Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/HytnbiIvx9s58B8KInOV7C3Helo.roa
File: HytnbiIvx9s58B8KInOV7C3Helo.roa (raw, json)
Hash identifier: 1sFqmhqKviKX8xt8V+0szbX0LgK8aX9LxjPOf6ZGK6s=
Subject key identifier: 1F:2B:67:6E:22:2F:C7:DB:39:F0:1F:0A:22:73:95:EC:2D:C7:7A:5A
Certificate issuer: /CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Certificate serial: 018B72430367C734FAE331BB28E2834FBE28
Authority key identifier: 97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/HytnbiIvx9s58B8KInOV7C3Helo.roa
Signing time: Fri 27 Oct 2023 17:51:16 +0000
ROA not before: Fri 27 Oct 2023 17:51:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216106
IP address blocks: 82.206.30.0/23 maxlen: 24
82.206.56.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:72:43:03:67:c7:34:fa:e3:31:bb:28:e2:83:4f:be:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Validity
Not Before: Oct 27 17:51:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f2b676e222fc7db39f01f0a227395ec2dc77a5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e9:a9:5e:30:c7:48:f3:1b:d1:ea:d6:f3:01:
ee:09:11:70:c1:b0:a1:b1:76:d8:32:ee:13:4a:0b:
9a:57:81:ed:d3:b1:57:03:1f:b1:16:b3:6c:43:a4:
01:d4:0c:92:8e:ab:95:e7:89:7d:cd:1a:2b:f7:75:
b3:5f:ab:e8:f1:3f:56:e7:f0:17:ea:3a:e1:93:0e:
08:b1:83:9c:dc:fb:34:b7:ca:b2:bb:b0:40:28:bb:
2f:98:25:57:6a:95:83:e6:4b:77:f6:39:5b:64:25:
2c:ef:e7:51:e8:d3:c9:30:81:23:a3:43:67:f1:c3:
34:11:f4:65:28:8d:8e:cb:e1:3c:e7:f7:ca:92:83:
4d:60:31:e4:a8:6d:e5:81:18:d2:23:e0:e6:50:e9:
39:8a:0b:e4:3b:cf:a0:72:ce:b8:f2:5e:82:fb:2c:
85:c3:fd:c6:bb:05:1b:24:a1:6e:86:11:44:3e:f4:
f9:af:8d:f9:97:53:c2:26:3a:d8:3b:84:6b:ea:a1:
24:94:0b:ee:7b:35:0c:c6:55:90:a7:7c:22:2f:eb:
3e:5a:8f:e0:a8:4c:a2:01:12:78:c9:ae:42:f8:d9:
d4:4f:33:9a:e7:27:1d:10:dd:4e:4c:e8:61:0a:8f:
4f:30:22:41:8c:a6:f2:03:6b:45:cf:99:17:5e:ab:
7c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:2B:67:6E:22:2F:C7:DB:39:F0:1F:0A:22:73:95:EC:2D:C7:7A:5A
X509v3 Authority Key Identifier:
keyid:97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/HytnbiIvx9s58B8KInOV7C3Helo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/l5kUC0LbbLa_jG3UE3R_z0pv2bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.206.30.0/23
82.206.56.0/21
Signature Algorithm: sha256WithRSAEncryption
11:2e:68:d7:7d:33:ec:1e:9a:62:2d:c3:83:e2:49:9c:c0:fb:
93:08:0d:38:5f:26:e5:9a:7c:e1:ab:1b:4a:65:80:08:c3:1c:
