Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/e57dcf-36f9-4a4a-ae3c-0bb3affcc2d3/1/HHSAI62avF0UVzjRuMJgrtx10Bs.roa
File: HHSAI62avF0UVzjRuMJgrtx10Bs.roa (raw, json)
Hash identifier: MCWvXpo7cgthPJQOmZgHKUVt0Gh508DX+8ETCMJmEkc=
Subject key identifier: 1C:74:80:23:AD:9A:BC:5D:14:57:38:D1:B8:C2:60:AE:DC:75:D0:1B
Certificate issuer: /CN=919bf29e1aca23a515e11f66960b4eb95c80cfb9
Certificate serial: D87883
Authority key identifier: 91:9B:F2:9E:1A:CA:23:A5:15:E1:1F:66:96:0B:4E:B9:5C:80:CF:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kZvynhrKI6UV4R9mlgtOuVyAz7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/e57dcf-36f9-4a4a-ae3c-0bb3affcc2d3/1/HHSAI62avF0UVzjRuMJgrtx10Bs.roa
Signing time: Sat 01 Jan 2022 05:05:25 +0000
ROA not before: Sat 01 Jan 2022 05:05:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205911
IP address blocks: 185.51.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14186627 (0xd87883)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=919bf29e1aca23a515e11f66960b4eb95c80cfb9
Validity
Not Before: Jan 1 05:05:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c748023ad9abc5d145738d1b8c260aedc75d01b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ec:51:b2:1b:aa:dc:13:5b:a9:e0:fe:6e:a9:
c0:0d:f1:48:d5:2d:ff:fa:12:0d:4a:ab:36:9d:de:
98:3b:eb:16:4c:b2:06:5a:0e:1a:35:35:b6:9b:d0:
d4:bb:ce:66:be:ea:9d:d9:1e:66:10:7f:3e:e1:9e:
cc:1f:f7:ad:ef:c6:74:0e:76:b4:f7:1e:42:08:37:
b1:33:7d:47:61:cc:2b:99:87:c6:e1:1b:f4:c0:0e:
73:a7:0e:01:c3:c7:8c:73:65:85:c4:58:fa:2e:72:
1d:b8:4f:6b:82:56:6a:75:e2:dc:1e:ef:fb:e8:68:
69:50:01:43:1a:50:1e:fa:11:c7:cd:11:28:c3:2d:
3c:b0:4a:be:04:43:e8:3b:4d:11:ca:c1:72:15:f3:
8c:1f:a1:6c:bf:fc:23:a3:fc:15:28:42:e8:c9:f3:
2d:9b:04:ea:e7:b0:c7:09:e2:0e:46:c9:9b:ee:50:
62:d4:d2:c7:22:eb:95:e3:cf:df:36:b9:ba:75:8d:
c3:4d:9c:cc:ba:75:9a:f1:50:02:27:6b:13:99:58:
1c:7b:e1:ba:31:f4:7c:35:5e:67:c7:2f:fa:3c:26:
62:06:e3:b5:26:59:ec:0a:f8:c6:da:18:af:c1:b2:
92:ae:fc:9c:3e:a1:81:c1:ad:71:ee:8c:2a:ff:d5:
7d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:74:80:23:AD:9A:BC:5D:14:57:38:D1:B8:C2:60:AE:DC:75:D0:1B
X509v3 Authority Key Identifier:
keyid:91:9B:F2:9E:1A:CA:23:A5:15:E1:1F:66:96:0B:4E:B9:5C:80:CF:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kZvynhrKI6UV4R9mlgtOuVyAz7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/e57dcf-36f9-4a4a-ae3c-0bb3affcc2d3/1/HHSAI62avF0UVzjRuMJgrtx10Bs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/e57dcf-36f9-4a4a-ae3c-0bb3affcc2d3/1/kZvynhrKI6UV4R9mlgtOuVyAz7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:c4:93:32:e4:7f:56:de:0a:7a:39:82:17:27:b0:07:45:b4:
