Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/HRy4wAi9wSIIV5eNq1V6qgyDRHA.roa
File: HRy4wAi9wSIIV5eNq1V6qgyDRHA.roa (raw, json)
Hash identifier: TOm5U1fPLescU7hAMrsZvJ7ZNzy1D89kqI+YG8VB8S0=
Subject key identifier: 1D:1C:B8:C0:08:BD:C1:22:08:57:97:8D:AB:55:7A:AA:0C:83:44:70
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 1D287CDC
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/HRy4wAi9wSIIV5eNq1V6qgyDRHA.roa
Signing time: Thu 19 May 2022 16:52:29 +0000
ROA not before: Thu 19 May 2022 16:52:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 109.72.124.0/22 maxlen: 22
109.72.120.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 489192668 (0x1d287cdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: May 19 16:52:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d1cb8c008bdc1220857978dab557aaa0c834470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3e:91:2d:ef:ae:7b:60:a0:17:e1:be:0b:fd:
06:9d:91:07:1a:5f:4a:6d:c4:25:f0:b1:ec:94:58:
47:b1:63:bf:2e:47:74:5c:5d:d1:e7:7e:38:98:36:
1a:d2:1b:87:f4:7e:f7:c8:03:0e:32:c7:6d:bf:ed:
31:85:13:df:f1:41:12:a5:95:56:3d:23:c7:7c:0f:
74:1b:b8:ed:e5:f0:e0:d0:92:08:a9:80:a3:1b:07:
cb:7f:e2:7f:5c:48:a1:6a:43:eb:9a:e6:35:6d:bf:
6a:e6:f5:de:ab:a9:f4:65:38:0c:70:2d:e1:88:88:
82:ae:4e:3b:21:26:90:b0:04:7a:17:4f:19:ff:47:
c2:c6:6d:eb:0a:d3:f8:62:59:43:c0:ed:ac:fe:14:
73:26:01:0b:ac:37:83:4d:10:05:60:ec:70:ec:7b:
70:57:2e:d9:e9:45:bb:85:d6:f8:9c:c5:0b:3c:68:
5e:ac:91:59:e0:99:64:0a:76:63:f4:04:a9:d4:92:
50:e4:6f:9f:1d:b3:0a:ab:e1:ab:32:49:90:41:7a:
44:5d:94:5a:fd:be:e9:c2:d6:fb:67:7e:52:04:bc:
2e:7b:2b:be:60:1e:47:79:1d:f9:30:f1:05:3a:02:
4b:da:ec:76:6d:dc:51:1d:6c:73:3d:ba:e2:dd:3d:
41:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:1C:B8:C0:08:BD:C1:22:08:57:97:8D:AB:55:7A:AA:0C:83:44:70
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/HRy4wAi9wSIIV5eNq1V6qgyDRHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.120.0/23
109.72.124.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:67:88:21:c2:19:97:e7:0c:24:8f:60:da:af:47:b3:a6:b2:
d0:f9:3e:76:c0:16:0e:bb:af:e9:32:10:1a:b8:8e:9c:a0:78:
0b:8a:7a:14:5f:e2:99:5f:7e:07:e4:00:fc:92:22:95:7a:2b:
0a:d8:56:5f:d4:0b:a2:45:cf:a0:c6:59:e0:45:12:3d:79:71:
6c:28:88:59:6a:61:d8:fc:02:43:3b:ba:0a:2c:96:e1:f5:49:
b8:1e:f6:9e:78:63:75:bf:b1:a8:80:cf:bc:37:cf:01:15:92:
c5:08:56:7c:23:ee:ec:79:15:0b:66:25:62:78:7f:ad:e9:7d:
40:99:12:ee:7b:a6:e5:f1:b0:1b:47:4c:5b:b0:02:d6:d3:c2:
39:fa:de:b2:f3:b0:33:d3:7b:06:04:cd:f7:43:59:2b:c1:e0:
3c:5b:be:00:6a:cf:4d:89:70:c4:95:ef:54:21:75:22:6f:d5:
df:11:d8:9a:a8:d4:b6:ea:1b:5e:e5:cf:76:21:74:0d:2f:50:
f7:75:c5:6f:04:ab:d6:b0:cc:42:10:54:4b:ca:c7:3b:bb:d5:
4b:e8:d8:73:db:78:52:7a:9c:92:5a:aa:be:81:24:51:ad:a4:
e7:89:41:6a:87:b8:c8:29:88:46:8b:75:62:f3:78:3a:c8:09:
ff:6c:80:91
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEHSh83DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ODJjZjgwOWMwZTNlOGU1NTUyZjlkMGRkMmUyN2UwZGQyZDhkYWJlMB4XDTIyMDUx
OTE2NTIyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWQxY2I4YzAwOGJk
YzEyMjA4NTc5NzhkYWI1NTdhYWEwYzgzNDQ3MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKY+kS3vrntgoBfhvgv9Bp2RBxpfSm3EJfCx7JRYR7Fjvy5H
dFxd0ed+OJg2GtIbh/R+98gDDjLHbb/tMYUT3/FBEqWVVj0jx3wPdBu47eXw4NCS
CKmAoxsHy3/if1xIoWpD65rmNW2/aub13qup9GU4DHAt4YiIgq5OOyEmkLAEehdP
Gf9HwsZt6wrT+GJZQ8DtrP4UcyYBC6w3g00QBWDscOx7cFcu2elFu4XW+JzFCzxo
XqyRWeCZZAp2Y/QEqdSSUORvnx2zCqvhqzJJkEF6RF2UWv2+6cLW+2d+UgS8Lnsr
vmAeR3kd+TDxBToCS9rsdm3cUR1scz264t09QRcCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQdHLjACL3BIghXl42rVXqqDINEcDAfBgNVHSMEGDAWgBSYLPgJwOPo5VUv
nQ3S4n4N0tjavjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21DejRDY0RqNk9WVkw1ME4wdUotRGRMWTJyNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2QvNjE2OGQ3LTk0NmMtNDU3NC05MWVhLTgyYWQxNDU1NWVhYS8x
L0hSeTR3QWk5d1NJSVY1ZU5xMVY2cWd5RFJIQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Qv
NjE2OGQ3LTk0NmMtNDU3NC05MWVhLTgyYWQxNDU1NWVhYS8xL21DejRDY0RqNk9W
Vkw1ME4wdUotRGRMWTJyNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAW1IeAMEAm1IfDANBgkqhkiG9w0B
AQsFAAOCAQEAnGeIIcIZl+cMJI9g2q9Hs6ay0Pk+dsAWDruv6TIQGriOnKB4C4p6
FF/imV9+B+QA/JIilXorCthWX9QLokXPoMZZ4EUSPXlxbCiIWWph2PwCQzu6CiyW
4fVJuB72nnhjdb+xqIDPvDfPARWSxQhWfCPu7HkVC2YlYnh/rel9QJkS7num5fGw
G0dMW7AC1tPCOfresvOwM9N7BgTN90NZK8HgPFu+AGrPTYlwxJXvVCF1Im/V3xHY
mqjUtuobXuXPdiF0DS9Q93XFbwSr1rDMQhBUS8rHO7vVS+jYc9t4UnqcklqqvoEk
Ua2k54lBaoe4yCmIRot1YvN4OsgJ/2yAkQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:45 2024 by rpki-client on console-ams.rpki-client.org