Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/H3u31jAcBcTfNJUXgVFPDgTVtmc.roa
File: H3u31jAcBcTfNJUXgVFPDgTVtmc.roa (raw, json)
Hash identifier: k7XYtvv6iVs9+1uWuhPuPlyHlfyprVJ3EO8qbLymino=
Subject key identifier: 1F:7B:B7:D6:30:1C:05:C4:DF:34:95:17:81:51:4F:0E:04:D5:B6:67
Certificate issuer: /CN=9759529dd3170645d76cf6ac0659506cc649ca90
Certificate serial: 03B05565
Authority key identifier: 97:59:52:9D:D3:17:06:45:D7:6C:F6:AC:06:59:50:6C:C6:49:CA:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l1lSndMXBkXXbPasBllQbMZJypA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/H3u31jAcBcTfNJUXgVFPDgTVtmc.roa
Signing time: Sat 01 Jan 2022 12:03:39 +0000
ROA not before: Sat 01 Jan 2022 12:03:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51191
IP address blocks: 185.169.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61887845 (0x3b05565)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9759529dd3170645d76cf6ac0659506cc649ca90
Validity
Not Before: Jan 1 12:03:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f7bb7d6301c05c4df34951781514f0e04d5b667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7d:69:04:7d:58:96:8f:fd:f3:13:0a:56:55:
66:80:ad:92:04:d5:29:d8:96:e0:bf:3f:97:6f:09:
98:3e:52:f9:ea:89:42:90:cf:13:e8:4a:e5:64:d1:
40:30:27:9e:d4:b3:c1:07:08:3a:d6:bd:99:cd:2f:
46:56:f4:6f:53:34:3c:27:6c:19:1e:92:d7:58:83:
26:2f:b7:f3:a0:7e:b1:70:44:16:b6:65:54:27:b8:
14:95:13:df:3e:b8:88:eb:58:67:c1:02:5e:cb:72:
47:40:7d:43:aa:07:9c:84:3e:92:47:6c:4d:1e:16:
a2:c2:af:ac:dd:dc:34:73:22:9a:b4:6d:d6:42:74:
8b:85:59:7b:0e:29:ab:75:d7:3c:26:c2:77:b6:79:
c9:5c:11:cd:d5:a0:48:cf:54:ff:97:53:6c:7c:f8:
84:d3:06:62:74:5a:66:cd:e9:dd:0d:88:c3:9b:c3:
9f:36:c2:03:76:38:9e:6f:26:dd:fd:2f:41:01:68:
b1:66:4a:69:54:fc:cd:44:7d:02:7d:78:b1:31:fe:
08:6c:13:06:5c:21:ec:95:31:78:fb:bd:8a:91:5e:
61:cf:29:f1:18:7a:ce:38:0e:88:f1:76:0a:f0:69:
49:44:7c:3e:b5:c5:fa:7e:e6:8c:e8:fd:e6:1c:7e:
b2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:7B:B7:D6:30:1C:05:C4:DF:34:95:17:81:51:4F:0E:04:D5:B6:67
X509v3 Authority Key Identifier:
keyid:97:59:52:9D:D3:17:06:45:D7:6C:F6:AC:06:59:50:6C:C6:49:CA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l1lSndMXBkXXbPasBllQbMZJypA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/H3u31jAcBcTfNJUXgVFPDgTVtmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/l1lSndMXBkXXbPasBllQbMZJypA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.24.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:03:57:c1:98:8a:d4:65:66:ff:d6:bf:6c:98:d4:af:a3:7b:
