Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/hqlVuLwRAebyRgSbZ9b_i4zWe-w.roa
File: hqlVuLwRAebyRgSbZ9b_i4zWe-w.roa (raw, json)
Hash identifier: halhNgDf/5w2nPFEEZhLKegh1A7iA4VZPKbdv2lWjL8=
Subject key identifier: 86:A9:55:B8:BC:11:01:E6:F2:46:04:9B:67:D6:FF:8B:8C:D6:7B:EC
Certificate issuer: /CN=9f0743496c7ff3effb870601139cad9d2f271e10
Certificate serial: 0182E81F6AFCE028875547773919B5D7E0BA
Authority key identifier: 9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/hqlVuLwRAebyRgSbZ9b_i4zWe-w.roa
Signing time: Mon 29 Aug 2022 05:42:29 +0000
ROA not before: Mon 29 Aug 2022 05:42:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 157.97.122.0/24 maxlen: 24
62.100.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:e8:1f:6a:fc:e0:28:87:55:47:77:39:19:b5:d7:e0:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0743496c7ff3effb870601139cad9d2f271e10
Validity
Not Before: Aug 29 05:42:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86a955b8bc1101e6f246049b67d6ff8b8cd67bec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e8:92:95:a9:15:3a:97:48:29:39:62:82:01:
48:2c:25:ac:0b:1d:d2:20:6e:c0:f0:16:c2:de:76:
c8:c7:b8:8e:34:07:e8:41:ac:13:f1:74:dc:1d:2b:
c2:3c:ff:c4:5c:c7:03:6c:c6:36:61:4e:95:31:23:
c1:2a:9f:ef:ce:29:23:c6:2b:0e:ef:42:57:97:25:
f9:5e:b4:44:f5:99:4d:15:6e:f8:0a:68:bc:bf:b2:
17:14:68:92:ce:40:24:ee:94:e8:59:c5:f8:fc:a8:
5a:3c:a7:4b:0d:87:3e:a0:15:b1:49:9f:14:9e:f7:
55:7d:0c:3b:fa:b5:68:51:c4:56:2d:38:f1:34:45:
dc:74:a5:60:67:5d:de:b7:86:cc:7b:4c:ce:d9:df:
15:de:e2:01:9c:04:12:a1:43:a1:d5:23:9d:8d:ea:
92:05:a8:76:85:26:42:8c:cf:17:ef:48:0a:b4:21:
0a:4e:06:25:b7:e7:24:a1:35:f1:88:79:3e:0b:bc:
3d:5d:fb:96:ff:31:a8:e7:b1:05:dd:01:02:6d:2b:
6e:83:e0:60:4b:8c:df:94:4e:94:39:bd:6b:06:9a:
84:4f:ae:d3:39:16:5d:e5:09:9f:45:d4:93:a3:17:
8c:ab:76:4a:2b:27:85:49:c7:d5:36:ba:51:79:7e:
cd:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:A9:55:B8:BC:11:01:E6:F2:46:04:9B:67:D6:FF:8B:8C:D6:7B:EC
X509v3 Authority Key Identifier:
keyid:9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/hqlVuLwRAebyRgSbZ9b_i4zWe-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.100.209.0/24
157.97.122.0/24
Signature Algorithm: sha256WithRSAEncryption
30:d0:49:52:85:a1:93:f5:7f:09:4d:56:28:58:71:97:20:55:
af:d9:cd:4b:88:a0:2a:d2:97:d9:fe:b6:c0:bc:0c:d9:14:c8:
bb:56:13:86:68:43:4a:34:65:37:18:67:f1:36:f8:d8:24:05:
