Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/HbkCQewCwxtIuW2a-C4aJWP5mVs.roa
File: HbkCQewCwxtIuW2a-C4aJWP5mVs.roa (raw, json)
Hash identifier: wT7KR6I5WRynwpnHzW5D+qFlDugYVUCHIQMmgF021xs=
Subject key identifier: 1D:B9:02:41:EC:02:C3:1B:48:B9:6D:9A:F8:2E:1A:25:63:F9:99:5B
Certificate issuer: /CN=15982be200f2ed9be40fc983d94d9c726350a9d9
Certificate serial: 0182C16F088C0349FB28FD58BB79BA547341
Authority key identifier: 15:98:2B:E2:00:F2:ED:9B:E4:0F:C9:83:D9:4D:9C:72:63:50:A9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/HbkCQewCwxtIuW2a-C4aJWP5mVs.roa
Signing time: Sun 21 Aug 2022 17:24:15 +0000
ROA not before: Sun 21 Aug 2022 17:24:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 185.13.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c1:6f:08:8c:03:49:fb:28:fd:58:bb:79:ba:54:73:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15982be200f2ed9be40fc983d94d9c726350a9d9
Validity
Not Before: Aug 21 17:24:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1db90241ec02c31b48b96d9af82e1a2563f9995b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:93:6e:80:fd:c4:d1:75:13:2b:5e:9d:4a:58:
8d:e9:54:60:46:66:e4:6a:c8:33:7d:1f:bc:62:3a:
cc:19:95:7e:09:c9:eb:e7:f8:4b:8a:57:2d:63:b2:
ca:17:c6:8d:ea:2f:3e:a0:67:ab:4d:16:0e:e8:1b:
24:15:8c:16:c0:c7:a7:8a:07:c5:d4:53:ef:8f:27:
13:b8:d9:f2:59:a7:93:fd:9e:f0:6a:05:ae:79:eb:
ff:e8:6e:de:2a:8c:de:16:ac:81:ce:2f:14:5b:7b:
5b:d2:29:78:d3:24:2d:30:c5:fb:41:89:2a:90:d5:
ac:d8:19:8f:77:8a:c4:8b:8e:b3:2f:ac:93:71:80:
28:c1:67:1f:d4:d6:14:ab:e8:33:5c:44:2d:f5:a1:
6b:0e:0c:4c:2d:64:97:cc:ef:9c:06:28:72:17:6a:
93:fd:6d:50:6a:98:70:46:3c:95:aa:3b:ae:a9:aa:
f4:50:e5:e5:8b:2f:e2:f1:f0:98:cc:06:ec:9a:5c:
54:65:de:d1:48:c9:6d:95:01:38:d3:79:bf:da:0b:
48:52:c7:62:76:89:4f:19:bf:48:e8:3b:f4:77:84:
99:16:14:d1:9e:10:4a:e9:d7:f4:2e:f0:8f:14:9d:
2e:1b:a5:6f:85:2d:e9:97:f1:5a:ec:8e:7e:90:41:
82:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:B9:02:41:EC:02:C3:1B:48:B9:6D:9A:F8:2E:1A:25:63:F9:99:5B
X509v3 Authority Key Identifier:
keyid:15:98:2B:E2:00:F2:ED:9B:E4:0F:C9:83:D9:4D:9C:72:63:50:A9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/HbkCQewCwxtIuW2a-C4aJWP5mVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.224.0/24
Signature Algorithm: sha256WithRSAEncryption
36:72:f5:ed:bf:e6:13:4a:22:c4:d8:c4:ee:86:9a:78:41:2e:
f0:d2:0b:61:9f:28:1c:8d:46:54:0f:59:66:5c:c1:cf:91:a5:
