Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/HaHrdO-5AtEcgoEb5qOjEYJXDq4.roa
File: HaHrdO-5AtEcgoEb5qOjEYJXDq4.roa (raw, json)
Hash identifier: hoIQaUD4FTn/zu6SME89AXl4We45AyhSSKk69NQWCoM=
Subject key identifier: 1D:A1:EB:74:EF:B9:02:D1:1C:82:81:1B:E6:A3:A3:11:82:57:0E:AE
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 38A6BE5F
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/HaHrdO-5AtEcgoEb5qOjEYJXDq4.roa
Signing time: Tue 17 May 2022 05:23:33 +0000
ROA not before: Tue 17 May 2022 05:23:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47453
IP address blocks: 85.118.94.0/24 maxlen: 24
85.118.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 950451807 (0x38a6be5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: May 17 05:23:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1da1eb74efb902d11c82811be6a3a31182570eae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d2:67:25:d4:a5:77:53:e0:a3:fb:5a:d1:bf:
f1:75:f4:ac:24:ad:7e:81:29:ce:41:49:69:8e:eb:
6b:dd:3f:40:82:ae:46:46:cd:39:40:15:2e:27:66:
d7:d9:59:eb:e6:ac:29:d3:e8:07:4e:9d:a8:6d:75:
17:0a:50:19:79:f8:ca:25:ba:6f:33:ca:b9:47:c3:
84:85:40:bb:10:bd:2f:40:c3:dc:b0:9f:de:cd:df:
2f:35:47:70:22:1f:ba:e1:6d:23:3f:64:8b:7a:e6:
c9:d2:43:7a:5e:77:00:79:82:4f:74:53:6f:52:dd:
91:72:d2:ea:6a:8d:ac:dc:44:88:d9:12:a4:fc:b7:
85:f6:f4:0f:43:42:c6:6e:9b:ac:db:39:a6:3c:a8:
76:08:52:b4:b1:fd:2b:ef:18:47:21:0f:6b:ea:b3:
d9:70:d2:57:17:ea:ef:5b:54:28:1b:58:42:d8:54:
47:5b:08:a3:b0:f3:e3:8f:98:8f:59:67:6b:51:a1:
b0:b9:b2:1a:7c:6f:93:b2:57:73:12:7a:22:a2:5f:
ff:07:11:84:5d:af:8c:80:65:ac:77:e9:c9:f5:49:
0c:6f:96:8a:38:ea:ec:dd:c9:a8:cd:b5:e0:70:1c:
6f:41:5d:ae:c5:bb:f9:c9:cb:39:12:dd:0c:d1:c6:
43:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A1:EB:74:EF:B9:02:D1:1C:82:81:1B:E6:A3:A3:11:82:57:0E:AE
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/HaHrdO-5AtEcgoEb5qOjEYJXDq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.118.94.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:a3:31:8a:a3:d7:ce:a4:23:23:0d:a8:20:d1:04:97:26:50:
d5:00:21:97:e5:c1:f6:a8:b6:3d:7a:c5:24:ee:32:d1:2e:ea:
9a:b7:a7:4c:2e:bf:96:95:83:6c:66:50:5c:6c:52:59:10:26:
6c:65:90:7a:92:26:95:1d:21:f5:6f:5d:c7:07:e1:6f:9c:36:
51:b8:cc:bf:28:2e:85:a6:80:32:43:e9:7e:0a:49:32:d6:ad:
30:14:ca:b9:f9:54:0e:7c:8b:64:37:ed:83:0d:d3:c6:f4:70:
09:fc:87:48:11:4c:69:e7:95:09:5a:cc:74:29:e3:6f:07:ba:
2c:6c:17:57:73:44:88:58:cc:73:92:7e:a5:4b:1e:8e:83:24:
d6:ea:a2:c9:b5:f2:12:0f:ad:a5:af:77:ed:06:eb:c5:b6:8c:
5c:6b:2d:52:81:66:21:95:ad:72:ca:4a:09:8a:e4:58:cc:aa:
62:4d:2b:f3:c6:4b:d3:b8:57:17:1f:b4:d5:a1:d5:20:a7:5f:
5b:36:f4:57:fb:24:27:44:51:16:0b:7c:8e:bb:57:81:56:d1:
4c:fd:d6:48:ef:1a:75:8d:b5:d5:dc:bf:ec:9c:30:ab:ea:d7:
28:80:d4:49:66:95:26:bf:09:8b:50:5b:39:69:20:fb:5d:61:
43:15:a7:1b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOKa+XzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTQ4Y2VkZjE3MDI5ZWQ5OGExMDgxMTNjNmMxMDllY2FjY2Q4MmVjMB4XDTIyMDUx
NzA1MjMzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWRhMWViNzRlZmI5
MDJkMTFjODI4MTFiZTZhM2EzMTE4MjU3MGVhZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM/SZyXUpXdT4KP7WtG/8XX0rCStfoEpzkFJaY7ra90/QIKu
RkbNOUAVLidm19lZ6+asKdPoB06dqG11FwpQGXn4yiW6bzPKuUfDhIVAuxC9L0DD
3LCf3s3fLzVHcCIfuuFtIz9ki3rmydJDel53AHmCT3RTb1LdkXLS6mqNrNxEiNkS
pPy3hfb0D0NCxm6brNs5pjyodghStLH9K+8YRyEPa+qz2XDSVxfq71tUKBtYQthU
R1sIo7Dz44+Yj1lna1GhsLmyGnxvk7JXcxJ6IqJf/wcRhF2vjIBlrHfpyfVJDG+W
ijjq7N3JqM214HAcb0FdrsW7+cnLORLdDNHGQ8UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQdoet077kC0RyCgRvmo6MRglcOrjAfBgNVHSMEGDAWgBQFSM7fFwKe2YoQ
gRPGwQnsrM2C7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JVak8zeGNDbnRtS0VJRVR4c0VKN0t6Tmd1dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDkvNTQxYzA1LThkN2QtNDJiOC1hYjAwLTdmYmJhZTZmOTQzNy8x
L0hhSHJkTy01QXRFY2dvRWI1cU9qRVlKWERxNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkv
NTQxYzA1LThkN2QtNDJiOC1hYjAwLTdmYmJhZTZmOTQzNy8xL0JVak8zeGNDbnRt
S0VJRVR4c0VKN0t6Tmd1dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVV2XjANBgkqhkiG9w0BAQsFAAOC
AQEAW6MxiqPXzqQjIw2oINEElyZQ1QAhl+XB9qi2PXrFJO4y0S7qmrenTC6/lpWD
bGZQXGxSWRAmbGWQepImlR0h9W9dxwfhb5w2UbjMvyguhaaAMkPpfgpJMtatMBTK
uflUDnyLZDftgw3TxvRwCfyHSBFMaeeVCVrMdCnjbwe6LGwXV3NEiFjMc5J+pUse
joMk1uqiybXyEg+tpa937QbrxbaMXGstUoFmIZWtcspKCYrkWMyqYk0r88ZL07hX
Fx+01aHVIKdfWzb0V/skJ0RRFgt8jrtXgVbRTP3WSO8adY211dy/7Jwwq+rXKIDU
SWaVJr8Ji1BbOWkg+11hQxWnGw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:18 2023 by rpki-client on console-fra.rpki-client.org