e6:17:8c:40:5f:7c:42:ee:18:91:26:f4:00:e6:6e:7f:cf:16:
0b:31:b3:1a:e4:d9:cb:ce:5a:9b:93:cb:aa:d2:5a:af:91:da:
f4:ac:02:42:ab:30:c0:90:b5:f1:77:b0:a6:6a:5c:30:5d:52:
f7:e7:c8:5b:b3:8d:3e:85:be:75:d1:c4:fd:22:7f:f3:c2:bf:
b7:62:ea:ee:b0:26:e6:db:65:1c:5e:8d:57:28:a3:35:71:0f:
c5:e6:4f:fd:70:55:cb:55:de:77:44:6f:07:85:6d:e3:1e:e2:
d2:ed:4b:23:76:52:13:61:d7:9f:2c:32:95:f3:cf:b5:a6:4a:
27:09:79:05:e7:82:51:4f:7e:6e:2b:a3:4e:27:58:3a:db:47:
32:8e:e9:40:bc:d9:2d:77:39:43:97:c0:07:33:24:ba:15:4d:
c1:4e:ac:9c:c6:f9:81:c9:f9:38:63:1a:c7:6c:06:ee:f8:ba:
0c:a4:85:82:03:78:69:ec:85:b8:f4:37:cb:1b:84:18:30:8e:
b8:8a:ea:90:6a:a9:7c:61:1a:0c:a5:e2:4e:8d:2b:a1:a6:79:
3e:8c:bc:0f
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYtyQwNnxzT64zG7KOKDT74oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3OTkxNDBiNDJkYjZjYjZiZjhjNmRkNDEzNzQ3ZmNmNGE2
ZmQ5YjUwHhcNMjMxMDI3MTc1MTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZjJiNjc2ZTIyMmZjN2RiMzlmMDFmMGEyMjczOTVlYzJkYzc3YTVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlempXjDHSPMb0erW8wHuCRFwwbCh
sXbYMu4TSguaV4Ht07FXAx+xFrNsQ6QB1AySjquV54l9zRor93WzX6vo8T9W5/AX
6jrhkw4IsYOc3Ps0t8qyu7BAKLsvmCVXapWD5kt39jlbZCUs7+dR6NPJMIEjo0Nn
8cM0EfRlKI2Oy+E85/fKkoNNYDHkqG3lgRjSI+DmUOk5igvkO8+gcs648l6C+yyF
w/3GuwUbJKFuhhFEPvT5r435l1PCJjrYO4Rr6qEklAvuezUMxlWQp3wiL+s+Wo/g
qEyiARJ4ya5C+NnUTzOa5ycdEN1OTOhhCo9PMCJBjKbyA2tFz5kXXqt8BQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFB8rZ24iL8fbOfAfCiJzlewtx3paMB8GA1UdIwQY
MBaAFJeZFAtC22y2v4xt1BN0f89Kb9m1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDVrVUMwTGJiTGFfakczVUUzUl96MHB2MmJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS80ZWVmMDMtOTFmZS00NDVhLWE3Y2Qt
NTk1OTE5YmUwZjUyLzEvSHl0bmJpSXZ4OXM1OEI4S0luT1Y3QzNIZWxvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS80ZWVmMDMtOTFmZS00NDVhLWE3Y2QtNTk1OTE5YmUwZjUy
LzEvbDVrVUMwTGJiTGFfakczVUUzUl96MHB2MmJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBUs4eAwQD
Us44MA0GCSqGSIb3DQEBCwUAA4IBAQARLmjXfTPsHppiLcOD4kmcwPuTCA04Xybl
mnzhqxtKZYAIwxzmF4xAX3xC7hiRJvQA5m5/zxYLMbMa5NnLzlqbk8uq0lqvkdr0
rAJCqzDAkLXxd7CmalwwXVL358hbs40+hb510cT9In/zwr+3YurusCbm22UcXo1X
KKM1cQ/F5k/9cFXLVd53RG8HhW3jHuLS7UsjdlITYdefLDKV88+1pkonCXkF54JR
T35uK6NOJ1g620cyjulAvNktdzlDl8AHMyS6FU3BTqycxvmByfk4YxrHbAbu+LoM
pIWCA3hp7IW49DfLG4QYMI64iuqQaql8YRoMpeJOjSuhpnk+jLwP
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:43:16 2025 by rpki-client