Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/H9QINI6GXv3_UlaV48_BCT-oqi8.roa
File: H9QINI6GXv3_UlaV48_BCT-oqi8.roa (raw, json)
Hash identifier: eql0zwwPZ61D+K0ayiWQ8LpbE1Zdj7wB1HAsAqK1Ccs=
Subject key identifier: 1F:D4:08:34:8E:86:5E:FD:FF:52:56:95:E3:CF:C1:09:3F:A8:AA:2F
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 0306F974
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/H9QINI6GXv3_UlaV48_BCT-oqi8.roa
Signing time: Sat 01 Jan 2022 02:00:36 +0000
ROA not before: Sat 01 Jan 2022 02:00:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59711
IP address blocks: 185.123.53.0/24 maxlen: 24
2a10:1fc0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50788724 (0x306f974)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: Jan 1 02:00:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fd408348e865efdff525695e3cfc1093fa8aa2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:09:fa:3d:e8:b8:ea:af:07:b8:e4:1f:6f:83:
00:f3:be:99:08:03:4c:68:48:2a:1d:f7:7f:9f:91:
b3:c3:45:b5:5b:ff:0f:64:e3:68:66:c9:eb:e2:9b:
64:ca:c3:dd:75:04:ce:08:6b:9d:1e:6f:88:f2:80:
96:b1:bb:2d:30:b2:9e:af:a5:13:c3:ee:f0:c1:99:
ee:46:fb:0f:04:7b:b3:7b:fc:c7:35:48:a5:12:09:
7c:ff:38:f7:d4:d4:71:71:f2:2d:0d:65:aa:b3:7b:
16:5d:9e:e1:e6:8d:9d:26:60:b4:8c:b5:ea:58:ca:
0a:bb:89:a5:d6:65:1b:07:29:0b:15:74:bd:67:26:
7c:6d:57:38:20:32:0c:88:af:ac:c8:20:48:f5:7b:
6d:31:2c:3b:99:01:f2:2d:75:26:5e:db:b3:2a:1e:
70:2e:de:4b:d2:82:55:b4:5c:c7:6a:4b:21:d3:df:
d8:ab:06:c1:87:3d:02:12:53:1e:42:0c:fa:c4:ea:
d6:7a:78:34:43:3e:d7:39:75:65:c6:31:2c:57:59:
f8:e7:c7:5e:92:3b:a7:35:da:f0:e7:fc:9e:02:d4:
61:49:52:b9:6f:88:f5:8c:4f:dd:bf:ee:89:d6:36:
e6:42:19:a2:cd:a6:bc:05:f4:45:e7:1d:55:55:f1:
36:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:D4:08:34:8E:86:5E:FD:FF:52:56:95:E3:CF:C1:09:3F:A8:AA:2F
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/H9QINI6GXv3_UlaV48_BCT-oqi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.123.53.0/24
IPv6:
2a10:1fc0:1::/48
Signature Algorithm: sha256WithRSAEncryption
b0:85:b7:7f:36:42:7f:61:18:27:6b:1e:d2:b2:ee:ee:28:66:
36:14:f8:b4:3c:9c:b7:04:0a:70:db:bc:3e:ac:98:31:ad:66:
95:83:78:8b:a5:e5:0c:7d:07:68:e4:79:bf:f8:ff:31:cb:54:
a6:7f:da:f1:83:ea:fb:4c:20:c5:82:b8:df:a8:8b:57:ff:65:
3e:94:a2:28:9d:dd:09:f7:7e:27:4b:f9:4e:14:b8:71:4d:9b:
1f:8b:aa:96:9b:de:de:13:50:db:e1:9e:7d:bb:90:f8:94:fd:
d5:72:33:7e:30:18:66:0c:c0:6d:2f:5b:2a:c5:2f:d9:1a:b2:
00:8d:29:f9:79:54:4a:bd:75:3e:3a:02:7a:c0:df:02:27:78:
32:1d:f3:04:d1:40:36:54:81:b3:2e:cd:51:06:15:37:ae:24:
72:69:e0:fc:78:e8:ef:f4:cb:d7:d4:a6:60:73:49:7b:bf:b5:
a4:86:25:75:e2:49:15:9a:27:5b:92:a2:29:a4:47:2e:4e:26:
7d:f2:70:d2:08:2e:4e:8f:c3:c0:cb:fb:1e:e6:d8:ac:4b:45:
ee:4c:81:37:86:13:7a:8b:1e:78:0b:c2:85:29:33:98:d7:45:
23:93:ee:db:5a:53:2a:6b:0d:58:c4:eb:a9:6e:5f:d4:b5:ba:
f2:fc:00:54
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEAwb5dDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NDczMjBkMDMwOTMwMTc4ZTZmN2NlZWY5MWQyYWI4Nzg0ZDNkYzE2MB4XDTIyMDEw
MTAyMDAzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWZkNDA4MzQ4ZTg2
NWVmZGZmNTI1Njk1ZTNjZmMxMDkzZmE4YWEyZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALQJ+j3ouOqvB7jkH2+DAPO+mQgDTGhIKh33f5+Rs8NFtVv/
D2TjaGbJ6+KbZMrD3XUEzghrnR5viPKAlrG7LTCynq+lE8Pu8MGZ7kb7DwR7s3v8
xzVIpRIJfP8499TUcXHyLQ1lqrN7Fl2e4eaNnSZgtIy16ljKCruJpdZlGwcpCxV0
vWcmfG1XOCAyDIivrMggSPV7bTEsO5kB8i11Jl7bsyoecC7eS9KCVbRcx2pLIdPf
2KsGwYc9AhJTHkIM+sTq1np4NEM+1zl1ZcYxLFdZ+OfHXpI7pzXa8Of8ngLUYUlS
uW+I9YxP3b/uidY25kIZos2mvAX0RecdVVXxNkUCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQf1Ag0joZe/f9SVpXjz8EJP6iqLzAfBgNVHSMEGDAWgBSUcyDQMJMBeOb3
zu+R0quHhNPcFjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2xITWcwRENUQVhqbTk4N3ZrZEtyaDRUVDNCWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODQvODJlODc2LWM5OTctNDYwNS04N2FhLThhYzRhMjE5MzhiNC8x
L0g5UUlOSTZHWHYzX1VsYVY0OF9CQ1Qtb3FpOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODQv
ODJlODc2LWM5OTctNDYwNS04N2FhLThhYzRhMjE5MzhiNC8xL2xITWcwRENUQVhq
bTk4N3ZrZEtyaDRUVDNCWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEALl7NTAPBAIAAjAJAwcAKhAfwAAB
MA0GCSqGSIb3DQEBCwUAA4IBAQCwhbd/NkJ/YRgnax7Ssu7uKGY2FPi0PJy3BApw
27w+rJgxrWaVg3iLpeUMfQdo5Hm/+P8xy1Smf9rxg+r7TCDFgrjfqItX/2U+lKIo
nd0J934nS/lOFLhxTZsfi6qWm97eE1Db4Z59u5D4lP3VcjN+MBhmDMBtL1sqxS/Z
GrIAjSn5eVRKvXU+OgJ6wN8CJ3gyHfME0UA2VIGzLs1RBhU3riRyaeD8eOjv9MvX
1KZgc0l7v7WkhiV14kkVmidbkqIppEcuTiZ98nDSCC5Oj8PAy/se5tisS0XuTIE3
hhN6ix54C8KFKTOY10Ujk+7bWlMqaw1YxOupbl/Utbry/ABU
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:26 2023 by rpki-client on console-ams.rpki-client.org