bb:33:8b:c2:b8:ec:e4:a9:b5:cc:e8:e3:ff:21:a3:49:88:a5:
96:6a:26:e0:1a:e6:c5:cb:75:c5:18:c1:ee:24:ae:7c:30:7c:
9f:ad:df:62:f6:87:a9:f7:f7:a9:b5:cd:ef:ef:0e:9d:fd:4d:
f7:19:91:6c:08:53:e0:8b:10:1f:b3:5d:85:06:b9:7e:2e:89:
28:bc:e5:38:de:f3:1a:46:91:13:ac:d2:e3:6e:1f:37:7a:25:
7e:67:f3:2b:d4:58:c6:38:dd:38:26:2d:d3:95:3e:01:05:d7:
01:05:53:7a:9f:3a:97:37:d0:1f:5f:72:27:a9:ca:28:68:c9:
0b:e5:9c:bd:e9:d7:3e:1e:8b:d9:db:f7:bf:c3:ce:90:1b:d2:
f0:15:6c:66:0a:df:95:d4:29:f6:af:a6:7b:33:24:20:b5:77:
48:90:a2:1c:f4:4f:7e:e1:78:f7:5e:4b:de:f9:73:2d:c0:84:
a4:e4:50:f4:71:1f:a1:e2:bd:43:d8:25:d6:81:0b:43:72:04:
63:8c:a0:6d:08:55:b4:a1:b5:8e:0e:6d:3f:66:6b:a3:6c:c6:
cd:42:63:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYLBbwiMA0n7KP1Yu3m6VHNBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1OTgyYmUyMDBmMmVkOWJlNDBmYzk4M2Q5NGQ5YzcyNjM1
MGE5ZDkwHhcNMjIwODIxMTcyNDE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGI5MDI0MWVjMDJjMzFiNDhiOTZkOWFmODJlMWEyNTYzZjk5OTViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5NugP3E0XUTK16dSliN6VRgRmbk
asgzfR+8YjrMGZV+Ccnr5/hLilctY7LKF8aN6i8+oGerTRYO6BskFYwWwMenigfF
1FPvjycTuNnyWaeT/Z7wagWueev/6G7eKozeFqyBzi8UW3tb0il40yQtMMX7QYkq
kNWs2BmPd4rEi46zL6yTcYAowWcf1NYUq+gzXEQt9aFrDgxMLWSXzO+cBihyF2qT
/W1QaphwRjyVqjuuqar0UOXliy/i8fCYzAbsmlxUZd7RSMltlQE403m/2gtIUsdi
dolPGb9I6Dv0d4SZFhTRnhBK6df0LvCPFJ0uG6VvhS3pl/Fa7I5+kEGCCQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB25AkHsAsMbSLltmvguGiVj+ZlbMB8GA1UdIwQY
MBaAFBWYK+IA8u2b5A/Jg9lNnHJjUKnZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRlpncjRnRHk3WnZrRDhtRDJVMmNjbU5RcWRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS8zMGU2NTMtOWMwYi00MTY0LTlhN2Qt
Y2E3ZTZjM2FlOGNlLzEvSGJrQ1Fld0N3eHRJdVcyYS1DNGFKV1A1bVZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS8zMGU2NTMtOWMwYi00MTY0LTlhN2QtY2E3ZTZjM2FlOGNl
LzEvRlpncjRnRHk3WnZrRDhtRDJVMmNjbU5RcWRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQ3gMA0G
CSqGSIb3DQEBCwUAA4IBAQA2cvXtv+YTSiLE2MTuhpp4QS7w0gthnygcjUZUD1lm
XMHPkaW7M4vCuOzkqbXM6OP/IaNJiKWWaibgGubFy3XFGMHuJK58MHyfrd9i9oep
9/eptc3v7w6d/U33GZFsCFPgixAfs12FBrl+LokovOU43vMaRpETrNLjbh83eiV+
Z/Mr1FjGON04Ji3TlT4BBdcBBVN6nzqXN9AfX3InqcooaMkL5Zy96dc+HovZ2/e/
w86QG9LwFWxmCt+V1Cn2r6Z7MyQgtXdIkKIc9E9+4Xj3Xkve+XMtwISk5FD0cR+h
4r1D2CXWgQtDcgRjjKBtCFW0obWODm0/ZmujbMbNQmPh
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:46 2023 by rpki-client on console-ams.rpki-client.org