Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/b69c6a-b788-4a1f-9c5d-c07fff746938/1/hhDAzLlPBq_2nouQkSb62271U5w.roa
File: hhDAzLlPBq_2nouQkSb62271U5w.roa (raw, json)
Hash identifier: yDbSshTW+xmAV9Ry4Tr7TfW0jzTsYmcXR8u306t4SWQ=
Subject key identifier: 86:10:C0:CC:B9:4F:06:AF:F6:9E:8B:90:91:26:FA:DB:6E:F5:53:9C
Certificate issuer: /CN=28dc81ea389dd6aac4efbc34d52d778eba7a7fc4
Certificate serial: 05898E9C
Authority key identifier: 28:DC:81:EA:38:9D:D6:AA:C4:EF:BC:34:D5:2D:77:8E:BA:7A:7F:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KNyB6jid1qrE77w01S13jrp6f8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/b69c6a-b788-4a1f-9c5d-c07fff746938/1/hhDAzLlPBq_2nouQkSb62271U5w.roa
Signing time: Sat 01 Jan 2022 07:02:24 +0000
ROA not before: Sat 01 Jan 2022 07:02:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61013
IP address blocks: 45.143.40.0/22 maxlen: 24
194.53.160.0/22 maxlen: 24
194.53.164.0/23 maxlen: 24
2001:67c:2828::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92901020 (0x5898e9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28dc81ea389dd6aac4efbc34d52d778eba7a7fc4
Validity
Not Before: Jan 1 07:02:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8610c0ccb94f06aff69e8b909126fadb6ef5539c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f7:0d:29:a3:73:60:af:fa:36:f0:dc:3c:cf:
63:be:83:cc:44:2b:4a:d9:56:de:26:6a:3a:6c:b4:
23:68:24:a9:b9:41:86:6f:33:1d:54:c8:e3:6e:e6:
95:c2:3d:0a:8f:c4:2d:e6:29:59:1f:62:c7:b4:46:
96:fa:b9:d3:f5:5e:5c:51:0c:3c:3b:a6:2c:2a:87:
93:cb:23:7d:e0:75:4c:2d:52:d0:94:f1:3e:df:0e:
66:cc:18:35:71:9d:e5:c3:49:07:3e:78:14:08:29:
e2:34:a0:38:a4:86:94:c0:59:42:ec:bc:9b:4c:fb:
9d:08:f2:87:22:bc:db:50:65:55:59:73:80:1e:d5:
6f:df:60:bd:9d:a9:15:ff:bb:95:3b:a9:80:14:c1:
f1:bb:9a:be:94:14:c5:18:06:05:76:4f:bf:3b:73:
fe:a9:2d:74:d2:73:b8:ae:51:d7:7a:dd:8c:a9:e0:
3e:f2:b3:57:14:6d:04:8b:00:45:52:01:90:ce:d5:
c3:ab:1d:2c:1c:c5:bd:d4:61:31:6a:c0:e9:eb:63:
aa:31:22:94:92:2f:f4:84:d7:e7:ed:1c:f7:a8:1e:
a1:a8:d5:d2:34:31:bc:0b:03:32:c8:0f:be:71:81:
25:37:4d:22:af:15:63:f2:87:3a:db:37:0c:8b:7b:
e4:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:10:C0:CC:B9:4F:06:AF:F6:9E:8B:90:91:26:FA:DB:6E:F5:53:9C
X509v3 Authority Key Identifier:
keyid:28:DC:81:EA:38:9D:D6:AA:C4:EF:BC:34:D5:2D:77:8E:BA:7A:7F:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KNyB6jid1qrE77w01S13jrp6f8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/b69c6a-b788-4a1f-9c5d-c07fff746938/1/hhDAzLlPBq_2nouQkSb62271U5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/b69c6a-b788-4a1f-9c5d-c07fff746938/1/KNyB6jid1qrE77w01S13jrp6f8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.40.0/22
