Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/c12020-a1a1-400e-91f3-835599260ff6/1/hk_UXc3ZhdnnKj7yJsTDTFIo9Z8.roa
File: hk_UXc3ZhdnnKj7yJsTDTFIo9Z8.roa (raw, json)
Hash identifier: +uJiB4YJ9Xxwe1rwTP2Dg2Q+fT03fsx1vSBj7RKuEM8=
Subject key identifier: 86:4F:D4:5D:CD:D9:85:D9:E7:2A:3E:F2:26:C4:C3:4C:52:28:F5:9F
Certificate issuer: /CN=3a5ec28e841f29f380a7ce2cb5cd5673700821fd
Certificate serial: 01F03656
Authority key identifier: 3A:5E:C2:8E:84:1F:29:F3:80:A7:CE:2C:B5:CD:56:73:70:08:21:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ol7CjoQfKfOAp84stc1Wc3AIIf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/c12020-a1a1-400e-91f3-835599260ff6/1/hk_UXc3ZhdnnKj7yJsTDTFIo9Z8.roa
Signing time: Sat 01 Jan 2022 10:55:01 +0000
ROA not before: Sat 01 Jan 2022 10:55:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 185.161.149.0/24 maxlen: 24
185.238.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32519766 (0x1f03656)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a5ec28e841f29f380a7ce2cb5cd5673700821fd
Validity
Not Before: Jan 1 10:55:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=864fd45dcdd985d9e72a3ef226c4c34c5228f59f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:34:36:a2:15:9e:5d:aa:7a:c5:1e:d5:11:e8:
bb:51:70:86:1e:74:a1:c3:1f:a0:45:50:57:46:b3:
8c:c8:d7:0e:98:f6:b6:7e:b3:d7:8a:69:15:e9:74:
da:f9:99:9a:e6:6c:0b:1e:8e:91:ea:fa:9c:37:6a:
42:41:f4:31:4a:78:6f:f2:c1:88:bc:08:29:d7:17:
c2:ee:ba:b9:b5:66:10:5f:98:bf:4f:a3:9f:33:c5:
e1:f7:46:c3:f2:41:37:e3:b2:fa:de:58:85:5e:b3:
ed:b0:31:9c:c4:60:a1:3a:20:a1:69:18:f0:eb:15:
08:29:11:7b:99:7f:2b:80:aa:b6:21:c6:ac:78:e1:
d5:9a:2a:30:6d:9b:3c:29:23:06:49:29:5b:84:5c:
39:aa:a0:e9:af:05:78:eb:ce:fd:1e:20:06:ee:5b:
5e:a2:4c:03:b1:2f:d6:ef:0c:12:ce:42:d2:f4:84:
80:71:63:37:95:1e:6d:f6:1e:9f:12:74:7c:5b:43:
d7:75:49:8b:e2:1d:32:e3:e0:f5:fe:00:68:ec:41:
c8:c3:ad:a8:1c:df:6d:73:7f:88:f7:75:29:ab:86:
60:2b:96:6e:e1:b6:ce:f8:a9:41:71:13:ef:85:00:
1e:54:2a:58:13:1b:66:ba:ab:1b:c6:5e:e7:c1:5e:
0f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:4F:D4:5D:CD:D9:85:D9:E7:2A:3E:F2:26:C4:C3:4C:52:28:F5:9F
X509v3 Authority Key Identifier:
keyid:3A:5E:C2:8E:84:1F:29:F3:80:A7:CE:2C:B5:CD:56:73:70:08:21:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ol7CjoQfKfOAp84stc1Wc3AIIf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c12020-a1a1-400e-91f3-835599260ff6/1/hk_UXc3ZhdnnKj7yJsTDTFIo9Z8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c12020-a1a1-400e-91f3-835599260ff6/1/Ol7CjoQfKfOAp84stc1Wc3AIIf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.149.0/24
