Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/ca6c80-03a1-4a4c-91cf-068b77e903a0/1/HaiqpP7AO0B8-DE27VGHOjLsOMs.roa
File: HaiqpP7AO0B8-DE27VGHOjLsOMs.roa (raw, json)
Hash identifier: sn1DGWrTg40h0OT1EbxA5qNXdA+hH6uP3O8w3nzigrc=
Subject key identifier: 1D:A8:AA:A4:FE:C0:3B:40:7C:F8:31:36:ED:51:87:3A:32:EC:38:CB
Certificate issuer: /CN=013c74132597162cdb2dd63760abd9971e30bf63
Certificate serial: 0182AB79BACB9AC854E4F3ACA72D00582317
Authority key identifier: 01:3C:74:13:25:97:16:2C:DB:2D:D6:37:60:AB:D9:97:1E:30:BF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ATx0EyWXFizbLdY3YKvZlx4wv2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/ca6c80-03a1-4a4c-91cf-068b77e903a0/1/HaiqpP7AO0B8-DE27VGHOjLsOMs.roa
Signing time: Wed 17 Aug 2022 11:04:17 +0000
ROA not before: Wed 17 Aug 2022 11:04:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212805
IP address blocks: 185.19.203.0/24 maxlen: 24
2a12:4740::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ab:79:ba:cb:9a:c8:54:e4:f3:ac:a7:2d:00:58:23:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=013c74132597162cdb2dd63760abd9971e30bf63
Validity
Not Before: Aug 17 11:04:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1da8aaa4fec03b407cf83136ed51873a32ec38cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f2:de:05:5f:55:39:10:fd:9c:23:2e:1a:ef:
f9:56:bc:7f:60:47:75:fa:62:26:ce:fa:e9:96:fb:
fe:f8:d7:23:61:91:26:d2:19:c5:a3:92:0f:a5:a8:
b3:16:c8:86:e8:0a:00:e0:62:64:84:93:98:52:a5:
dc:5d:c3:52:23:75:eb:73:ac:68:32:d1:cb:26:fc:
d1:9b:3e:6a:cc:c0:1d:ab:c6:ae:b5:d8:d2:5f:99:
5a:89:93:6b:d7:57:52:2f:08:e8:10:75:bf:38:c4:
01:7f:64:b4:20:23:0d:28:e5:0f:32:83:e9:d1:43:
22:be:3c:bb:98:39:85:88:db:f8:ad:d4:e1:1e:83:
7d:5f:1e:b3:9b:41:4a:76:86:5e:86:92:98:3e:c9:
e3:7d:ad:05:d4:11:fb:52:70:3d:15:c0:99:a2:7d:
bd:53:68:57:73:59:69:be:7c:88:4c:c5:b3:00:dc:
45:6f:6c:20:95:03:d9:b1:3d:f7:0f:a1:29:f3:d3:
1f:d5:14:6e:9c:47:24:81:11:f6:5e:80:7e:d0:f7:
fc:1b:22:5d:f0:d3:0c:da:7d:bb:39:f6:80:f5:9a:
b1:33:54:97:f4:83:da:a8:50:8a:b5:e2:71:b9:60:
78:b5:5e:3f:84:75:d0:6e:3f:af:bf:3e:cf:a2:85:
41:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A8:AA:A4:FE:C0:3B:40:7C:F8:31:36:ED:51:87:3A:32:EC:38:CB
X509v3 Authority Key Identifier:
keyid:01:3C:74:13:25:97:16:2C:DB:2D:D6:37:60:AB:D9:97:1E:30:BF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ATx0EyWXFizbLdY3YKvZlx4wv2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ca6c80-03a1-4a4c-91cf-068b77e903a0/1/HaiqpP7AO0B8-DE27VGHOjLsOMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ca6c80-03a1-4a4c-91cf-068b77e903a0/1/ATx0EyWXFizbLdY3YKvZlx4wv2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.203.0/24
