Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/c7fdc8-caeb-4741-be4e-28e44f2ee90a/1/h1G6HS_Wj-Xt9uj_mlVdhQI4SsE.roa
File: h1G6HS_Wj-Xt9uj_mlVdhQI4SsE.roa (raw, json)
Hash identifier: UxOD/gmeDGHBWopAVSlZZP2u1jQM+WOUbxZC4hhriI8=
Subject key identifier: 87:51:BA:1D:2F:D6:8F:E5:ED:F6:E8:FF:9A:55:5D:85:02:38:4A:C1
Certificate issuer: /CN=df3b796c3fc559bfaf4b76550894cff4d30b9b7e
Certificate serial: 06923438
Authority key identifier: DF:3B:79:6C:3F:C5:59:BF:AF:4B:76:55:08:94:CF:F4:D3:0B:9B:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3zt5bD_FWb-vS3ZVCJTP9NMLm34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/c7fdc8-caeb-4741-be4e-28e44f2ee90a/1/h1G6HS_Wj-Xt9uj_mlVdhQI4SsE.roa
Signing time: Sat 01 Jan 2022 06:52:21 +0000
ROA not before: Sat 01 Jan 2022 06:52:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24603
IP address blocks: 195.42.100.0/23 maxlen: 24
2001:67c:12e8::/47 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110244920 (0x6923438)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df3b796c3fc559bfaf4b76550894cff4d30b9b7e
Validity
Not Before: Jan 1 06:52:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8751ba1d2fd68fe5edf6e8ff9a555d8502384ac1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ef:27:76:4d:e7:bc:96:66:20:53:eb:32:65:
77:db:d5:a2:2c:63:66:86:0c:75:b4:d0:80:16:87:
e4:9a:fd:7a:4b:39:f9:1c:77:c2:a9:d5:82:02:d6:
39:9c:da:2b:57:ba:8a:41:11:d3:57:6e:5f:6a:ba:
76:86:ba:ee:bf:ac:83:18:26:7d:df:06:5b:5a:37:
30:aa:7b:62:63:88:65:f3:94:17:3a:db:5a:86:af:
77:fa:03:1c:ea:75:90:76:fd:b8:0f:f8:dd:f7:61:
97:f9:02:9d:72:0a:6f:c8:89:6d:0b:8e:61:cf:00:
86:07:75:d2:47:4b:16:21:98:f4:f6:e2:58:8f:97:
62:e6:cb:22:ba:4d:90:f7:0b:19:20:f5:b4:3d:06:
4a:7b:d0:4f:8b:e1:19:c5:da:22:40:a5:23:e1:c1:
88:e7:23:0d:28:1d:c1:b1:85:c0:91:4c:5c:fe:3f:
2e:54:55:32:ea:f5:c9:dc:8f:23:48:7a:b4:13:b4:
9f:b1:16:7d:cd:26:91:b6:1e:4d:b9:ee:20:61:f0:
d6:0f:fe:1b:66:80:41:bb:8b:c2:6b:3c:2b:50:24:
0b:2f:90:b1:d6:ad:53:78:05:58:a1:bb:96:fb:39:
6a:3e:d5:24:c7:2b:0c:ba:8d:cd:93:fe:b4:05:94:
68:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:51:BA:1D:2F:D6:8F:E5:ED:F6:E8:FF:9A:55:5D:85:02:38:4A:C1
X509v3 Authority Key Identifier:
keyid:DF:3B:79:6C:3F:C5:59:BF:AF:4B:76:55:08:94:CF:F4:D3:0B:9B:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3zt5bD_FWb-vS3ZVCJTP9NMLm34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/c7fdc8-caeb-4741-be4e-28e44f2ee90a/1/h1G6HS_Wj-Xt9uj_mlVdhQI4SsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/c7fdc8-caeb-4741-be4e-28e44f2ee90a/1/3zt5bD_FWb-vS3ZVCJTP9NMLm34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.42.100.0/23
