Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/huWipBp0l1agvtiSIq0NdZLJBB8.roa
File: huWipBp0l1agvtiSIq0NdZLJBB8.roa (raw, json)
Hash identifier: yVftmVaPM47u7PJ/q77UkwqyrAnqAyu+GBtc0rELYiI=
Subject key identifier: 86:E5:A2:A4:1A:74:97:56:A0:BE:D8:92:22:AD:0D:75:92:C9:04:1F
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 01828E85FC797D0A0542E2ECA5BCD97FB0B2
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/huWipBp0l1agvtiSIq0NdZLJBB8.roa
Signing time: Thu 11 Aug 2022 20:08:41 +0000
ROA not before: Thu 11 Aug 2022 20:08:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 103.76.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8e:85:fc:79:7d:0a:05:42:e2:ec:a5:bc:d9:7f:b0:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Aug 11 20:08:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86e5a2a41a749756a0bed89222ad0d7592c9041f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:65:b7:d9:87:3a:36:a4:80:12:3a:ba:ee:8c:
4c:fb:4b:54:e6:76:67:17:ad:a3:ae:6c:be:9f:31:
68:08:21:19:5e:3d:7c:18:0c:40:9d:8d:aa:56:eb:
5c:2e:3a:21:4a:35:20:c2:2a:a8:d7:6b:30:65:cd:
f3:67:2b:37:b7:f2:ed:0b:cf:24:48:7f:05:13:8c:
a7:b4:29:bb:6f:b5:c9:6d:d2:fa:25:6e:8e:f7:02:
ad:54:e6:c0:9b:c6:05:ab:5d:32:11:5b:f7:8e:69:
9e:4f:eb:3a:77:d6:1d:cf:e5:da:ee:c4:81:7a:e1:
23:e1:1a:61:ec:5d:bf:f4:a4:81:c8:a1:6f:5a:c6:
01:4a:4a:f6:27:83:12:91:93:65:69:6d:c1:53:77:
a7:68:04:d6:c3:5f:88:13:d5:84:37:a6:11:fd:3e:
e4:d9:bf:f3:e0:29:a1:51:a1:9d:03:3f:c2:67:c8:
53:0f:75:3a:07:cc:8c:fb:2d:20:a3:97:b2:5f:68:
43:34:3c:98:a6:e8:f5:7f:b5:9c:39:ef:91:84:c0:
2f:c9:50:e5:fb:69:f7:85:c4:9b:ff:b8:a2:07:0b:
b8:a4:f0:53:1b:9e:0d:18:ff:f3:23:18:8a:61:b8:
dd:38:28:37:1c:67:cf:1d:3b:b0:08:8a:24:46:6f:
19:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E5:A2:A4:1A:74:97:56:A0:BE:D8:92:22:AD:0D:75:92:C9:04:1F
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/huWipBp0l1agvtiSIq0NdZLJBB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.76.128.0/24
Signature Algorithm: sha256WithRSAEncryption
38:77:58:38:bd:a3:f1:d3:1a:0c:b3:57:10:90:e4:2d:12:d3:
4b:48:74:ad:0f:ff:af:d9:cb:3c:98:fe:68:2a:e8:6b:9d:c5:
2d:7b:b7:52:0d:cd:a1:91:93:9e:01:2c:bc:4f:d7:94:b2:84:
a9:38:77:5f:86:09:9f:61:2c:89:e3:ff:6b:87:f8:6c:3e:c8:
71:10:c5:27:0e:4a:34:8e:57:63:7b:b9:1e:1c:30:03:ef:f3:
43:85:a0:25:bd:37:0f:df:8c:34:2f:6a:88:3a:84:ed:0b:26:
a9:6d:03:0d:a1:6d:19:e5:b3:be:e5:24:67:e9:ea:78:84:51:
35:da:40:70:27:90:d4:a4:35:61:40:01:6a:2b:1c:10:44:d3:
01:9f:d5:27:18:53:78:6a:79:48:92:09:91:c7:02:b6:dd:47:
fa:c1:3b:29:f4:e8:4f:80:64:64:fa:ba:23:53:ab:01:59:90:
79:e8:ad:f2:20:70:9b:d7:b6:a6:ba:59:43:59:7a:25:e0:2d:
05:01:47:33:63:b0:75:42:a8:ed:44:19:d6:d2:20:d7:83:f1:
3e:6c:d9:3e:b1:ef:a3:11:52:1d:bf:ce:d5:7e:cd:b4:5a:78:
34:85:19:45:ac:84:d8:d0:ef:79:e5:93:5c:1d:27:37:77:ab:
c3:1a:d0:ad
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYKOhfx5fQoFQuLspbzZf7CyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjODkyYWVkMzgzM2U2MTAwZjVlMGNmMTIyNzFmZDgwYjc1
NWMzNjEwHhcNMjIwODExMjAwODQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NmU1YTJhNDFhNzQ5NzU2YTBiZWQ4OTIyMmFkMGQ3NTkyYzkwNDFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkGW32Yc6NqSAEjq67oxM+0tU5nZn
F62jrmy+nzFoCCEZXj18GAxAnY2qVutcLjohSjUgwiqo12swZc3zZys3t/LtC88k
SH8FE4yntCm7b7XJbdL6JW6O9wKtVObAm8YFq10yEVv3jmmeT+s6d9Ydz+Xa7sSB
euEj4Rph7F2/9KSByKFvWsYBSkr2J4MSkZNlaW3BU3enaATWw1+IE9WEN6YR/T7k
2b/z4CmhUaGdAz/CZ8hTD3U6B8yM+y0go5eyX2hDNDyYpuj1f7WcOe+RhMAvyVDl
+2n3hcSb/7iiBwu4pPBTG54NGP/zIxiKYbjdOCg3HGfPHTuwCIokRm8ZMwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIbloqQadJdWoL7YkiKtDXWSyQQfMB8GA1UdIwQY
MBaAFFyJKu04M+YQD14M8SJx/YC3VcNhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWElrcTdUZ3o1aEFQWGd6eEluSDlnTGRWdzJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi84NmZiNDYtZDcxMi00NjAyLTljY2Ut
M2FhN2RhYTlkM2VjLzEvaHVXaXBCcDBsMWFndnRpU0lxME5kWkxKQkI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi84NmZiNDYtZDcxMi00NjAyLTljY2UtM2FhN2RhYTlkM2Vj
LzEvWElrcTdUZ3o1aEFQWGd6eEluSDlnTGRWdzJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0yAMA0G
CSqGSIb3DQEBCwUAA4IBAQA4d1g4vaPx0xoMs1cQkOQtEtNLSHStD/+v2cs8mP5o
KuhrncUte7dSDc2hkZOeASy8T9eUsoSpOHdfhgmfYSyJ4/9rh/hsPshxEMUnDko0
jldje7keHDAD7/NDhaAlvTcP34w0L2qIOoTtCyapbQMNoW0Z5bO+5SRn6ep4hFE1
2kBwJ5DUpDVhQAFqKxwQRNMBn9UnGFN4anlIkgmRxwK23Uf6wTsp9OhPgGRk+roj
U6sBWZB56K3yIHCb17amullDWXol4C0FAUczY7B1QqjtRBnW0iDXg/E+bNk+se+j
EVIdv87Vfs20Wng0hRlFrITY0O955ZNcHSc3d6vDGtCt
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:34 2023 by rpki-client on console-ams.rpki-client.org