Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ed4da0-0647-446f-b065-db0dcc08f452/1/HwS94PSAY48CxNkBCCFKCBV8zes.roa
File: HwS94PSAY48CxNkBCCFKCBV8zes.roa (raw, json)
Hash identifier: vxnwbKtbVd0C87/GQgqBRN7t8rN+O4fQi3+6P+pHHmI=
Subject key identifier: 1F:04:BD:E0:F4:80:63:8F:02:C4:D9:01:08:21:4A:08:15:7C:CD:EB
Certificate issuer: /CN=66ef31adac663855b3ddd1931c44cf8064d6a6eb
Certificate serial: 0978D472
Authority key identifier: 66:EF:31:AD:AC:66:38:55:B3:DD:D1:93:1C:44:CF:80:64:D6:A6:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zu8xraxmOFWz3dGTHETPgGTWpus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ed4da0-0647-446f-b065-db0dcc08f452/1/HwS94PSAY48CxNkBCCFKCBV8zes.roa
Signing time: Mon 07 Feb 2022 13:34:31 +0000
ROA not before: Mon 07 Feb 2022 13:34:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 193.160.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158913650 (0x978d472)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ef31adac663855b3ddd1931c44cf8064d6a6eb
Validity
Not Before: Feb 7 13:34:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f04bde0f480638f02c4d90108214a08157ccdeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a3:97:80:c9:78:73:fc:d7:20:c8:03:93:47:
3d:67:c0:70:c6:91:7f:a0:f7:8a:ab:e3:f6:fa:de:
f0:86:2f:b9:92:17:e7:69:28:78:d5:24:63:22:68:
6d:0f:db:25:8a:47:4f:15:02:32:ea:2f:35:f9:2a:
0b:53:af:c2:ff:5f:f0:b9:7c:3e:92:6c:f2:8e:a2:
16:1e:4f:2d:57:72:07:c8:1b:3e:b6:9d:c4:cc:6b:
a4:dc:2f:39:aa:b3:10:5d:82:36:80:5e:e8:ac:d2:
67:30:f8:19:cd:29:bc:25:61:ab:df:47:71:f6:a7:
fc:a4:1d:46:6e:52:33:43:ec:56:1e:50:df:35:e3:
2f:3b:1f:19:96:fb:7d:ef:3f:a4:75:f5:2f:ec:b8:
42:a6:9e:46:40:8f:c6:76:65:25:c7:ea:81:9d:fb:
89:a3:cc:c2:18:6f:df:b0:77:3f:db:31:2a:f6:c0:
78:ee:27:0d:d3:e1:d5:bd:8a:b7:3c:8d:b7:a8:08:
0c:3c:23:fb:37:58:c4:54:8c:4c:02:e1:0c:30:24:
2f:1e:d9:9f:b3:84:e0:23:89:73:64:05:e6:79:31:
95:9a:d5:c7:1c:d7:79:dc:47:ef:68:4c:20:a0:80:
ff:a4:9c:fa:b0:c5:bc:b5:be:1f:e1:95:19:c4:3d:
70:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:04:BD:E0:F4:80:63:8F:02:C4:D9:01:08:21:4A:08:15:7C:CD:EB
X509v3 Authority Key Identifier:
keyid:66:EF:31:AD:AC:66:38:55:B3:DD:D1:93:1C:44:CF:80:64:D6:A6:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zu8xraxmOFWz3dGTHETPgGTWpus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ed4da0-0647-446f-b065-db0dcc08f452/1/HwS94PSAY48CxNkBCCFKCBV8zes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ed4da0-0647-446f-b065-db0dcc08f452/1/Zu8xraxmOFWz3dGTHETPgGTWpus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.154.0/24