28:71:98:f7:bc:c9:f0:d0:73:cc:79:0e:07:a1:cc:1c:04:96:
4e:a9:a0:c4:88:55:7b:69:f7:3a:a1:f5:59:0d:ef:96:57:c0:
80:93:05:e0:d6:50:40:92:e9:1a:8c:ec:5a:20:f7:c7:5b:33:
83:4c:3c:ad:fd:c5:85:96:67:58:b3:db:aa:cc:02:2c:96:25:
f3:cf:28:68:fb:60:01:ad:fc:90:53:ed:77:de:2a:6a:5b:e9:
f6:fd:ad:91:40:2f:e7:94:87:01:42:ec:45:03:1a:1e:4c:6f:
4e:0f:c3:c8:6c:8a:d8:99:3e:a4:0a:bd:20:ca:45:4f:4d:83:
49:78:41:ed:0d:c8:88:19:2b:c4:a3:2e:9b:50:85:c5:b2:6c:
e3:fd:00:c6:5c:5a:3e:da:ca:0d:10:1f:95:78:2c:b8:b2:2b:
2e:86:7e:77:df:e7:db:60:9a:95:9d:ac:fd:68:86:ae:6e:98:
80:3a:e2:46:c4:d0:bf:7b:1a:8f:c4:20:0a:36:0e:39:83:ca:
36:47:9a:3d
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYLoH2r84CiHVUd3ORm11+C6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMDc0MzQ5NmM3ZmYzZWZmYjg3MDYwMTEzOWNhZDlkMmYy
NzFlMTAwHhcNMjIwODI5MDU0MjI5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NmE5NTViOGJjMTEwMWU2ZjI0NjA0OWI2N2Q2ZmY4YjhjZDY3YmVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoOiSlakVOpdIKTliggFILCWsCx3S
IG7A8BbC3nbIx7iONAfoQawT8XTcHSvCPP/EXMcDbMY2YU6VMSPBKp/vzikjxisO
70JXlyX5XrRE9ZlNFW74Cmi8v7IXFGiSzkAk7pToWcX4/KhaPKdLDYc+oBWxSZ8U
nvdVfQw7+rVoUcRWLTjxNEXcdKVgZ13et4bMe0zO2d8V3uIBnAQSoUOh1SOdjeqS
Bah2hSZCjM8X70gKtCEKTgYlt+ckoTXxiHk+C7w9XfuW/zGo57EF3QECbStug+Bg
S4zflE6UOb1rBpqET67TORZd5QmfRdSToxeMq3ZKKyeFScfVNrpReX7NmQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFIapVbi8EQHm8kYEm2fW/4uM1nvsMB8GA1UdIwQY
MBaAFJ8HQ0lsf/Pv+4cGAROcrZ0vJx4QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbndkRFNXeF84LV83aHdZQkU1eXRuUzhuSGhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS8yMmI3YWItZmMxMS00MDdhLWJkM2Mt
NjM0MTEzNjdkOTBhLzEvaHFsVnVMd1JBZWJ5UmdTYlo5Yl9pNHpXZS13LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS8yMmI3YWItZmMxMS00MDdhLWJkM2MtNjM0MTEzNjdkOTBh
LzEvbndkRFNXeF84LV83aHdZQkU1eXRuUzhuSGhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAPmTRAwQA
nWF6MA0GCSqGSIb3DQEBCwUAA4IBAQAw0ElShaGT9X8JTVYoWHGXIFWv2c1LiKAq
0pfZ/rbAvAzZFMi7VhOGaENKNGU3GGfxNvjYJAUocZj3vMnw0HPMeQ4HocwcBJZO
qaDEiFV7afc6ofVZDe+WV8CAkwXg1lBAkukajOxaIPfHWzODTDyt/cWFlmdYs9uq
zAIsliXzzyho+2ABrfyQU+133ipqW+n2/a2RQC/nlIcBQuxFAxoeTG9OD8PIbIrY
mT6kCr0gykVPTYNJeEHtDciIGSvEoy6bUIXFsmzj/QDGXFo+2soNEB+VeCy4sisu
hn533+fbYJqVnaz9aIaubpiAOuJGxNC/exqPxCAKNg45g8o2R5o9
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:00 2024 by rpki-client on console-ams.rpki-client.org