Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/HOOGIYyo7CiuyO01m73cscIeQEY.roa
File: HOOGIYyo7CiuyO01m73cscIeQEY.roa (raw, json)
Hash identifier: kTgjzchKjHU+MQjfaHPiUsZCDvCUKfFk/rCzGl7IqWo=
Subject key identifier: 1C:E3:86:21:8C:A8:EC:28:AE:C8:ED:35:9B:BD:DC:B1:C2:1E:40:46
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 0182DC21AB770B2435CE83BD8D956C80B0C3
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/HOOGIYyo7CiuyO01m73cscIeQEY.roa
Signing time: Fri 26 Aug 2022 21:49:30 +0000
ROA not before: Fri 26 Aug 2022 21:49:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61424
IP address blocks: 94.131.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:dc:21:ab:77:0b:24:35:ce:83:bd:8d:95:6c:80:b0:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Aug 26 21:49:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ce386218ca8ec28aec8ed359bbddcb1c21e4046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b0:5d:4e:7e:52:49:45:bf:35:19:ae:db:25:
ed:bb:00:a5:fe:12:00:59:25:ea:f8:d1:a3:38:c8:
8b:35:ca:27:4c:35:7b:b8:43:3c:58:41:18:6f:78:
29:0e:d6:9e:8f:c5:d6:5f:1f:ab:af:a0:9c:17:29:
e0:a7:75:35:bc:a6:b0:fa:1b:d8:c5:f3:e5:58:20:
c4:38:be:1b:4a:d6:55:57:b0:f2:11:58:6a:8c:e6:
a3:66:d6:52:74:6e:cd:9c:60:e9:cf:23:8c:41:19:
da:fa:5f:4a:5f:b9:93:e6:09:e5:60:4a:84:35:d1:
3d:06:27:c0:27:5f:b6:7c:6c:fe:37:8f:46:14:22:
71:63:d8:c8:cc:00:8a:cc:bb:c2:73:4d:65:59:60:
3f:38:a8:48:a9:e6:23:63:52:8b:f7:09:ee:ad:65:
29:c2:ff:cf:13:6f:5d:bc:45:72:a0:b2:1d:71:8b:
b0:4d:41:8d:33:5b:ae:6c:d5:73:f4:26:6c:9b:fb:
34:ba:0a:b2:d8:63:79:4a:52:9b:24:5d:33:6e:36:
1d:c4:3c:95:d7:c0:aa:a3:4c:36:56:e1:43:d0:64:
fd:be:a0:47:7e:87:26:f1:ab:41:d3:12:e5:c4:4a:
61:11:a3:2f:93:06:d1:d1:a7:85:04:55:d3:22:94:
46:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:E3:86:21:8C:A8:EC:28:AE:C8:ED:35:9B:BD:DC:B1:C2:1E:40:46
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/HOOGIYyo7CiuyO01m73cscIeQEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.103.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:00:e3:bf:26:a5:16:94:4d:42:3a:70:40:81:49:50:7c:4b:
9e:83:57:a0:0b:0b:06:00:24:2f:66:5b:99:63:8f:d3:bf:16:
75:97:80:aa:09:65:c1:72:e8:c4:3c:0d:55:5e:76:c1:56:85:
9c:cc:1e:d5:45:d5:a4:e5:43:7e:ba:b6:f4:1b:99:b5:62:65:
85:c3:e8:67:cf:6a:fa:13:62:ae:7c:a2:22:53:90:fa:2f:da:
9c:79:3a:71:84:20:69:5a:1f:9e:61:b7:47:02:87:91:e9:09:
8c:fb:53:0b:a9:4f:d3:72:15:50:6d:bf:44:85:b8:40:45:7f:
b3:bb:c8:c5:5c:01:e5:d5:96:f6:bc:27:58:01:a5:36:36:53:
b4:b4:65:71:77:b1:a2:b5:16:a5:93:b8:5a:72:69:62:1f:3c:
66:78:a7:a3:53:b8:6b:81:68:c5:5c:13:86:5c:be:55:83:f4:
30:10:65:81:48:3b:a7:01:50:82:d5:f4:52:9b:26:65:1c:10:
44:b0:29:2d:5f:d8:85:1f:0b:25:a2:dc:ae:be:79:64:e5:97:
1d:0d:ed:2d:e9:af:58:9c:63:92:f6:c4:42:59:01:75:87:8a:
eb:20:c4:4e:72:af:38:0e:e9:3b:4e:f2:74:80:dc:f1:8d:0b:
97:b2:ec:38
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYLcIat3CyQ1zoO9jZVsgLDDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkNzQzZWQ2M2U4NjhlZjUwZjZkODRjMDAwM2E4MzQ4M2Zj
NjJhMDMwHhcNMjIwODI2MjE0OTMwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxY2UzODYyMThjYThlYzI4YWVjOGVkMzU5YmJkZGNiMWMyMWU0MDQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj7BdTn5SSUW/NRmu2yXtuwCl/hIA
WSXq+NGjOMiLNconTDV7uEM8WEEYb3gpDtaej8XWXx+rr6CcFyngp3U1vKaw+hvY
xfPlWCDEOL4bStZVV7DyEVhqjOajZtZSdG7NnGDpzyOMQRna+l9KX7mT5gnlYEqE
NdE9BifAJ1+2fGz+N49GFCJxY9jIzACKzLvCc01lWWA/OKhIqeYjY1KL9wnurWUp
wv/PE29dvEVyoLIdcYuwTUGNM1uubNVz9CZsm/s0ugqy2GN5SlKbJF0zbjYdxDyV
18Cqo0w2VuFD0GT9vqBHfocm8atB0xLlxEphEaMvkwbR0aeFBFXTIpRGwwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBzjhiGMqOworsjtNZu93LHCHkBGMB8GA1UdIwQY
MBaAFG10PtY+ho71D22EwAA6g0g/xioDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQt
ZTk3MjRhN2E2YmM4LzEvSE9PR0lZeW83Q2l1eU8wMW03M2NzY0llUUVZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQtZTk3MjRhN2E2YmM4
LzEvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXoNnMA0G
CSqGSIb3DQEBCwUAA4IBAQBLAOO/JqUWlE1COnBAgUlQfEueg1egCwsGACQvZluZ
Y4/TvxZ1l4CqCWXBcujEPA1VXnbBVoWczB7VRdWk5UN+urb0G5m1YmWFw+hnz2r6
E2KufKIiU5D6L9qceTpxhCBpWh+eYbdHAoeR6QmM+1MLqU/TchVQbb9EhbhARX+z
u8jFXAHl1Zb2vCdYAaU2NlO0tGVxd7GitRalk7hacmliHzxmeKejU7hrgWjFXBOG
XL5Vg/QwEGWBSDunAVCC1fRSmyZlHBBEsCktX9iFHwslotyuvnlk5ZcdDe0t6a9Y
nGOS9sRCWQF1h4rrIMROcq84Duk7TvJ0gNzxjQuXsuw4
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:06:14 2025 by rpki-client