Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/af8e9d-6c65-41fd-a755-b18d76b012e7/1/HXEXpVsHHNkrOhNZMNFjdQkG884.roa
File: HXEXpVsHHNkrOhNZMNFjdQkG884.roa (raw, json)
Hash identifier: vKB/sjPbv/q2eksaSOWkXU+6KXs30JrgHWhcwTiKfxg=
Subject key identifier: 1D:71:17:A5:5B:07:1C:D9:2B:3A:13:59:30:D1:63:75:09:06:F3:CE
Certificate issuer: /CN=a977820ea61b11b5b3859ab4a4bc7ec0a7b7388c
Certificate serial: 09A8517A
Authority key identifier: A9:77:82:0E:A6:1B:11:B5:B3:85:9A:B4:A4:BC:7E:C0:A7:B7:38:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qXeCDqYbEbWzhZq0pLx-wKe3OIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/af8e9d-6c65-41fd-a755-b18d76b012e7/1/HXEXpVsHHNkrOhNZMNFjdQkG884.roa
Signing time: Sat 01 Jan 2022 12:04:27 +0000
ROA not before: Sat 01 Jan 2022 12:04:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45007
IP address blocks: 185.230.4.0/22 maxlen: 22
185.230.4.0/23 maxlen: 23
77.220.196.0/22 maxlen: 22
185.230.6.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162025850 (0x9a8517a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a977820ea61b11b5b3859ab4a4bc7ec0a7b7388c
Validity
Not Before: Jan 1 12:04:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d7117a55b071cd92b3a135930d163750906f3ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b4:4c:dd:e1:e9:38:d5:aa:98:bf:22:90:e4:
01:1d:52:c4:49:ab:79:d3:77:ba:7c:30:aa:de:f3:
f7:96:ca:46:82:06:a9:bc:21:cc:56:b8:ce:4c:6a:
53:83:52:4d:21:c2:22:33:25:f8:db:b8:59:59:47:
69:ee:56:50:88:af:db:d6:cf:e4:63:ed:88:c3:a1:
f9:48:bb:5b:72:af:43:56:23:5d:01:13:1d:37:94:
04:ba:c2:6a:ea:ca:c3:50:ff:14:b7:9b:05:6a:8a:
5b:86:31:dc:cd:9a:09:2c:a3:e9:bb:d3:9f:02:5c:
34:e2:c0:a0:ae:00:28:b4:76:33:45:06:08:b4:fb:
92:32:bd:5c:9a:7b:b5:4f:e6:45:3a:4c:37:8c:81:
e0:e7:8c:e6:61:b6:12:65:8f:69:a3:80:83:be:79:
a8:d5:89:df:dd:f2:60:53:b1:62:68:30:03:7a:32:
3d:4b:6b:37:57:fd:d3:ac:04:a1:09:40:6b:39:eb:
33:80:3c:aa:0a:09:e4:d4:12:9d:40:cd:95:cf:9d:
c5:0e:a9:ae:03:2f:99:1d:ff:8b:c1:2c:a2:12:c0:
36:c2:d9:41:06:b2:68:fc:f3:1c:d5:da:8e:8d:63:
ef:ec:06:a7:10:ee:59:73:73:59:dd:51:98:d3:46:
06:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:71:17:A5:5B:07:1C:D9:2B:3A:13:59:30:D1:63:75:09:06:F3:CE
X509v3 Authority Key Identifier:
keyid:A9:77:82:0E:A6:1B:11:B5:B3:85:9A:B4:A4:BC:7E:C0:A7:B7:38:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qXeCDqYbEbWzhZq0pLx-wKe3OIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/af8e9d-6c65-41fd-a755-b18d76b012e7/1/HXEXpVsHHNkrOhNZMNFjdQkG884.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/af8e9d-6c65-41fd-a755-b18d76b012e7/1/qXeCDqYbEbWzhZq0pLx-wKe3OIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.220.196.0/22