IPv6:
2a12:4740::/29
Signature Algorithm: sha256WithRSAEncryption
1f:ef:5f:80:49:1a:7a:ab:df:27:c0:04:ed:a0:5b:01:d3:d2:
b5:15:78:59:64:39:b3:35:08:b7:a2:b0:e4:8d:5c:fc:c4:94:
36:0d:6d:59:80:a3:a0:58:3a:e3:0d:51:a0:19:99:f6:af:8b:
99:21:1b:33:ac:8b:14:2d:a0:9b:43:b6:a6:6a:bf:6d:5d:31:
ce:cc:7d:fb:8f:d6:52:8b:e4:ef:14:db:65:a8:0a:7e:2d:ef:
1b:92:33:00:c3:43:ed:45:c0:f1:0c:9b:bc:da:9e:b8:7f:b2:
b8:93:8b:6a:b7:22:27:8e:e1:87:96:e6:4a:ef:bc:9b:d2:10:
22:b0:91:c9:9e:03:bc:d8:f2:14:39:55:ad:59:f7:36:82:e2:
93:2f:e8:3c:2d:ce:93:d9:9b:b3:0c:76:4d:92:46:cc:2f:39:
76:83:dc:45:f0:bf:af:bf:47:31:42:24:48:e5:0e:96:72:ca:
19:6c:c7:24:b0:78:a5:b7:25:61:15:ad:8e:69:9b:82:f0:ba:
24:8d:05:fd:5c:27:a5:ab:af:ff:40:f7:91:de:f9:bb:b1:a7:
08:e8:80:79:a1:d7:16:31:86:9e:82:66:6a:36:30:c9:4c:04:
bd:d0:a0:06:47:c4:db:e2:66:1b:cd:5a:2d:b1:76:7f:1d:d6:
ec:58:a7:7d
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYKrebrLmshU5POspy0AWCMXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxM2M3NDEzMjU5NzE2MmNkYjJkZDYzNzYwYWJkOTk3MWUz
MGJmNjMwHhcNMjIwODE3MTEwNDE3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGE4YWFhNGZlYzAzYjQwN2NmODMxMzZlZDUxODczYTMyZWMzOGNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/LeBV9VORD9nCMuGu/5Vrx/YEd1
+mImzvrplvv++NcjYZEm0hnFo5IPpaizFsiG6AoA4GJkhJOYUqXcXcNSI3Xrc6xo
MtHLJvzRmz5qzMAdq8autdjSX5laiZNr11dSLwjoEHW/OMQBf2S0ICMNKOUPMoPp
0UMivjy7mDmFiNv4rdThHoN9Xx6zm0FKdoZehpKYPsnjfa0F1BH7UnA9FcCZon29
U2hXc1lpvnyITMWzANxFb2wglQPZsT33D6Ep89Mf1RRunEckgRH2XoB+0Pf8GyJd
8NMM2n27OfaA9ZqxM1SX9IPaqFCKteJxuWB4tV4/hHXQbj+vvz7PooVBfwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFB2oqqT+wDtAfPgxNu1Rhzoy7DjLMB8GA1UdIwQY
MBaAFAE8dBMllxYs2y3WN2Cr2ZceML9jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVR4MEV5V1hGaXpiTGRZM1lLdlpseDR3djJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9jYTZjODAtMDNhMS00YTRjLTkxY2Yt
MDY4Yjc3ZTkwM2EwLzEvSGFpcXBQN0FPMEI4LURFMjdWR0hPakxzT01zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9jYTZjODAtMDNhMS00YTRjLTkxY2YtMDY4Yjc3ZTkwM2Ew
LzEvQVR4MEV5V1hGaXpiTGRZM1lLdlpseDR3djJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuRPLMA0E
AgACMAcDBQMqEkdAMA0GCSqGSIb3DQEBCwUAA4IBAQAf71+ASRp6q98nwATtoFsB
09K1FXhZZDmzNQi3orDkjVz8xJQ2DW1ZgKOgWDrjDVGgGZn2r4uZIRszrIsULaCb
Q7amar9tXTHOzH37j9ZSi+TvFNtlqAp+Le8bkjMAw0PtRcDxDJu82p64f7K4k4tq
tyInjuGHluZK77yb0hAisJHJngO82PIUOVWtWfc2guKTL+g8Lc6T2ZuzDHZNkkbM
Lzl2g9xF8L+vv0cxQiRI5Q6WcsoZbMcksHiltyVhFa2OaZuC8LokjQX9XCelq6//
QPeR3vm7sacI6IB5odcWMYaegmZqNjDJTAS90KAGR8Tb4mYbzVotsXZ/HdbsWKd9
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:23 2023 by rpki-client on console-ams.rpki-client.org