Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/HlFVjqmf7JxIPkswZBX6DLrV76g.roa
File: HlFVjqmf7JxIPkswZBX6DLrV76g.roa (raw, json)
Hash identifier: zjH4LCF2RxhjUHGQM4o+MUoMHWpY/Me3H2XuUpnCqj8=
Subject key identifier: 1E:51:55:8E:A9:9F:EC:9C:48:3E:4B:30:64:15:FA:0C:BA:D5:EF:A8
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 0402964F
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/HlFVjqmf7JxIPkswZBX6DLrV76g.roa
Signing time: Wed 20 Apr 2022 09:42:54 +0000
ROA not before: Wed 20 Apr 2022 09:42:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62005
IP address blocks: 2a10:1fc0:2::/48 maxlen: 48
2a10:1fc0:5::/48 maxlen: 48
2a10:1fc0:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67278415 (0x402964f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: Apr 20 09:42:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e51558ea99fec9c483e4b306415fa0cbad5efa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ac:d2:37:ce:c6:cd:e4:40:4c:34:28:5d:a7:
77:e4:59:8f:ef:07:66:f7:76:2b:9b:8e:37:cb:87:
c4:0f:89:9f:c3:b5:97:23:ff:8e:1f:e5:07:7e:f3:
96:cc:2b:ef:29:83:4b:96:4d:04:44:75:e3:32:08:
c1:97:44:06:bc:e3:87:dc:33:06:47:38:2f:df:89:
d1:f4:2d:81:8a:0f:96:8d:67:dc:0d:2c:b5:bb:79:
06:0c:ac:92:a6:f0:ae:46:a1:c7:95:52:62:75:e2:
f8:d2:12:1e:51:28:f4:be:68:bf:58:59:30:2f:8c:
1d:43:49:3e:b9:2e:a8:18:13:5f:10:95:90:00:62:
13:8c:c7:43:fe:47:d0:45:f6:62:1e:a6:7f:45:2d:
c9:52:3b:23:71:bb:90:e0:25:1a:6e:2a:06:7d:ba:
41:0a:fe:15:bb:3a:98:94:5f:eb:92:b1:12:c7:64:
32:b9:b2:a8:c6:63:bd:08:61:db:47:21:44:06:9a:
35:d0:21:45:b4:20:40:bc:2a:48:22:d3:b0:6d:9d:
e2:f9:73:ce:06:98:34:8d:7f:93:d4:9a:50:dc:87:
ee:81:08:e2:98:67:c2:ca:0c:00:9f:bc:70:bc:04:
ca:13:ee:10:ce:7a:a1:2a:5a:90:32:e1:a0:83:f0:
2b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:51:55:8E:A9:9F:EC:9C:48:3E:4B:30:64:15:FA:0C:BA:D5:EF:A8
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/HlFVjqmf7JxIPkswZBX6DLrV76g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:1fc0:2::/47
2a10:1fc0:5::/48
Signature Algorithm: sha256WithRSAEncryption
76:30:d7:83:58:e8:35:76:eb:17:37:65:4d:e3:df:08:9c:66:
1c:85:ac:48:0a:23:71:06:ac:92:39:92:0f:6c:da:8d:5f:27:
69:87:eb:62:de:52:f4:97:df:98:0c:87:c7:e0:7a:8f:bc:06:
b4:b2:4b:d8:84:84:0c:51:bb:89:3f:b9:91:9f:6c:64:6c:fc:
62:b9:72:f1:22:4f:b1:06:55:c7:bb:c8:ff:04:f5:2e:ec:b9:
1f:ab:e3:a9:7e:5f:ba:46:69:81:17:ad:38:9c:dc:d9:f2:0f:
11:ba:65:1a:4e:72:77:98:0c:9d:90:a3:90:b8:31:ba:59:cb:
77:2c:a0:07:be:55:93:11:9b:cc:7f:db:18:14:6e:f9:99:67:
70:ad:2e:85:82:89:f2:df:b9:cb:d2:83:49:ed:bb:ca:33:8a:
1a:e3:a9:4e:19:24:48:de:3a:58:cd:46:e6:e9:d6:55:4a:0a:
d5:1b:83:f4:71:24:6f:85:84:62:1a:1d:b7:d7:f4:10:2d:ff:
08:95:b6:a5:4a:9d:78:a7:bf:b6:77:4d:46:d2:df:69:ae:70:
c6:6c:63:9d:c2:aa:c2:ce:c1:96:76:ec:d1:f7:4f:85:46:e6:
26:b3:6c:4c:de:3d:22:68:db:72:b2:70:28:59:2d:3e:9c:06:
88:f7:cd:ca
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEBAKWTzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NDczMjBkMDMwOTMwMTc4ZTZmN2NlZWY5MWQyYWI4Nzg0ZDNkYzE2MB4XDTIyMDQy
MDA5NDI1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWU1MTU1OGVhOTlm
ZWM5YzQ4M2U0YjMwNjQxNWZhMGNiYWQ1ZWZhODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALCs0jfOxs3kQEw0KF2nd+RZj+8HZvd2K5uON8uHxA+Jn8O1
lyP/jh/lB37zlswr7ymDS5ZNBER14zIIwZdEBrzjh9wzBkc4L9+J0fQtgYoPlo1n
3A0stbt5Bgyskqbwrkahx5VSYnXi+NISHlEo9L5ov1hZMC+MHUNJPrkuqBgTXxCV
kABiE4zHQ/5H0EX2Yh6mf0UtyVI7I3G7kOAlGm4qBn26QQr+Fbs6mJRf65KxEsdk
MrmyqMZjvQhh20chRAaaNdAhRbQgQLwqSCLTsG2d4vlzzgaYNI1/k9SaUNyH7oEI
4phnwsoMAJ+8cLwEyhPuEM56oSpakDLhoIPwKx0CAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBQeUVWOqZ/snEg+SzBkFfoMutXvqDAfBgNVHSMEGDAWgBSUcyDQMJMBeOb3
zu+R0quHhNPcFjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2xITWcwRENUQVhqbTk4N3ZrZEtyaDRUVDNCWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODQvODJlODc2LWM5OTctNDYwNS04N2FhLThhYzRhMjE5MzhiNC8x
L0hsRlZqcW1mN0p4SVBrc3daQlg2RExyVjc2Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODQv
ODJlODc2LWM5OTctNDYwNS04N2FhLThhYzRhMjE5MzhiNC8xL2xITWcwRENUQVhq
bTk4N3ZrZEtyaDRUVDNCWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAIwEgMHASoQH8AAAgMHACoQH8AABTANBgkq
hkiG9w0BAQsFAAOCAQEAdjDXg1joNXbrFzdlTePfCJxmHIWsSAojcQaskjmSD2za
jV8naYfrYt5S9JffmAyHx+B6j7wGtLJL2ISEDFG7iT+5kZ9sZGz8Yrly8SJPsQZV
x7vI/wT1Luy5H6vjqX5fukZpgRetOJzc2fIPEbplGk5yd5gMnZCjkLgxulnLdyyg
B75VkxGbzH/bGBRu+ZlncK0uhYKJ8t+5y9KDSe27yjOKGuOpThkkSN46WM1G5unW
VUoK1RuD9HEkb4WEYhodt9f0EC3/CJW2pUqdeKe/tndNRtLfaa5wxmxjncKqws7B
lnbs0fdPhUbmJrNsTN49ImjbcrJwKFktPpwGiPfNyg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:49 2023 by rpki-client on console-fra.rpki-client.org