Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3bc707-76e7-4987-befa-981184dee131/1/HuZwOmaPpsyQ9dhHC6EfS8DojFA.roa
File: HuZwOmaPpsyQ9dhHC6EfS8DojFA.roa (raw, json)
Hash identifier: Py7o2/ozEVoAp62rDSf1X5pByGehHI1S5hUChX2Irgw=
Subject key identifier: 1E:E6:70:3A:66:8F:A6:CC:90:F5:D8:47:0B:A1:1F:4B:C0:E8:8C:50
Certificate issuer: /CN=d34fa6be3f5c38f4bb7e062b6707747f4961a048
Certificate serial: 0183368D4529BE6AEAE1D12AA53878E1C36D
Authority key identifier: D3:4F:A6:BE:3F:5C:38:F4:BB:7E:06:2B:67:07:74:7F:49:61:A0:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00-mvj9cOPS7fgYrZwd0f0lhoEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3bc707-76e7-4987-befa-981184dee131/1/HuZwOmaPpsyQ9dhHC6EfS8DojFA.roa
Signing time: Tue 13 Sep 2022 11:12:51 +0000
ROA not before: Tue 13 Sep 2022 11:12:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 2a11:9c80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:36:8d:45:29:be:6a:ea:e1:d1:2a:a5:38:78:e1:c3:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34fa6be3f5c38f4bb7e062b6707747f4961a048
Validity
Not Before: Sep 13 11:12:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ee6703a668fa6cc90f5d8470ba11f4bc0e88c50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:cd:ce:5f:af:d0:5f:67:ef:b5:34:2f:52:5a:
73:46:8e:8a:fb:9d:dc:de:2e:3a:19:ec:d2:c3:65:
b6:60:fc:61:11:ef:22:de:41:06:41:f0:e2:e0:b7:
e9:01:94:2e:26:f1:58:a6:8f:66:98:e5:0c:84:3a:
73:d3:70:0c:1d:b7:4a:06:6d:e2:83:46:4e:ae:86:
0f:70:75:fd:56:76:9f:b5:47:c9:85:83:c9:db:23:
dc:4b:8c:03:55:a0:7b:04:80:dc:05:1e:82:22:88:
08:bd:e0:2d:a1:b1:48:7f:47:6d:49:a9:af:d7:cd:
e9:eb:5e:1c:ec:35:c1:8a:23:ab:20:e6:3a:4e:fa:
4b:36:a9:33:fc:45:ed:bb:b6:af:c3:89:a5:a3:ab:
0a:84:7e:e0:88:46:85:3d:fd:3c:8a:25:1c:22:12:
3c:e8:c8:75:80:18:94:f7:cc:6b:7a:92:2c:13:f5:
36:86:6c:fe:db:3a:81:8c:b5:82:b8:7f:ed:9e:46:
7a:20:6f:d3:cc:9a:d0:5e:70:67:8d:f4:f7:75:1b:
ab:6e:42:58:1a:71:01:bf:f3:51:67:86:26:a5:cc:
c7:00:07:4d:ae:0a:cc:76:46:26:9a:26:12:67:e9:
c9:76:64:cd:56:73:f0:6b:bf:69:1c:33:6d:03:0e:
ff:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E6:70:3A:66:8F:A6:CC:90:F5:D8:47:0B:A1:1F:4B:C0:E8:8C:50
X509v3 Authority Key Identifier:
keyid:D3:4F:A6:BE:3F:5C:38:F4:BB:7E:06:2B:67:07:74:7F:49:61:A0:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00-mvj9cOPS7fgYrZwd0f0lhoEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3bc707-76e7-4987-befa-981184dee131/1/HuZwOmaPpsyQ9dhHC6EfS8DojFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3bc707-76e7-4987-befa-981184dee131/1/00-mvj9cOPS7fgYrZwd0f0lhoEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:9c80::/29