31:29:c1:a6:a4:70:f0:3e:52:84:a1:32:e2:21:34:1b:a2:00:
c7:49:22:c7:11:0e:82:2b:46:81:77:45:7d:25:22:cf:87:cd:
2d:cd:8c:8c:9c:1e:65:6f:d3:4c:38:e3:a5:af:66:58:a0:5b:
ff:f8:47:e4:2c:e8:57:e1:fc:87:85:f4:91:4e:58:10:7b:0c:
53:24:09:44:28:e8:95:5e:88:13:81:38:a5:cf:33:61:8e:44:
5f:a0:f2:4a:fe:d3:b5:0b:2e:27:b1:97:c1:a6:ec:f8:f8:3d:
b8:d8:fc:53:29:fb:9a:54:3e:84:6b:fb:40:08:01:70:bf:cf:
a0:58:6a:26:0b:85:55:b8:b9:51:91:c8:84:b6:1c:51:b1:c6:
af:91:71:e6:56:ac:ba:d2:2b:2a:bf:dc:52:1a:e8:6a:db:06:
dc:1d:6f:99:06:af:5a:09:e2:96:f5:5f:26:8f:d3:7d:dc:f1:
25:88:03:d6:d7:33:b9:f4:60:23:01:32:07:9c:ae:9c:24:8d:
76:19:22:8d:b0:f7:d3:1e:3d:ed:2d:6b:b9:25:e6:b4:4c:2d:
12:9b:6a:b4:3c:21:3a:28:53:49:f3:42:2a:63:6c:fb:fc:5c:
70:89:86:a1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEANh4gzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MTliZjI5ZTFhY2EyM2E1MTVlMTFmNjY5NjBiNGViOTVjODBjZmI5MB4XDTIyMDEw
MTA1MDUyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWM3NDgwMjNhZDlh
YmM1ZDE0NTczOGQxYjhjMjYwYWVkYzc1ZDAxYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM7sUbIbqtwTW6ng/m6pwA3xSNUt//oSDUqrNp3emDvrFkyy
BloOGjU1tpvQ1LvOZr7qndkeZhB/PuGezB/3re/GdA52tPceQgg3sTN9R2HMK5mH
xuEb9MAOc6cOAcPHjHNlhcRY+i5yHbhPa4JWanXi3B7v++hoaVABQxpQHvoRx80R
KMMtPLBKvgRD6DtNEcrBchXzjB+hbL/8I6P8FShC6MnzLZsE6uewxwniDkbJm+5Q
YtTSxyLrlePP3za5unWNw02czLp1mvFQAidrE5lYHHvhujH0fDVeZ8cv+jwmYgbj
tSZZ7Ar4xtoYr8Gykq78nD6hgcGtce6MKv/VfUECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQcdIAjrZq8XRRXONG4wmCu3HXQGzAfBgNVHSMEGDAWgBSRm/KeGsojpRXh
H2aWC065XIDPuTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2tadnluaHJLSTZVVjRSOW1sZ3RPdVZ5QXo3ay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2EvZTU3ZGNmLTM2ZjktNGE0YS1hZTNjLTBiYjNhZmZjYzJkMy8x
L0hIU0FJNjJhdkYwVVZ6alJ1TUpncnR4MTBCcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Ev
ZTU3ZGNmLTM2ZjktNGE0YS1hZTNjLTBiYjNhZmZjYzJkMy8xL2tadnluaHJLSTZV
VjRSOW1sZ3RPdVZ5QXo3ay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkzeDANBgkqhkiG9w0BAQsFAAOC
AQEAmsSTMuR/Vt4KejmCFyewB0W0MSnBpqRw8D5ShKEy4iE0G6IAx0kixxEOgitG
gXdFfSUiz4fNLc2MjJweZW/TTDjjpa9mWKBb//hH5CzoV+H8h4X0kU5YEHsMUyQJ
RCjolV6IE4E4pc8zYY5EX6DySv7TtQsuJ7GXwabs+Pg9uNj8Uyn7mlQ+hGv7QAgB
cL/PoFhqJguFVbi5UZHIhLYcUbHGr5Fx5lasutIrKr/cUhroatsG3B1vmQavWgni
lvVfJo/TfdzxJYgD1tczufRgIwEyB5yunCSNdhkijbD30x497S1ruSXmtEwtEptq
tDwhOihTSfNCKmNs+/xccImGoQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:55 2023 by rpki-client on console-ams.rpki-client.org