185.230.4.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:b6:f4:91:f5:e1:cd:59:14:38:f1:23:99:9a:f4:3d:12:84:
e1:f8:35:26:07:d8:7f:d9:b0:dc:a3:a5:5e:e2:cf:c5:14:01:
f4:8d:c1:3e:38:95:82:4b:4a:a8:b3:7a:6c:f3:e8:3c:ab:78:
7d:1b:1b:35:53:6d:d6:8d:61:d0:f9:a4:0e:d2:5b:10:90:4f:
3b:2f:55:18:83:d6:b8:ce:d5:36:2f:96:31:12:f7:3f:1b:ed:
b8:d5:42:09:5c:68:cd:96:05:8b:a6:a0:33:42:35:71:6a:af:
6e:1d:af:80:aa:7d:07:b1:ea:64:ff:b6:f7:63:7f:63:47:ac:
f9:82:ed:51:58:5b:3f:dd:b2:7d:51:59:22:6a:86:4d:35:ee:
5d:45:69:90:52:24:ad:66:33:91:58:9a:20:91:aa:5b:9c:9e:
31:45:f7:9e:9e:67:c2:7b:68:0a:2b:85:af:35:e8:66:0a:45:
31:d1:58:a6:96:04:89:cb:dc:15:b9:bb:53:da:28:44:ff:87:
66:25:e6:be:f0:6d:01:e2:a5:12:46:ba:77:68:58:15:bf:82:
2b:91:89:95:73:84:07:8d:f5:2a:5d:0a:72:1b:1c:b4:4e:a4:
f2:a6:b9:eb:67:d0:b8:b6:99:74:4c:76:85:ee:b8:b9:0a:7a:
0e:cd:70:05
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECahRejANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
OTc3ODIwZWE2MWIxMWI1YjM4NTlhYjRhNGJjN2VjMGE3YjczODhjMB4XDTIyMDEw
MTEyMDQyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWQ3MTE3YTU1YjA3
MWNkOTJiM2ExMzU5MzBkMTYzNzUwOTA2ZjNjZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALe0TN3h6TjVqpi/IpDkAR1SxEmredN3unwwqt7z95bKRoIG
qbwhzFa4zkxqU4NSTSHCIjMl+Nu4WVlHae5WUIiv29bP5GPtiMOh+Ui7W3KvQ1Yj
XQETHTeUBLrCaurKw1D/FLebBWqKW4Yx3M2aCSyj6bvTnwJcNOLAoK4AKLR2M0UG
CLT7kjK9XJp7tU/mRTpMN4yB4OeM5mG2EmWPaaOAg755qNWJ393yYFOxYmgwA3oy
PUtrN1f906wEoQlAaznrM4A8qgoJ5NQSnUDNlc+dxQ6prgMvmR3/i8EsohLANsLZ
QQayaPzzHNXajo1j7+wGpxDuWXNzWd1RmNNGBu8CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQdcRelWwcc2Ss6E1kw0WN1CQbzzjAfBgNVHSMEGDAWgBSpd4IOphsRtbOF
mrSkvH7Ap7c4jDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3FYZUNEcVliRWJXemhacTBwTHgtd0tlM09Jdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDUvYWY4ZTlkLTZjNjUtNDFmZC1hNzU1LWIxOGQ3NmIwMTJlNy8x
L0hYRVhwVnNISE5rck9oTlpNTkZqZFFrRzg4NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDUv
YWY4ZTlkLTZjNjUtNDFmZC1hNzU1LWIxOGQ3NmIwMTJlNy8xL3FYZUNEcVliRWJX
emhacTBwTHgtd0tlM09Jdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAk3cxAMEArnmBDANBgkqhkiG9w0B
AQsFAAOCAQEAjrb0kfXhzVkUOPEjmZr0PRKE4fg1JgfYf9mw3KOlXuLPxRQB9I3B
PjiVgktKqLN6bPPoPKt4fRsbNVNt1o1h0PmkDtJbEJBPOy9VGIPWuM7VNi+WMRL3
PxvtuNVCCVxozZYFi6agM0I1cWqvbh2vgKp9B7HqZP+292N/Y0es+YLtUVhbP92y
fVFZImqGTTXuXUVpkFIkrWYzkViaIJGqW5yeMUX3np5nwntoCiuFrzXoZgpFMdFY
ppYEicvcFbm7U9ooRP+HZiXmvvBtAeKlEka6d2hYFb+CK5GJlXOEB431Kl0Kchsc
tE6k8qa562fQuLaZdEx2he64uQp6Ds1wBQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:00 2024 by rpki-client on console-ams.rpki-client.org