Signature Algorithm: sha256WithRSAEncryption
25:5f:f2:64:46:ab:db:53:ab:c9:de:64:dc:da:b3:b4:60:2c:
5b:cf:d9:3e:86:eb:d3:75:18:8c:5f:42:b5:1d:03:3b:2c:76:
27:ae:06:7e:e5:96:6a:a8:5e:3e:a5:82:69:f6:7c:2b:66:3f:
e0:06:7e:d8:69:22:00:4b:42:bb:3f:e0:cf:86:62:45:6d:1b:
93:4b:77:a9:d9:b7:c9:92:6e:ae:d8:e8:78:d7:c7:ba:ae:b0:
0a:52:c8:1c:79:c4:6f:a1:3b:ff:d0:0c:34:f6:8b:29:58:eb:
f2:b9:2b:3d:47:5e:06:7c:ac:41:5c:b7:15:ae:27:09:a9:42:
51:0b:65:a3:56:4e:1d:78:a1:44:a1:9a:d8:3f:f6:5e:cf:db:
09:fc:45:36:50:22:01:eb:b9:1c:7d:74:e2:31:cb:ae:da:23:
32:c7:7d:ed:7e:80:b0:7f:cf:58:b9:56:7a:8f:36:71:7c:be:
4b:ea:8c:85:e3:bd:bb:b1:9c:2f:ae:43:cb:a8:f3:40:6e:6c:
0f:b7:21:a7:92:1f:c8:83:40:41:63:0a:c8:8f:b0:00:35:a4:
b0:c0:3e:2a:96:dc:f1:0b:76:49:08:ac:90:ac:59:ed:ab:3e:
c0:d0:b1:97:16:70:da:ba:f5:6f:e8:74:66:7d:1f:75:97:53:
8c:a4:ec:22
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECXjUcjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NmVmMzFhZGFjNjYzODU1YjNkZGQxOTMxYzQ0Y2Y4MDY0ZDZhNmViMB4XDTIyMDIw
NzEzMzQzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWYwNGJkZTBmNDgw
NjM4ZjAyYzRkOTAxMDgyMTRhMDgxNTdjY2RlYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALujl4DJeHP81yDIA5NHPWfAcMaRf6D3iqvj9vre8IYvuZIX
52koeNUkYyJobQ/bJYpHTxUCMuovNfkqC1Ovwv9f8Ll8PpJs8o6iFh5PLVdyB8gb
PradxMxrpNwvOaqzEF2CNoBe6KzSZzD4Gc0pvCVhq99Hcfan/KQdRm5SM0PsVh5Q
3zXjLzsfGZb7fe8/pHX1L+y4QqaeRkCPxnZlJcfqgZ37iaPMwhhv37B3P9sxKvbA
eO4nDdPh1b2KtzyNt6gIDDwj+zdYxFSMTALhDDAkLx7Zn7OE4COJc2QF5nkxlZrV
xxzXedxH72hMIKCA/6Sc+rDFvLW+H+GVGcQ9cPMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQfBL3g9IBjjwLE2QEIIUoIFXzN6zAfBgNVHSMEGDAWgBRm7zGtrGY4VbPd
0ZMcRM+AZNam6zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1p1OHhyYXhtT0ZXejNkR1RIRVRQZ0dUV3B1cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzQvZWQ0ZGEwLTA2NDctNDQ2Zi1iMDY1LWRiMGRjYzA4ZjQ1Mi8x
L0h3Uzk0UFNBWTQ4Q3hOa0JDQ0ZLQ0JWOHplcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQv
ZWQ0ZGEwLTA2NDctNDQ2Zi1iMDY1LWRiMGRjYzA4ZjQ1Mi8xL1p1OHhyYXhtT0ZX
ejNkR1RIRVRQZ0dUV3B1cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMGgmjANBgkqhkiG9w0BAQsFAAOC
AQEAJV/yZEar21Oryd5k3NqztGAsW8/ZPobr03UYjF9CtR0DOyx2J64GfuWWaqhe
PqWCafZ8K2Y/4AZ+2GkiAEtCuz/gz4ZiRW0bk0t3qdm3yZJurtjoeNfHuq6wClLI
HHnEb6E7/9AMNPaLKVjr8rkrPUdeBnysQVy3Fa4nCalCUQtlo1ZOHXihRKGa2D/2
Xs/bCfxFNlAiAeu5HH104jHLrtojMsd97X6AsH/PWLlWeo82cXy+S+qMheO9u7Gc
L65Dy6jzQG5sD7chp5IfyINAQWMKyI+wADWksMA+Kpbc8Qt2SQiskKxZ7as+wNCx
lxZw2rr1b+h0Zn0fdZdTjKTsIg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:00 2024 by rpki-client on console-ams.rpki-client.org