Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HVGZDO20xwSjQS9g7jhSvuDbcb4.roa
File: HVGZDO20xwSjQS9g7jhSvuDbcb4.roa (raw, json)
Hash identifier: efjgFzr6qhEVzbCpiTEIdQYB2g9p31pxxfdTJs+MN9M=
Subject key identifier: 1D:51:99:0C:ED:B4:C7:04:A3:41:2F:60:EE:38:52:BE:E0:DB:71:BE
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27D7C174
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HVGZDO20xwSjQS9g7jhSvuDbcb4.roa
Signing time: Sat 01 Jan 2022 16:08:58 +0000
ROA not before: Sat 01 Jan 2022 16:08:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57903
IP address blocks: 31.148.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 668451188 (0x27d7c174)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d51990cedb4c704a3412f60ee3852bee0db71be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ad:b3:91:3b:f8:69:3d:bd:1e:91:83:0a:4a:
c9:52:aa:20:3e:fb:24:06:5c:1f:0d:72:4c:1e:c5:
79:44:bc:be:dd:8e:cc:17:d6:37:fe:22:ba:67:ca:
4a:9f:14:20:b5:ce:ab:23:e6:cb:48:25:db:3e:86:
c5:25:54:d7:b1:fd:5e:84:9c:aa:0b:e0:36:bb:df:
19:87:3d:6e:c6:74:6a:51:7e:35:be:3e:3d:42:c2:
28:d8:b7:b0:7d:12:be:62:88:20:c1:35:b8:39:b3:
87:14:48:48:fb:1a:22:ff:94:74:3d:b4:0c:e0:aa:
5e:57:37:d7:7c:20:47:a4:70:a9:de:d8:67:d9:a5:
52:19:cd:8c:d9:ac:9e:5f:b3:7e:60:56:35:07:22:
c4:51:f2:27:42:1c:0a:46:e8:fb:f8:96:7e:f3:af:
92:7c:eb:69:35:c2:19:2c:f2:b3:e2:85:6f:76:c1:
e3:da:9e:d6:11:a2:83:f9:41:08:56:7a:80:58:36:
e9:48:70:08:d2:32:b1:54:92:3d:1e:1f:42:4f:29:
bb:da:38:95:ab:7f:4b:a1:80:2a:b7:4f:af:f7:a9:
f2:3b:c7:37:7e:d4:18:f4:18:0a:ca:9b:0f:62:15:
f6:dd:d3:e6:76:fd:0a:ae:9d:c3:93:3a:4f:fd:c6:
b4:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:51:99:0C:ED:B4:C7:04:A3:41:2F:60:EE:38:52:BE:E0:DB:71:BE
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HVGZDO20xwSjQS9g7jhSvuDbcb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.176.0/20
Signature Algorithm: sha256WithRSAEncryption
51:84:c9:fb:72:b7:3f:77:84:f5:12:91:ce:16:f5:86:3a:98:
6a:41:e1:c1:58:66:c8:54:fa:d7:ca:47:a2:73:aa:70:a3:51:
ea:29:2c:8e:3d:c9:f9:8a:3c:13:c3:ac:96:2b:06:00:cc:38:
0f:ec:4b:cf:1c:03:4b:bd:49:d3:29:f7:10:b8:bd:32:56:cd:
28:48:64:bf:0d:26:33:7f:5d:24:6a:2f:f8:9e:cd:66:8d:74:
30:ad:01:c2:c7:05:c2:66:b1:68:2f:6e:19:82:3f:ef:63:f0:
90:8b:5a:53:01:93:ca:41:f9:38:5b:d4:2c:7f:a1:0d:c3:42:
ef:a6:a8:cf:c9:68:a4:90:12:a9:ca:b6:de:68:a8:1f:ef:20:
d4:ad:c7:fb:7d:e8:3e:68:cc:84:97:ac:9d:57:9b:56:11:3e:
36:ec:f4:57:8f:55:a4:23:f8:44:ef:04:ef:a7:19:ab:4a:29:
1e:71:34:b2:ee:58:16:19:a3:b3:6c:79:ba:2d:f8:5f:be:2c:
b8:e8:90:80:e2:b4:eb:4b:04:12:a9:98:fd:c0:a8:bc:ca:9d:
d5:be:ee:4f:e4:97:e2:d4:39:eb:0f:1b:0f:75:c4:ba:97:5a:
b5:15:b8:9c:3f:d3:c0:ed:67:ae:d1:82:19:ea:64:f2:9d:9c:
56:6a:ac:a7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEJ9fBdDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDg1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWQ1MTk5MGNlZGI0
YzcwNGEzNDEyZjYwZWUzODUyYmVlMGRiNzFiZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKCts5E7+Gk9vR6RgwpKyVKqID77JAZcHw1yTB7FeUS8vt2O
zBfWN/4iumfKSp8UILXOqyPmy0gl2z6GxSVU17H9XoScqgvgNrvfGYc9bsZ0alF+
Nb4+PULCKNi3sH0SvmKIIME1uDmzhxRISPsaIv+UdD20DOCqXlc313wgR6Rwqd7Y
Z9mlUhnNjNmsnl+zfmBWNQcixFHyJ0IcCkbo+/iWfvOvknzraTXCGSzys+KFb3bB
49qe1hGig/lBCFZ6gFg26UhwCNIysVSSPR4fQk8pu9o4lat/S6GAKrdPr/ep8jvH
N37UGPQYCsqbD2IV9t3T5nb9Cq6dw5M6T/3GtCcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQdUZkM7bTHBKNBL2DuOFK+4NtxvjAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L0hWR1pETzIweHdTalFTOWc3amhTdnVEYmNiNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBB+UsDANBgkqhkiG9w0BAQsFAAOC
AQEAUYTJ+3K3P3eE9RKRzhb1hjqYakHhwVhmyFT618pHonOqcKNR6iksjj3J+Yo8
E8OslisGAMw4D+xLzxwDS71J0yn3ELi9MlbNKEhkvw0mM39dJGov+J7NZo10MK0B
wscFwmaxaC9uGYI/72PwkItaUwGTykH5OFvULH+hDcNC76aoz8lopJASqcq23mio
H+8g1K3H+33oPmjMhJesnVebVhE+Nuz0V49VpCP4RO8E76cZq0opHnE0su5YFhmj
s2x5ui34X74suOiQgOK060sEEqmY/cCovMqd1b7uT+SX4tQ56w8bD3XEupdatRW4
nD/TwO1nrtGCGepk8p2cVmqspw==
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:51:11 2025 by rpki-client