IPv6:
2001:67c:12e8::/47
Signature Algorithm: sha256WithRSAEncryption
a2:69:f9:c5:9a:87:0d:66:18:e0:45:a1:27:79:8c:8e:c8:6b:
56:c2:72:f5:91:b6:71:3d:92:97:a7:5f:bb:1a:0c:b3:d3:22:
d5:c4:3d:fb:1f:22:46:f2:d0:71:c9:32:3b:3e:24:17:80:89:
12:2d:d5:54:5f:60:22:db:db:30:fa:e9:2a:aa:fd:28:90:67:
e2:5a:11:fa:c0:43:b7:fa:3e:7e:e3:e0:32:ff:30:cf:8e:6f:
df:39:8f:07:e8:b9:8e:83:8d:1e:6c:d2:3f:d5:fb:1c:b3:af:
48:88:d4:10:99:3d:74:95:a8:a1:84:73:60:1e:d3:eb:01:86:
bb:52:34:b9:ca:b3:dd:68:bf:05:5a:01:b8:c5:c9:ce:65:60:
cc:42:e2:b0:91:46:68:23:10:56:32:d5:c0:6b:ae:b8:72:a1:
97:28:a8:a0:5d:a8:1e:0b:d3:af:30:6a:33:af:de:c5:29:15:
74:ad:f0:0d:49:9a:60:a0:04:3f:23:3d:3f:95:4b:9d:00:71:
fa:63:f1:40:4d:98:54:82:ab:2a:d8:22:e4:e9:e2:de:b7:d2:
c3:b2:1f:61:28:ad:9e:1f:4d:05:55:0f:1c:ed:8a:5e:c7:25:
4a:05:c5:d1:18:fd:6c:b9:f0:49:ab:ed:e6:a4:ed:25:0f:a0:
23:a9:43:bc
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEBpI0ODANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
ZjNiNzk2YzNmYzU1OWJmYWY0Yjc2NTUwODk0Y2ZmNGQzMGI5YjdlMB4XDTIyMDEw
MTA2NTIyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODc1MWJhMWQyZmQ2
OGZlNWVkZjZlOGZmOWE1NTVkODUwMjM4NGFjMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOjvJ3ZN57yWZiBT6zJld9vVoixjZoYMdbTQgBaH5Jr9eks5
+Rx3wqnVggLWOZzaK1e6ikER01duX2q6doa67r+sgxgmfd8GW1o3MKp7YmOIZfOU
FzrbWoavd/oDHOp1kHb9uA/43fdhl/kCnXIKb8iJbQuOYc8Ahgd10kdLFiGY9Pbi
WI+XYubLIrpNkPcLGSD1tD0GSnvQT4vhGcXaIkClI+HBiOcjDSgdwbGFwJFMXP4/
LlRVMur1ydyPI0h6tBO0n7EWfc0mkbYeTbnuIGHw1g/+G2aAQbuLwms8K1AkCy+Q
sdatU3gFWKG7lvs5aj7VJMcrDLqNzZP+tAWUaKUCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBSHUbodL9aP5e326P+aVV2FAjhKwTAfBgNVHSMEGDAWgBTfO3lsP8VZv69L
dlUIlM/00wubfjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzN6dDViRF9GV2ItdlMzWlZDSlRQOU5NTG0zNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmMvYzdmZGM4LWNhZWItNDc0MS1iZTRlLTI4ZTQ0ZjJlZTkwYS8x
L2gxRzZIU19Xai1YdDl1al9tbFZkaFFJNFNzRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmMv
YzdmZGM4LWNhZWItNDc0MS1iZTRlLTI4ZTQ0ZjJlZTkwYS8xLzN6dDViRF9GV2It
dlMzWlZDSlRQOU5NTG0zNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAcMqZDAPBAIAAjAJAwcBIAEGfBLo
MA0GCSqGSIb3DQEBCwUAA4IBAQCiafnFmocNZhjgRaEneYyOyGtWwnL1kbZxPZKX
p1+7Ggyz0yLVxD37HyJG8tBxyTI7PiQXgIkSLdVUX2Ai29sw+ukqqv0okGfiWhH6
wEO3+j5+4+Ay/zDPjm/fOY8H6LmOg40ebNI/1fscs69IiNQQmT10laihhHNgHtPr
AYa7UjS5yrPdaL8FWgG4xcnOZWDMQuKwkUZoIxBWMtXAa664cqGXKKigXageC9Ov
MGozr97FKRV0rfANSZpgoAQ/Iz0/lUudAHH6Y/FATZhUgqsq2CLk6eLet9LDsh9h
KK2eH00FVQ8c7YpexyVKBcXRGP1sufBJq+3mpO0lD6AjqUO8
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:13 2023 by rpki-client on console-ams.rpki-client.org