Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/HGCC7K9eh_PB0zybbk8T4wR5jcI.roa
File: HGCC7K9eh_PB0zybbk8T4wR5jcI.roa (raw, json)
Hash identifier: GqWTnGDyjPMmD67+z/JWy/XEdH+FyaSUbutpAGr8Hjw=
Subject key identifier: 1C:60:82:EC:AF:5E:87:F3:C1:D3:3C:9B:6E:4F:13:E3:04:79:8D:C2
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0183A74B8871CEC16AE97DEF30DAAE99C64F
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/HGCC7K9eh_PB0zybbk8T4wR5jcI.roa
Signing time: Wed 05 Oct 2022 08:38:08 +0000
ROA not before: Wed 05 Oct 2022 08:38:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398127
IP address blocks: 45.133.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a7:4b:88:71:ce:c1:6a:e9:7d:ef:30:da:ae:99:c6:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Oct 5 08:38:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c6082ecaf5e87f3c1d33c9b6e4f13e304798dc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0c:6c:ba:86:ee:dd:45:12:03:eb:31:4a:ae:
da:1d:4d:44:9c:c6:12:69:d6:bc:df:29:5d:cb:07:
98:6b:b1:0b:82:c0:98:0b:ef:a4:4e:4c:f6:c7:fb:
7c:52:76:15:09:a1:27:94:fa:3b:b8:bd:12:3c:fd:
dd:dc:b8:03:aa:40:1d:71:33:c7:34:1b:c1:e6:b7:
94:93:f7:ed:8f:98:80:c3:4c:f9:11:d7:bb:f7:b4:
0c:dd:95:6c:c0:cd:da:78:26:44:fc:37:41:63:d0:
1f:b1:d5:d0:a5:c3:77:d0:ff:6d:79:9a:a8:ba:07:
f8:d3:9e:86:9d:e9:b4:79:b8:69:a3:3c:45:cb:cd:
74:e3:c9:06:c4:ea:ca:2e:37:ae:eb:3a:9d:1a:2e:
8a:60:d0:47:17:3a:33:1e:63:2c:21:73:4d:27:3c:
ee:24:db:7d:9c:dd:96:88:ee:48:ae:7c:e1:14:b9:
23:4d:a0:23:5c:73:97:95:28:b4:bb:e5:02:66:83:
70:14:dd:81:56:54:57:28:66:c4:f6:70:20:72:7f:
9e:62:be:49:6c:28:8d:15:21:db:03:49:d8:4c:28:
ac:4d:89:22:e2:2d:83:89:2a:b4:7a:4d:70:9a:e9:
c9:91:38:0e:a0:3d:e8:00:68:c3:7c:31:c4:89:b9:
4c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:60:82:EC:AF:5E:87:F3:C1:D3:3C:9B:6E:4F:13:E3:04:79:8D:C2
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/HGCC7K9eh_PB0zybbk8T4wR5jcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.74.0/24
Signature Algorithm: sha256WithRSAEncryption
36:05:a9:80:20:19:a1:83:ce:e9:31:f7:99:ab:f6:41:62:cd:
f1:96:50:c3:13:1d:e1:ef:c3:73:ff:7f:55:61:8d:16:73:8b:
e6:b3:54:6b:47:b8:e9:2c:c4:9d:18:93:70:b8:6c:78:d8:c0:
46:cf:04:61:da:fd:6a:a6:69:bd:c6:83:13:ec:df:ca:1a:9a:
f0:50:ad:67:8c:23:6a:b9:70:02:f7:b2:97:91:d9:f9:dc:83:
1a:9f:a4:82:6e:bb:99:07:a5:d8:f7:c9:7b:d8:4f:e4:fe:e2:
6d:03:3a:a1:1b:db:58:6b:51:36:2d:2e:eb:9e:18:1f:18:80:
50:49:34:af:9f:bd:c4:fa:4d:4f:b9:ca:d5:2e:2a:5d:44:38:
ca:77:71:17:57:89:aa:b1:55:eb:f4:38:e3:8a:bc:4a:c2:bd:
5c:31:c3:a8:4a:fb:8b:00:ea:22:f7:58:db:a2:02:5b:1c:2d:
9a:97:67:9d:37:38:f6:0b:a7:f4:23:76:bc:81:55:96:9a:67:
1f:9a:32:5e:a3:9c:a8:ac:4c:45:22:06:26:ac:9a:9a:e8:15:
36:55:5a:31:44:a4:cc:ef:ed:0e:3b:85:73:f4:56:3f:8d:47:
f8:27:de:f9:30:b4:54:54:eb:ed:1d:bd:f0:50:a7:51:24:5c:
eb:7a:44:f3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOnS4hxzsFq6X3vMNqumcZPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjIxMDA1MDgzODA4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYzYwODJlY2FmNWU4N2YzYzFkMzNjOWI2ZTRmMTNlMzA0Nzk4ZGMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwQxsuobu3UUSA+sxSq7aHU1EnMYS
ada83yldyweYa7ELgsCYC++kTkz2x/t8UnYVCaEnlPo7uL0SPP3d3LgDqkAdcTPH
NBvB5reUk/ftj5iAw0z5Ede797QM3ZVswM3aeCZE/DdBY9AfsdXQpcN30P9teZqo
ugf4056Gnem0ebhpozxFy81048kGxOrKLjeu6zqdGi6KYNBHFzozHmMsIXNNJzzu
JNt9nN2WiO5IrnzhFLkjTaAjXHOXlSi0u+UCZoNwFN2BVlRXKGbE9nAgcn+eYr5J
bCiNFSHbA0nYTCisTYki4i2DiSq0ek1wmunJkTgOoD3oAGjDfDHEiblMaQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBxgguyvXofzwdM8m25PE+MEeY3CMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvSEdDQzdLOWVoX1BCMHp5YmJrOFQ0d1I1amNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYVKMA0G
CSqGSIb3DQEBCwUAA4IBAQA2BamAIBmhg87pMfeZq/ZBYs3xllDDEx3h78Nz/39V
YY0Wc4vms1RrR7jpLMSdGJNwuGx42MBGzwRh2v1qpmm9xoMT7N/KGprwUK1njCNq
uXAC97KXkdn53IMan6SCbruZB6XY98l72E/k/uJtAzqhG9tYa1E2LS7rnhgfGIBQ
STSvn73E+k1PucrVLipdRDjKd3EXV4mqsVXr9DjjirxKwr1cMcOoSvuLAOoi91jb
ogJbHC2al2edNzj2C6f0I3a8gVWWmmcfmjJeo5yorExFIgYmrJqa6BU2VVoxRKTM
7+0OO4Vz9FY/jUf4J975MLRUVOvtHb3wUKdRJFzrekTz
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:30 2023 by rpki-client on console-fra.rpki-client.org