15:2c:96:8b:9e:ad:ef:a0:86:86:bc:1c:d4:97:f1:4f:14:64:
25:36:d6:e9:83:ce:eb:a3:6b:84:0d:38:02:11:d2:d5:4d:85:
54:c5:08:e9:71:70:b6:00:7f:a6:ec:6a:d1:0c:0f:84:16:57:
63:f8:94:31:ae:12:68:8d:16:7f:6a:b5:d6:65:ef:9b:ab:bd:
a5:15:7f:57:34:b9:b1:48:3e:aa:75:2a:4e:9a:18:ad:fa:31:
6d:6f:ea:cd:93:60:18:56:39:ed:9d:f6:9b:83:a3:e4:b3:14:
36:71:fb:ee:30:3f:13:05:20:1d:79:16:91:43:84:9d:71:b0:
db:3e:dc:35:72:fa:7c:e5:94:87:75:5b:19:b5:a0:c3:8c:f8:
7e:68:0b:63:91:79:00:7d:5b:3b:b1:56:16:72:1c:b3:24:23:
52:c9:29:04:37:4e:4e:41:86:d2:05:9b:7d:40:b7:90:41:12:
b7:1a:ad:a2:43:2a:d4:b8:64:0c:de:46:d8:cf:e1:4f:2f:1c:
c6:c2:35:2d:4e:25:cf:23:1e:cf:ad:a0:03:15:b7:48:e9:69:
98:b7:1d:1b:15:9f:f2:25:61:55:07:d9:fd:0c:df:87:cb:47:
72:c4:c0:33
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA7BVZTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NzU5NTI5ZGQzMTcwNjQ1ZDc2Y2Y2YWMwNjU5NTA2Y2M2NDljYTkwMB4XDTIyMDEw
MTEyMDMzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWY3YmI3ZDYzMDFj
MDVjNGRmMzQ5NTE3ODE1MTRmMGUwNGQ1YjY2NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKh9aQR9WJaP/fMTClZVZoCtkgTVKdiW4L8/l28JmD5S+eqJ
QpDPE+hK5WTRQDAnntSzwQcIOta9mc0vRlb0b1M0PCdsGR6S11iDJi+386B+sXBE
FrZlVCe4FJUT3z64iOtYZ8ECXstyR0B9Q6oHnIQ+kkdsTR4WosKvrN3cNHMimrRt
1kJ0i4VZew4pq3XXPCbCd7Z5yVwRzdWgSM9U/5dTbHz4hNMGYnRaZs3p3Q2Iw5vD
nzbCA3Y4nm8m3f0vQQFosWZKaVT8zUR9An14sTH+CGwTBlwh7JUxePu9ipFeYc8p
8Rh6zjgOiPF2CvBpSUR8PrXF+n7mjOj95hx+spkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQfe7fWMBwFxN80lReBUU8OBNW2ZzAfBgNVHSMEGDAWgBSXWVKd0xcGRdds
9qwGWVBsxknKkDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2wxbFNuZE1YQmtYWGJQYXNCbGxRYk1aSnlwQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTkvYTg2YTkxLTYzNTYtNGMyYy05ZjhmLWRlNGFjY2IwMGRkNy8x
L0gzdTMxakFjQmNUZk5KVVhnVkZQRGdUVnRtYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTkv
YTg2YTkxLTYzNTYtNGMyYy05ZjhmLWRlNGFjY2IwMGRkNy8xL2wxbFNuZE1YQmtY
WGJQYXNCbGxRYk1aSnlwQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmpGDANBgkqhkiG9w0BAQsFAAOC
AQEAWwNXwZiK1GVm/9a/bJjUr6N7FSyWi56t76CGhrwc1JfxTxRkJTbW6YPO66Nr
hA04AhHS1U2FVMUI6XFwtgB/puxq0QwPhBZXY/iUMa4SaI0Wf2q11mXvm6u9pRV/
VzS5sUg+qnUqTpoYrfoxbW/qzZNgGFY57Z32m4Oj5LMUNnH77jA/EwUgHXkWkUOE
nXGw2z7cNXL6fOWUh3VbGbWgw4z4fmgLY5F5AH1bO7FWFnIcsyQjUskpBDdOTkGG
0gWbfUC3kEEStxqtokMq1LhkDN5G2M/hTy8cxsI1LU4lzyMez62gAxW3SOlpmLcd
GxWf8iVhVQfZ/Qzfh8tHcsTAMw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:46 2023 by rpki-client on console-fra.rpki-client.org