Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/4b99b8-0657-4162-ab04-f572a0fce0ee/1/H1e2HwRMVvq2V--tSaLp0TAQG8U.roa
File: H1e2HwRMVvq2V--tSaLp0TAQG8U.roa (raw, json)
Hash identifier: d4GnZL1+AgoWoQEhJE3zMKJQVm/ucBotBgByfHdPqsw=
Subject key identifier: 1F:57:B6:1F:04:4C:56:FA:B6:57:EF:AD:49:A2:E9:D1:30:10:1B:C5
Certificate issuer: /CN=83c966da5eead50905091c3b599c9a44074739d0
Certificate serial: 0182595E3963E66D71318B871F0EB8E8A17B
Authority key identifier: 83:C9:66:DA:5E:EA:D5:09:05:09:1C:3B:59:9C:9A:44:07:47:39:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8lm2l7q1QkFCRw7WZyaRAdHOdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/4b99b8-0657-4162-ab04-f572a0fce0ee/1/H1e2HwRMVvq2V--tSaLp0TAQG8U.roa
Signing time: Mon 01 Aug 2022 12:25:23 +0000
ROA not before: Mon 01 Aug 2022 12:25:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209242
IP address blocks: 216.120.181.0/24 maxlen: 24
216.120.180.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:59:5e:39:63:e6:6d:71:31:8b:87:1f:0e:b8:e8:a1:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c966da5eead50905091c3b599c9a44074739d0
Validity
Not Before: Aug 1 12:25:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f57b61f044c56fab657efad49a2e9d130101bc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:75:0f:19:e5:be:a1:d0:2a:ab:9b:63:16:95:
4a:65:ce:ea:8f:77:11:fe:37:ba:af:94:df:04:75:
dc:27:4f:29:28:a1:4b:d6:29:1b:6d:0a:4a:48:7f:
b9:fe:ab:37:5d:2a:a1:00:ee:43:43:28:63:5e:67:
09:67:10:33:a2:4e:8b:a1:ed:8c:69:fc:ec:32:a3:
87:07:71:09:d0:3c:2d:cf:63:d9:81:72:96:14:e3:
33:8e:33:95:e8:83:b5:2a:e8:09:67:b7:02:a6:ac:
25:de:1c:a1:52:ac:58:fa:65:23:19:a0:87:49:23:
5e:a2:09:9f:68:92:1d:86:69:27:c8:39:13:c9:77:
b0:31:db:58:1b:79:60:a1:8c:a9:d5:db:17:56:08:
02:10:3c:13:02:f3:a2:51:85:de:d8:2f:be:0d:de:
9c:5e:d6:e0:e5:e7:ae:49:ea:29:65:2e:a3:fa:cd:
ba:70:9a:7c:09:94:51:78:cc:a0:78:7c:26:3c:b9:
b7:10:29:12:c7:7e:2e:02:0a:00:72:ad:e8:2b:f6:
11:2f:0b:2e:65:85:03:40:02:08:28:3b:37:fc:a8:
cd:cf:3d:8c:b2:31:79:85:ff:5b:19:73:af:eb:2c:
d2:03:f1:e0:ca:a2:bc:42:5a:78:2d:1a:c8:c3:6f:
bd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:57:B6:1F:04:4C:56:FA:B6:57:EF:AD:49:A2:E9:D1:30:10:1B:C5
X509v3 Authority Key Identifier:
keyid:83:C9:66:DA:5E:EA:D5:09:05:09:1C:3B:59:9C:9A:44:07:47:39:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8lm2l7q1QkFCRw7WZyaRAdHOdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4b99b8-0657-4162-ab04-f572a0fce0ee/1/H1e2HwRMVvq2V--tSaLp0TAQG8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4b99b8-0657-4162-ab04-f572a0fce0ee/1/g8lm2l7q1QkFCRw7WZyaRAdHOdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.120.180.0/23