185.238.178.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:b6:ff:40:29:95:6f:90:39:2f:76:92:c3:99:d4:d6:37:dd:
fb:fa:b6:8a:d7:b9:5b:b2:32:30:33:14:61:62:3c:5c:b0:ec:
80:aa:ad:3e:ce:e7:f4:c7:e1:34:ab:5e:5d:7f:c0:7d:db:06:
7e:11:97:2e:ea:c6:47:31:50:49:6c:23:86:6d:0b:0c:1d:38:
e2:db:b5:fa:49:76:cf:ca:2d:16:ff:df:9a:58:2c:c1:22:2c:
e4:98:3d:a9:1f:cb:be:74:44:04:c1:da:c9:d1:f6:b8:a4:33:
f4:70:b5:7b:77:a7:25:25:16:66:63:6c:32:f9:fb:ee:2f:c5:
ec:f3:90:a9:64:fb:d8:57:6c:ec:ed:4d:a8:73:95:61:db:a2:
c1:f8:e2:18:1f:bf:1f:20:b7:31:d6:ff:41:81:b4:34:a1:bd:
6e:d9:53:11:58:c3:0a:61:a8:f6:87:42:92:54:11:6b:e9:65:
73:60:ef:12:6f:0a:12:fc:86:06:3f:7c:f6:46:a9:6a:b7:a5:
79:1d:fb:12:f6:7a:1c:6b:36:46:5c:58:c6:4a:5b:92:14:eb:
ee:0c:af:e4:c3:8d:0d:92:5c:07:e8:69:ec:c7:f1:a5:78:14:
46:38:03:4e:44:1d:fb:bb:bd:2c:7d:3a:8f:3e:7a:87:89:4d:
14:48:78:af
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAfA2VjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YTVlYzI4ZTg0MWYyOWYzODBhN2NlMmNiNWNkNTY3MzcwMDgyMWZkMB4XDTIyMDEw
MTEwNTUwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODY0ZmQ0NWRjZGQ5
ODVkOWU3MmEzZWYyMjZjNGMzNGM1MjI4ZjU5ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ00NqIVnl2qesUe1RHou1Fwhh50ocMfoEVQV0azjMjXDpj2
tn6z14ppFel02vmZmuZsCx6Oker6nDdqQkH0MUp4b/LBiLwIKdcXwu66ubVmEF+Y
v0+jnzPF4fdGw/JBN+Oy+t5YhV6z7bAxnMRgoTogoWkY8OsVCCkRe5l/K4CqtiHG
rHjh1ZoqMG2bPCkjBkkpW4RcOaqg6a8FeOvO/R4gBu5bXqJMA7Ev1u8MEs5C0vSE
gHFjN5UebfYenxJ0fFtD13VJi+IdMuPg9f4AaOxByMOtqBzfbXN/iPd1KauGYCuW
buG2zvipQXET74UAHlQqWBMbZrqrG8Ze58FeD/8CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSGT9RdzdmF2ecqPvImxMNMUij1nzAfBgNVHSMEGDAWgBQ6XsKOhB8p84Cn
ziy1zVZzcAgh/TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09sN0Nqb1FmS2ZPQXA4NHN0YzFXYzNBSUlmMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzkvYzEyMDIwLWExYTEtNDAwZS05MWYzLTgzNTU5OTI2MGZmNi8x
L2hrX1VYYzNaaGRubktqN3lKc1REVEZJbzlaOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzkv
YzEyMDIwLWExYTEtNDAwZS05MWYzLTgzNTU5OTI2MGZmNi8xL09sN0Nqb1FmS2ZP
QXA4NHN0YzFXYzNBSUlmMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEALmhlQMEALnusjANBgkqhkiG9w0B
AQsFAAOCAQEAjLb/QCmVb5A5L3aSw5nU1jfd+/q2ite5W7IyMDMUYWI8XLDsgKqt
Ps7n9MfhNKteXX/AfdsGfhGXLurGRzFQSWwjhm0LDB044tu1+kl2z8otFv/fmlgs
wSIs5Jg9qR/LvnREBMHaydH2uKQz9HC1e3enJSUWZmNsMvn77i/F7POQqWT72Fds
7O1NqHOVYduiwfjiGB+/HyC3Mdb/QYG0NKG9btlTEVjDCmGo9odCklQRa+llc2Dv
Em8KEvyGBj989kapareleR37EvZ6HGs2RlxYxkpbkhTr7gyv5MONDZJcB+hp7Mfx
pXgURjgDTkQd+7u9LH06jz56h4lNFEh4rw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:51 2023 by rpki-client on console-ams.rpki-client.org