Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/HqfpgEEnoayiD7__JOmDal6IHfA.roa
File: HqfpgEEnoayiD7__JOmDal6IHfA.roa (raw, json)
Hash identifier: EI1YFYR1Aj2e3ke6gv9h47EAt/HPK48e7g7Kaa6Ug2o=
Subject key identifier: 1E:A7:E9:80:41:27:A1:AC:A2:0F:BF:FF:24:E9:83:6A:5E:88:1D:F0
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C65F79D
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/HqfpgEEnoayiD7__JOmDal6IHfA.roa
Signing time: Sat 01 Jan 2022 01:02:30 +0000
ROA not before: Sat 01 Jan 2022 01:02:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42942
IP address blocks: 87.120.228.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 476444573 (0x1c65f79d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ea7e9804127a1aca20fbfff24e9836a5e881df0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7d:3b:14:76:97:69:92:00:63:f5:37:14:98:
90:10:d8:2c:92:5f:90:b4:11:57:e5:84:af:4c:86:
be:f4:18:a0:7b:e1:76:15:c0:77:14:48:55:8b:1e:
1e:8a:08:44:d6:86:de:47:73:0b:d8:b3:d3:07:84:
eb:81:6a:c5:b1:22:a5:a0:15:56:bb:c0:58:ab:60:
8a:2d:31:65:c2:66:28:d0:e1:04:77:3d:a5:94:aa:
ec:f3:d7:ae:07:ac:56:a8:c8:c2:10:72:65:99:68:
4f:73:4a:db:14:00:78:4d:88:6a:72:b8:25:28:e5:
29:89:6b:a8:a3:6d:8d:c5:cb:5b:c5:ac:40:c6:20:
2d:84:8c:96:a3:39:01:2d:7c:72:11:43:2b:9d:e1:
ea:40:d5:3c:c1:e4:3f:16:4f:dc:91:e6:89:e5:7c:
8a:85:f1:ab:b7:9d:b8:e1:77:ee:e6:d2:78:12:1d:
53:be:cd:89:53:2d:57:18:1a:ab:0f:b0:3a:1b:81:
3a:17:f2:7c:b3:89:3d:36:8a:a0:7d:12:71:21:bb:
78:5d:7c:d5:29:f7:9d:0a:26:39:72:90:0d:64:dd:
84:1c:81:27:07:08:0a:fc:e7:a6:c6:3b:cd:90:a2:
4d:f0:50:f0:94:56:4f:83:1a:82:78:e0:88:d4:0b:
90:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:A7:E9:80:41:27:A1:AC:A2:0F:BF:FF:24:E9:83:6A:5E:88:1D:F0
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/HqfpgEEnoayiD7__JOmDal6IHfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.228.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:4d:94:c4:fc:a8:76:5a:4e:b1:9d:f0:05:5d:44:81:fd:b4:
86:66:20:49:b1:f7:2c:22:b7:8b:aa:ae:8e:83:dc:79:76:f6:
a5:38:5f:38:37:36:65:c6:b9:7c:90:e5:1a:16:8f:ab:7b:4d:
0c:bb:39:ac:e9:01:7d:35:8a:de:9c:db:83:0c:85:bc:3d:52:
35:9f:de:77:c4:b6:a6:a4:de:c9:c7:5f:31:04:12:18:73:35:
a3:90:61:7f:ed:13:19:40:1d:d7:90:ef:70:35:aa:41:58:52:
f2:9e:63:90:6f:b4:51:0f:3d:9f:0e:90:59:1c:c1:d0:db:43:
50:a1:69:19:19:36:03:ba:82:81:c8:ed:dc:a3:fc:ee:18:00:
16:de:90:e3:12:c6:5c:16:c3:09:ef:b0:af:8c:26:2b:c2:eb:
72:e4:01:b7:6c:e0:79:20:dd:b9:4a:31:0c:b1:38:6a:76:5d:
b7:2a:20:13:d9:69:ec:a7:55:e8:00:ad:d1:70:9e:71:f1:4e:
86:8b:d0:2b:a2:84:6f:a0:78:1e:d9:d3:40:3f:cc:03:3a:c2:
00:d9:6e:14:4c:f4:b1:d8:16:ab:37:5c:b9:18:fd:ed:8c:88:
6c:2f:7e:41:e4:45:d4:7f:1e:83:ef:d1:59:db:f3:a5:ad:25:
44:b4:fd:42
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHGX3nTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MmM0YWMzZTNjNDNkNzBkMDUzNDljODE1YmFhZGQzOGFkNzc1ZTlkMB4XDTIyMDEw
MTAxMDIzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWVhN2U5ODA0MTI3
YTFhY2EyMGZiZmZmMjRlOTgzNmE1ZTg4MWRmMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALB9OxR2l2mSAGP1NxSYkBDYLJJfkLQRV+WEr0yGvvQYoHvh
dhXAdxRIVYseHooIRNaG3kdzC9iz0weE64FqxbEipaAVVrvAWKtgii0xZcJmKNDh
BHc9pZSq7PPXrgesVqjIwhByZZloT3NK2xQAeE2IanK4JSjlKYlrqKNtjcXLW8Ws
QMYgLYSMlqM5AS18chFDK53h6kDVPMHkPxZP3JHmieV8ioXxq7eduOF37ubSeBId
U77NiVMtVxgaqw+wOhuBOhfyfLOJPTaKoH0ScSG7eF181Sn3nQomOXKQDWTdhByB
JwcICvznpsY7zZCiTfBQ8JRWT4MagnjgiNQLkGcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQep+mAQSehrKIPv/8k6YNqXogd8DAfBgNVHSMEGDAWgBQixKw+PEPXDQU0
nIFbqt04rXdenTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lzU3NQanhEMXcwRk5KeUJXNnJkT0sxM1hwMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDMvOTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8x
L0hxZnBnRUVub2F5aUQ3X19KT21EYWw2SUhmQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMv
OTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8xL0lzU3NQanhEMXcw
Rk5KeUJXNnJkT0sxM1hwMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVd45DANBgkqhkiG9w0BAQsFAAOC
AQEAoE2UxPyodlpOsZ3wBV1Egf20hmYgSbH3LCK3i6qujoPceXb2pThfODc2Zca5
fJDlGhaPq3tNDLs5rOkBfTWK3pzbgwyFvD1SNZ/ed8S2pqTeycdfMQQSGHM1o5Bh
f+0TGUAd15DvcDWqQVhS8p5jkG+0UQ89nw6QWRzB0NtDUKFpGRk2A7qCgcjt3KP8
7hgAFt6Q4xLGXBbDCe+wr4wmK8LrcuQBt2zgeSDduUoxDLE4anZdtyogE9lp7KdV
6ACt0XCecfFOhovQK6KEb6B4HtnTQD/MAzrCANluFEz0sdgWqzdcuRj97YyIbC9+
QeRF1H8eg+/RWdvzpa0lRLT9Qg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:34 2023 by rpki-client on console-ams.rpki-client.org