Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/hf6MdYOw-9I6HQydnbBTcx4Co7c.roa
File: hf6MdYOw-9I6HQydnbBTcx4Co7c.roa (raw, json)
Hash identifier: 6CjLwbZ9nmSoNdePwq8DIVtf0MirPRFEpuV0EQsGNtQ=
Subject key identifier: 85:FE:8C:75:83:B0:FB:D2:3A:1D:0C:9D:9D:B0:53:73:1E:02:A3:B7
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 0A0191DD
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/hf6MdYOw-9I6HQydnbBTcx4Co7c.roa
Signing time: Sat 01 Jan 2022 05:03:23 +0000
ROA not before: Sat 01 Jan 2022 05:03:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 141.98.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167875037 (0xa0191dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Jan 1 05:03:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85fe8c7583b0fbd23a1d0c9d9db053731e02a3b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:97:f3:b5:e7:69:d9:b4:7f:a6:d8:27:08:3f:
58:18:c7:f9:3c:92:02:f5:91:19:d5:05:0b:3c:e9:
d4:20:f8:9c:d0:43:42:e8:20:75:84:7e:95:a9:b5:
dc:09:0b:5c:45:39:9f:d7:fa:59:f7:c5:67:b2:2b:
69:50:17:42:bc:72:50:7e:30:7e:86:21:af:2c:8b:
bb:59:1f:37:4f:38:7f:6f:69:90:b5:17:2c:b5:f8:
a8:ee:80:8f:10:e6:1b:e9:1e:bc:c3:99:b8:60:fa:
86:87:54:df:bc:41:90:ad:4c:09:aa:a2:0a:16:25:
4d:6a:11:27:58:fd:dd:62:38:a5:f2:16:f6:9c:78:
48:03:2f:9d:d1:15:7b:4e:a4:56:53:b1:18:bd:5b:
1a:4e:21:d7:6c:a8:5c:2b:3d:b9:34:5a:2d:b1:d3:
84:8e:57:6b:46:34:1f:76:73:3a:71:98:dd:f7:f3:
21:86:e0:bd:ec:00:27:36:8e:fe:0b:0a:a8:f4:e8:
e5:b7:d9:d1:6c:10:e0:44:8c:f9:e0:16:59:16:b7:
af:4d:9f:fc:20:34:87:b4:fe:7c:af:e2:e8:a5:73:
11:cd:a4:02:1e:fc:ef:91:f2:c4:54:0f:f9:b3:9e:
78:1b:0a:8a:f2:e7:31:9b:12:f9:63:fb:75:8b:19:
66:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:FE:8C:75:83:B0:FB:D2:3A:1D:0C:9D:9D:B0:53:73:1E:02:A3:B7
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/hf6MdYOw-9I6HQydnbBTcx4Co7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.44.0/24
Signature Algorithm: sha256WithRSAEncryption
30:ea:c1:09:8e:9b:0a:83:02:c5:1f:4d:54:9f:ec:16:65:a8:
3b:08:dc:b6:89:c9:53:2d:a0:dc:de:74:cd:c9:6e:ae:2b:7a:
a7:ad:50:0b:f4:89:4f:92:27:50:26:c9:88:3e:f6:07:f4:37:
7a:25:41:9f:8d:d5:04:50:98:07:0e:82:77:bd:40:3a:69:d6:
d7:1b:0d:71:ff:0e:06:1a:55:96:13:52:1c:43:55:f3:39:7c:
39:b1:05:bc:72:d9:b0:ae:4c:94:3d:01:4d:2d:de:99:66:07:
04:c6:45:23:64:a8:e6:d5:6e:7b:33:21:78:c3:5d:be:d9:3d:
44:42:93:66:56:b0:f7:a7:4c:05:32:a2:18:b6:d5:b3:41:0d:
32:68:7a:c0:01:31:90:ff:28:58:f4:7b:d6:30:37:fa:38:42:
ba:dd:6e:00:4a:c3:32:ec:97:10:28:11:38:9a:eb:9b:0f:9b:
d5:49:76:f4:c2:51:12:99:d2:f6:7a:32:a9:6d:d5:2f:a4:5a:
53:28:a0:03:6f:4c:eb:cd:d0:9e:cb:49:14:60:65:30:0d:8d:
41:98:57:37:01:3e:2e:ef:0e:9c:42:73:f6:ec:23:0f:25:bc:
0d:2c:b3:ab:ca:a4:b6:65:45:51:3b:74:78:e6:3f:8d:a7:65:
18:31:a7:ae
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECgGR3TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MTRhYzYxMTYxNGRkMTY1ZDk0NTU3Mjk2ZWQ3ZWQ0NmM4ZmMwMjVmMB4XDTIyMDEw
MTA1MDMyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODVmZThjNzU4M2Iw
ZmJkMjNhMWQwYzlkOWRiMDUzNzMxZTAyYTNiNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAISX87Xnadm0f6bYJwg/WBjH+TySAvWRGdUFCzzp1CD4nNBD
QuggdYR+lam13AkLXEU5n9f6WffFZ7IraVAXQrxyUH4wfoYhryyLu1kfN084f29p
kLUXLLX4qO6AjxDmG+kevMOZuGD6hodU37xBkK1MCaqiChYlTWoRJ1j93WI4pfIW
9px4SAMvndEVe06kVlOxGL1bGk4h12yoXCs9uTRaLbHThI5Xa0Y0H3ZzOnGY3ffz
IYbgvewAJzaO/gsKqPTo5bfZ0WwQ4ESM+eAWWRa3r02f/CA0h7T+fK/i6KVzEc2k
Ah7875HyxFQP+bOeeBsKivLnMZsS+WP7dYsZZkMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSF/ox1g7D70jodDJ2dsFNzHgKjtzAfBgNVHSMEGDAWgBThSsYRYU3RZdlF
Vylu1+1GyPwCXzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRVckdFV0ZOMFdYWlJWY3BidGZ0UnNqOEFsOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWEvNmU3OWI4LTJiOGYtNGVjYy05YTZlLTcwZTg5OGJiMzhkZC8x
L2hmNk1kWU93LTlJNkhReWRuYkJUY3g0Q283Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEv
NmU3OWI4LTJiOGYtNGVjYy05YTZlLTcwZTg5OGJiMzhkZC8xLzRVckdFV0ZOMFdY
WlJWY3BidGZ0UnNqOEFsOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAI1iLDANBgkqhkiG9w0BAQsFAAOC
AQEAMOrBCY6bCoMCxR9NVJ/sFmWoOwjctonJUy2g3N50zclurit6p61QC/SJT5In
UCbJiD72B/Q3eiVBn43VBFCYBw6Cd71AOmnW1xsNcf8OBhpVlhNSHENV8zl8ObEF
vHLZsK5MlD0BTS3emWYHBMZFI2So5tVuezMheMNdvtk9REKTZlaw96dMBTKiGLbV
s0ENMmh6wAExkP8oWPR71jA3+jhCut1uAErDMuyXECgROJrrmw+b1Ul29MJREpnS
9noyqW3VL6RaUyigA29M683QnstJFGBlMA2NQZhXNwE+Lu8OnEJz9uwjDyW8DSyz
q8qktmVFUTt0eOY/jadlGDGnrg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:59 2024 by rpki-client on console-fra.rpki-client.org