Signature Algorithm: sha256WithRSAEncryption
88:82:be:d7:2b:e3:e6:da:f1:67:8a:85:69:78:67:fb:a2:b5:
64:bf:0c:f8:da:26:c6:dd:36:50:ce:eb:c7:e8:d4:ee:22:37:
89:0d:2b:67:89:ee:64:88:6c:1c:aa:36:42:a1:cc:aa:31:0a:
d1:5b:53:c7:cd:00:01:07:5b:af:e8:88:51:69:bc:47:98:38:
58:62:f0:d5:f6:31:ac:38:da:7e:00:64:84:11:af:71:de:f3:
bb:5e:91:9c:5d:85:50:8f:5e:90:e7:b6:5b:d7:af:bb:59:0a:
dd:4a:a8:67:41:8a:7a:6e:26:6b:4a:e0:42:56:fd:f9:b3:0d:
6c:77:5c:bd:9a:0d:0d:06:b8:0b:35:29:c2:32:8d:c6:79:fe:
8e:85:17:17:6a:01:7f:86:67:58:cc:7c:de:c4:3a:da:bf:a0:
1a:5f:e5:7c:99:6b:32:cf:91:f3:44:98:32:e3:80:87:e7:56:
7e:b1:50:29:da:d4:77:30:b0:ac:00:d8:3c:d4:65:6a:cd:ba:
34:71:3c:df:e4:4a:40:55:a7:a5:5e:97:51:cf:bb:36:a3:bc:
08:0c:5b:47:09:30:c4:48:17:43:17:8a:cb:b9:f7:47:4d:9a:
9c:db:53:4e:79:b1:59:09:46:a8:98:28:a7:26:e2:3e:50:9e:
ac:1d:e0:28
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJZXjlj5m1xMYuHHw646KF7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzYzk2NmRhNWVlYWQ1MDkwNTA5MWMzYjU5OWM5YTQ0MDc0
NzM5ZDAwHhcNMjIwODAxMTIyNTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZjU3YjYxZjA0NGM1NmZhYjY1N2VmYWQ0OWEyZTlkMTMwMTAxYmM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApHUPGeW+odAqq5tjFpVKZc7qj3cR
/je6r5TfBHXcJ08pKKFL1ikbbQpKSH+5/qs3XSqhAO5DQyhjXmcJZxAzok6Loe2M
afzsMqOHB3EJ0Dwtz2PZgXKWFOMzjjOV6IO1KugJZ7cCpqwl3hyhUqxY+mUjGaCH
SSNeogmfaJIdhmknyDkTyXewMdtYG3lgoYyp1dsXVggCEDwTAvOiUYXe2C++Dd6c
Xtbg5eeuSeopZS6j+s26cJp8CZRReMygeHwmPLm3ECkSx34uAgoAcq3oK/YRLwsu
ZYUDQAIIKDs3/KjNzz2MsjF5hf9bGXOv6yzSA/HgyqK8Qlp4LRrIw2+91QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB9Xth8ETFb6tlfvrUmi6dEwEBvFMB8GA1UdIwQY
MBaAFIPJZtpe6tUJBQkcO1mcmkQHRznQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzhsbTJsN3ExUWtGQ1J3N1daeWFSQWRIT2RBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC80Yjk5YjgtMDY1Ny00MTYyLWFiMDQt
ZjU3MmEwZmNlMGVlLzEvSDFlMkh3Uk1WdnEyVi0tdFNhTHAwVEFRRzhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC80Yjk5YjgtMDY1Ny00MTYyLWFiMDQtZjU3MmEwZmNlMGVl
LzEvZzhsbTJsN3ExUWtGQ1J3N1daeWFSQWRIT2RBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB2Hi0MA0G
CSqGSIb3DQEBCwUAA4IBAQCIgr7XK+Pm2vFnioVpeGf7orVkvwz42ibG3TZQzuvH
6NTuIjeJDStnie5kiGwcqjZCocyqMQrRW1PHzQABB1uv6IhRabxHmDhYYvDV9jGs
ONp+AGSEEa9x3vO7XpGcXYVQj16Q57Zb16+7WQrdSqhnQYp6biZrSuBCVv35sw1s
d1y9mg0NBrgLNSnCMo3Gef6OhRcXagF/hmdYzHzexDrav6AaX+V8mWsyz5HzRJgy
44CH51Z+sVAp2tR3MLCsANg81GVqzbo0cTzf5EpAVaelXpdRz7s2o7wIDFtHCTDE
SBdDF4rLufdHTZqc21NOebFZCUaomCinJuI+UJ6sHeAo
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:05 2024 by rpki-client on console-fra.rpki-client.org