Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/HaR-woOn8Tgk6u0nksSok2cyPKU.roa
File: HaR-woOn8Tgk6u0nksSok2cyPKU.roa (raw, json)
Hash identifier: KGJ3D2IkVN1N6PQF+hRFdw6eZIlppXrTiGOplFwlVdk=
Subject key identifier: 1D:A4:7E:C2:83:A7:F1:38:24:EA:ED:27:92:C4:A8:93:67:32:3C:A5
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 018415A2417BD8D9C9243AC132D258EF3BDB
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/HaR-woOn8Tgk6u0nksSok2cyPKU.roa
Signing time: Wed 26 Oct 2022 18:51:05 +0000
ROA not before: Wed 26 Oct 2022 18:51:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 213.244.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:15:a2:41:7b:d8:d9:c9:24:3a:c1:32:d2:58:ef:3b:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Oct 26 18:51:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1da47ec283a7f13824eaed2792c4a89367323ca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:0c:c2:37:0d:c5:8e:31:c8:70:21:60:dc:12:
0b:09:72:85:0f:2b:ea:d9:e5:ac:98:c9:bb:60:44:
f3:fb:97:0e:b6:b6:b8:8a:c6:28:4f:d5:7c:8e:7f:
43:3e:b6:bc:be:63:5c:6f:34:5a:59:b7:25:2f:d3:
c1:02:41:b4:19:71:d2:48:85:17:e3:3d:d0:2e:83:
94:bc:b0:c8:c5:2a:d3:9f:78:5e:2b:82:01:3b:8d:
7b:42:77:2a:2c:02:2d:50:68:f3:2b:09:a9:5c:4c:
80:83:3d:16:3e:14:7b:9f:8f:55:ff:27:c7:bc:e4:
2b:e7:18:27:1c:0a:0a:47:d4:12:56:cd:14:d6:6c:
11:c3:ec:fe:bd:e8:52:52:db:8f:96:a2:7b:70:0c:
3d:bc:2b:5c:00:32:ad:bf:f6:e4:c7:6b:89:72:b6:
a5:7d:a5:f0:ec:64:20:99:48:d3:55:ee:22:49:37:
27:17:4a:7d:97:d1:39:cd:4c:cd:ba:72:0a:31:01:
91:f2:85:ff:42:ea:8b:c2:9f:51:d6:ae:33:1c:46:
62:87:8d:90:f4:41:3b:3c:24:6b:d2:4d:83:12:17:
fa:a4:2d:8b:6b:fe:80:a6:1d:66:fc:dd:9c:f9:16:
26:b2:d3:03:23:9d:ff:64:dd:91:66:f0:54:32:4d:
31:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A4:7E:C2:83:A7:F1:38:24:EA:ED:27:92:C4:A8:93:67:32:3C:A5
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/HaR-woOn8Tgk6u0nksSok2cyPKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.244.73.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:2a:f9:15:d8:cc:f7:34:f3:cd:9a:84:83:b7:72:f3:ad:66:
5a:d2:3e:29:aa:a2:d0:bc:4f:84:bc:73:31:30:fb:1d:21:cb:
c3:df:d5:1d:4b:fc:18:e3:df:7b:d3:48:32:d5:8f:13:e8:90:
b4:4a:92:62:79:ee:a3:32:ba:05:e9:58:90:c9:42:55:24:32:
31:67:10:01:2d:18:08:16:bc:4d:2e:41:4c:bf:81:e8:d3:73:
ac:d9:0c:16:30:bd:d5:26:f4:5c:c6:82:1a:f6:ba:ed:6f:99:
5f:bc:c6:5c:4f:36:61:28:e9:7b:a9:e8:17:7e:52:3e:1b:94:
63:93:42:f1:4e:f0:ce:89:7f:51:a1:56:c1:7d:69:82:96:7e:
2e:17:02:68:92:95:66:c8:b7:1f:ae:60:30:78:ac:0a:ae:15:
52:e6:10:03:2d:24:dc:ee:19:4c:4d:ab:63:36:86:73:14:28:
f7:2a:a2:b5:45:5a:1a:f0:6d:35:84:a7:22:42:45:8b:94:84:
e9:3e:e0:36:12:25:de:ea:9e:bd:dd:cc:97:5b:0e:2c:ef:b3:
15:52:ad:96:f8:aa:84:5f:38:39:2b:8c:6d:fb:b0:b2:34:81:
c1:e2:76:20:97:6c:db:f0:ec:25:ff:a9:12:93:57:8e:e8:fb:
8f:98:91:f0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQVokF72NnJJDrBMtJY7zvbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjMzdmMjdlYjQ5OTdiM2JlZjlmMjgyNjZhMzk2OTQwNTBm
ZTc0ZjkwHhcNMjIxMDI2MTg1MTA1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGE0N2VjMjgzYTdmMTM4MjRlYWVkMjc5MmM0YTg5MzY3MzIzY2E1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAigzCNw3FjjHIcCFg3BILCXKFDyvq
2eWsmMm7YETz+5cOtra4isYoT9V8jn9DPra8vmNcbzRaWbclL9PBAkG0GXHSSIUX
4z3QLoOUvLDIxSrTn3heK4IBO417QncqLAItUGjzKwmpXEyAgz0WPhR7n49V/yfH
vOQr5xgnHAoKR9QSVs0U1mwRw+z+vehSUtuPlqJ7cAw9vCtcADKtv/bkx2uJcral
faXw7GQgmUjTVe4iSTcnF0p9l9E5zUzNunIKMQGR8oX/QuqLwp9R1q4zHEZih42Q
9EE7PCRr0k2DEhf6pC2La/6Aph1m/N2c+RYmstMDI53/ZN2RZvBUMk0xXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB2kfsKDp/E4JOrtJ5LEqJNnMjylMB8GA1UdIwQY
MBaAFEw38n60mXs7758oJmo5aUBQ/nT5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVERmeWZyU1plenZ2bnlnbWFqbHBRRkQtZFBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8wOWNlYTAtZWYyYi00ZjIwLWExOWEt
ZWI1YTYyN2U3NmEzLzEvSGFSLXdvT244VGdrNnUwbmtzU29rMmN5UEtVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC8wOWNlYTAtZWYyYi00ZjIwLWExOWEtZWI1YTYyN2U3NmEz
LzEvVERmeWZyU1plenZ2bnlnbWFqbHBRRkQtZFBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1fRJMA0G
CSqGSIb3DQEBCwUAA4IBAQBLKvkV2Mz3NPPNmoSDt3LzrWZa0j4pqqLQvE+EvHMx
MPsdIcvD39UdS/wY499700gy1Y8T6JC0SpJiee6jMroF6ViQyUJVJDIxZxABLRgI
FrxNLkFMv4Ho03Os2QwWML3VJvRcxoIa9rrtb5lfvMZcTzZhKOl7qegXflI+G5Rj
k0LxTvDOiX9RoVbBfWmCln4uFwJokpVmyLcfrmAweKwKrhVS5hADLSTc7hlMTatj
NoZzFCj3KqK1RVoa8G01hKciQkWLlITpPuA2EiXe6p693cyXWw4s77MVUq2W+KqE
Xzg5K4xt+7CyNIHB4nYgl2zb8Owl/6kSk1eO6PuPmJHw
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:20 2024 by rpki-client on console-fra.rpki-client.org