Signature Algorithm: sha256WithRSAEncryption
4a:09:4c:da:76:00:5e:0f:36:28:7c:7d:21:e9:98:65:34:5a:
c4:e6:cb:f5:1f:c1:87:ae:d1:f0:0d:a9:34:90:04:63:8b:66:
86:35:68:bd:d8:63:61:b7:0e:82:33:89:12:e5:9f:f5:27:2b:
ae:61:a7:1e:50:0e:37:07:2c:97:f7:97:20:e2:ad:24:f7:84:
99:04:72:b1:03:63:cb:06:60:ed:fe:da:5a:c4:a3:50:7d:f4:
25:2b:0d:12:e4:1b:b6:1b:0d:ac:1b:3c:28:58:4d:3b:f4:ea:
3e:a4:b0:1a:1f:7a:ff:d7:4f:47:a6:52:1f:1e:00:3a:e5:cb:
af:5e:8d:2b:22:ce:01:d7:03:19:5c:77:b3:6e:76:d4:14:fa:
4c:da:2f:c9:dc:d5:3c:83:30:8a:2a:ab:fb:95:5d:6a:41:f1:
5e:51:fb:c3:86:f8:18:76:09:f8:9e:68:48:08:d8:bb:2f:49:
40:51:2e:8c:05:d6:7d:ab:7e:2c:58:8b:89:c7:34:69:96:a7:
4a:c8:db:60:95:b6:79:c2:e6:21:a2:4c:62:83:ae:46:61:36:
4d:ca:13:24:4d:44:da:c0:7f:36:73:df:e7:dc:d2:93:21:a3:
26:88:61:75:c1:4f:09:01:cf:4e:44:60:0a:50:7b:f1:9f:9c:
17:79:06:94
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYM2jUUpvmrq4dEqpTh44cNtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNGZhNmJlM2Y1YzM4ZjRiYjdlMDYyYjY3MDc3NDdmNDk2
MWEwNDgwHhcNMjIwOTEzMTExMjUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZWU2NzAzYTY2OGZhNmNjOTBmNWQ4NDcwYmExMWY0YmMwZTg4YzUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAls3OX6/QX2fvtTQvUlpzRo6K+53c
3i46GezSw2W2YPxhEe8i3kEGQfDi4LfpAZQuJvFYpo9mmOUMhDpz03AMHbdKBm3i
g0ZOroYPcHX9VnaftUfJhYPJ2yPcS4wDVaB7BIDcBR6CIogIveAtobFIf0dtSamv
183p614c7DXBiiOrIOY6TvpLNqkz/EXtu7avw4mlo6sKhH7giEaFPf08iiUcIhI8
6Mh1gBiU98xrepIsE/U2hmz+2zqBjLWCuH/tnkZ6IG/TzJrQXnBnjfT3dRurbkJY
GnEBv/NRZ4YmpczHAAdNrgrMdkYmmiYSZ+nJdmTNVnPwa79pHDNtAw7/JwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFB7mcDpmj6bMkPXYRwuhH0vA6IxQMB8GA1UdIwQY
MBaAFNNPpr4/XDj0u34GK2cHdH9JYaBIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDAtbXZqOWNPUFM3ZmdZclp3ZDBmMGxob0VnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8zYmM3MDctNzZlNy00OTg3LWJlZmEt
OTgxMTg0ZGVlMTMxLzEvSHVad09tYVBwc3lROWRoSEM2RWZTOERvakZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8zYmM3MDctNzZlNy00OTg3LWJlZmEtOTgxMTg0ZGVlMTMx
LzEvMDAtbXZqOWNPUFM3ZmdZclp3ZDBmMGxob0VnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhGcgDAN
BgkqhkiG9w0BAQsFAAOCAQEASglM2nYAXg82KHx9IemYZTRaxObL9R/Bh67R8A2p
NJAEY4tmhjVovdhjYbcOgjOJEuWf9ScrrmGnHlAONwcsl/eXIOKtJPeEmQRysQNj
ywZg7f7aWsSjUH30JSsNEuQbthsNrBs8KFhNO/TqPqSwGh96/9dPR6ZSHx4AOuXL
r16NKyLOAdcDGVx3s2521BT6TNovydzVPIMwiiqr+5VdakHxXlH7w4b4GHYJ+J5o
SAjYuy9JQFEujAXWfat+LFiLicc0aZanSsjbYJW2ecLmIaJMYoOuRmE2TcoTJE1E
2sB/NnPf59zSkyGjJohhdcFPCQHPTkRgClB78Z+cF3kGlA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:54 2023 by rpki-client on console-fra.rpki-client.org