:3C:46:66
X509v3 Authority Key Identifier:
keyid:5E:51:C1:93:FB:7F:F1:74:6A:21:5C:41:81:7F:50:EC:BA:5A:58:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlHBk_t_8XRqIVxBgX9Q7LpaWBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b8072f-f355-4dd6-9393-6a65d8041803/1/HXbl7bjwlEkJIqiqUB7w6mM8RmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b8072f-f355-4dd6-9393-6a65d8041803/1/XlHBk_t_8XRqIVxBgX9Q7LpaWBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f90::/48
Signature Algorithm: sha256WithRSAEncryption
06:66:80:a0:2f:62:53:93:b9:81:31:5b:0c:e8:66:ba:f6:d5:
7e:b5:bd:3b:22:54:00:80:ff:43:db:68:06:26:ed:ee:5d:55:
58:52:22:da:4e:40:d8:34:16:3f:11:ab:16:12:61:05:22:1f:
c8:f8:90:2f:10:fc:9a:c1:fb:73:a8:2b:9f:be:b0:87:fd:56:
dd:82:92:05:f2:9c:be:2a:2b:f3:8f:df:5a:1f:8b:31:37:2c:
73:cc:ba:18:27:b4:aa:17:e8:f4:36:70:5e:0b:05:1e:4f:3c:
bf:45:fb:29:d2:98:d8:69:3f:6e:17:8f:e2:42:b9:00:70:8b:
ee:5b:93:f0:1a:0d:0d:76:2b:6f:af:2e:71:bd:8a:f1:3b:ae:
5b:a1:15:19:6d:2a:0a:f1:0d:69:9e:06:a4:f5:e6:b9:7d:72:
1c:38:af:8f:7d:d1:9f:11:cb:12:41:16:09:3a:53:87:88:c8:
14:aa:d0:be:05:8f:af:fa:a1:af:76:11:85:52:72:0a:52:9b:
62:5c:93:6f:24:cb:e1:e4:10:7c:ed:29:d4:79:94:52:dc:44:
bc:34:44:3e:ab:1c:73:92:b2:7c:a2:f4:48:a0:c6:a2:66:54:
e7:7e:17:4d:87:9b:15:4a:eb:2e:d7:6c:77:26:a2:16:5b:7e:
b8:dc:94:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:32 2023 by rpki-client on console-ams.rpki-client.org