194.53.160.0-194.53.165.255
IPv6:
2001:67c:2828::/48
Signature Algorithm: sha256WithRSAEncryption
1b:50:fd:07:50:fb:44:ea:19:fb:42:94:f4:6b:9d:47:2a:74:
4f:55:4e:73:01:9d:cf:6e:70:48:1d:ab:19:61:d3:ba:cb:43:
f3:be:dc:6a:bc:03:e9:93:ba:8c:20:b5:11:2e:f6:15:12:d6:
d8:b7:29:e5:bf:72:10:07:96:76:60:98:5a:20:24:10:1c:ce:
d7:16:c7:b5:a5:b8:f0:84:d0:24:f8:45:9d:4c:84:98:b9:ca:
a6:be:cd:14:f0:c5:4a:24:8c:af:20:aa:45:c0:d6:28:be:ab:
15:4a:2d:39:e0:8d:3c:6e:f3:23:d7:74:5b:b2:0b:ef:78:a7:
20:d3:f4:9d:c6:97:c9:af:17:20:2c:1f:ed:97:0d:92:8f:8c:
72:94:5f:2b:78:b7:02:e3:cc:a0:a8:85:a9:2d:05:f2:57:5c:
5f:1c:f1:87:1b:4c:e9:24:18:ea:5d:bd:59:67:3a:d8:3b:33:
a2:ee:fb:78:a1:a6:79:7a:dd:16:65:19:38:22:53:73:6a:6e:
5b:71:62:88:a8:5a:1f:ef:21:50:31:63:ed:8f:7d:c4:c0:c4:
2b:d0:e9:c7:a7:dc:6d:80:f8:92:0c:f1:e2:d3:50:88:37:cc:
d2:15:43:19:18:b1:a2:b9:ed:10:8b:36:33:68:b1:c6:bd:f1:
f5:ba:83:6f
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgIEBYmOnDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OGRjODFlYTM4OWRkNmFhYzRlZmJjMzRkNTJkNzc4ZWJhN2E3ZmM0MB4XDTIyMDEw
MTA3MDIyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODYxMGMwY2NiOTRm
MDZhZmY2OWU4YjkwOTEyNmZhZGI2ZWY1NTM5YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI33DSmjc2Cv+jbw3DzPY76DzEQrStlW3iZqOmy0I2gkqblB
hm8zHVTI427mlcI9Co/ELeYpWR9ix7RGlvq50/VeXFEMPDumLCqHk8sjfeB1TC1S
0JTxPt8OZswYNXGd5cNJBz54FAgp4jSgOKSGlMBZQuy8m0z7nQjyhyK821BlVVlz
gB7Vb99gvZ2pFf+7lTupgBTB8buavpQUxRgGBXZPvztz/qktdNJzuK5R13rdjKng
PvKzVxRtBIsARVIBkM7Vw6sdLBzFvdRhMWrA6etjqjEilJIv9ITX5+0c96geoajV
0jQxvAsDMsgPvnGBJTdNIq8VY/KHOts3DIt75GkCAwEAAaOCAigwggIkMB0GA1Ud
DgQWBBSGEMDMuU8Gr/aei5CRJvrbbvVTnDAfBgNVHSMEGDAWgBQo3IHqOJ3WqsTv
vDTVLXeOunp/xDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tOeUI2amlkMXFyRTc3dzAxUzEzanJwNmY4US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvYjY5YzZhLWI3ODgtNGExZi05YzVkLWMwN2ZmZjc0NjkzOC8x
L2hoREF6TGxQQnFfMm5vdVFrU2I2MjI3MVU1dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
YjY5YzZhLWI3ODgtNGExZi05YzVkLWMwN2ZmZjc0NjkzOC8xL0tOeUI2amlkMXFy
RTc3dzAxUzEzanJwNmY4US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA+
BggrBgEFBQcBBwEB/wQvMC0wGgQCAAEwFAMEAi2PKDAMAwQFwjWgAwQBwjWkMA8E
AgACMAkDBwAgAQZ8KCgwDQYJKoZIhvcNAQELBQADggEBABtQ/QdQ+0TqGftClPRr
nUcqdE9VTnMBnc9ucEgdqxlh07rLQ/O+3Gq8A+mTuowgtREu9hUS1ti3KeW/chAH
lnZgmFogJBAcztcWx7WluPCE0CT4RZ1MhJi5yqa+zRTwxUokjK8gqkXA1ii+qxVK
LTngjTxu8yPXdFuyC+94pyDT9J3Gl8mvFyAsH+2XDZKPjHKUXyt4twLjzKCohakt
BfJXXF8c8YcbTOkkGOpdvVlnOtg7M6Lu+3ihpnl63RZlGTgiU3NqbltxYoioWh/v
IVAxY+2PfcTAxCvQ6cen3G2A+JIM8eLTUIg3zNIVQxkYsaK57RCLNjNosca98fW6
g28=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:44 2024 by rpki-client on console-ams.rpki-client.org