Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/a763ed-beb0-43cb-baa3-95ab81b77691/1/HlIvDLWio2rQM67Pq2gQY4L4hh8.roa
File: HlIvDLWio2rQM67Pq2gQY4L4hh8.roa (raw, json)
Hash identifier: 4DCtxI2nD9JG9QHyi0Q8O9QL0c6ec3G/Wm1BWYNCQ0c=
Subject key identifier: 1E:52:2F:0C:B5:A2:A3:6A:D0:33:AE:CF:AB:68:10:63:82:F8:86:1F
Certificate issuer: /CN=18e0e9a3d20cfac6cbe3ccf74ab5784a77682933
Certificate serial: 0A9C685B
Authority key identifier: 18:E0:E9:A3:D2:0C:FA:C6:CB:E3:CC:F7:4A:B5:78:4A:77:68:29:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GODpo9IM-sbL48z3SrV4SndoKTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/a763ed-beb0-43cb-baa3-95ab81b77691/1/HlIvDLWio2rQM67Pq2gQY4L4hh8.roa
Signing time: Sat 01 Jan 2022 07:54:55 +0000
ROA not before: Sat 01 Jan 2022 07:54:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12826
IP address blocks: 185.55.164.0/22 maxlen: 22
91.151.64.0/20 maxlen: 20
2a00:ef60::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178022491 (0xa9c685b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18e0e9a3d20cfac6cbe3ccf74ab5784a77682933
Validity
Not Before: Jan 1 07:54:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e522f0cb5a2a36ad033aecfab68106382f8861f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ad:a2:d8:c8:a1:0b:ca:94:86:3a:34:43:15:
da:be:cb:e7:77:ad:b4:46:fa:cf:bf:97:86:73:e6:
5b:07:73:a1:ca:4d:5e:3b:b6:27:9e:e3:f9:fc:31:
05:9f:89:0b:b7:f3:b3:5a:0b:59:eb:45:d6:18:d7:
eb:df:df:28:2d:ea:b1:60:22:4e:7b:02:5b:97:2f:
16:12:ac:f2:07:c7:87:fd:c9:52:89:d3:d6:31:a2:
ab:3d:70:36:44:8f:7f:73:42:21:da:aa:c9:45:10:
b3:d7:93:38:2a:f1:f3:d3:71:30:1e:f7:49:04:09:
80:90:50:ed:2c:4f:23:a0:6c:7c:0c:9b:9d:9c:c6:
b7:c7:ab:60:25:fc:b5:d4:bd:84:c6:3c:75:90:be:
a6:59:96:57:09:a1:ab:90:e7:ab:4e:a0:ea:c2:29:
fe:8f:d0:11:77:36:39:a1:4f:cb:cc:5d:e3:ef:37:
0b:99:60:ef:c5:0a:72:c5:90:b2:1a:5b:ec:dd:eb:
fd:5e:87:a0:23:bb:c0:bb:27:8f:01:c3:24:aa:79:
1c:ed:9c:50:21:95:3a:9c:81:1b:ec:3e:31:2d:dd:
09:f6:e9:c4:12:43:81:6b:a9:62:e7:5e:e9:a9:00:
22:37:4f:f1:94:1a:93:c2:1e:57:d4:fc:fc:49:f4:
5b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:52:2F:0C:B5:A2:A3:6A:D0:33:AE:CF:AB:68:10:63:82:F8:86:1F
X509v3 Authority Key Identifier:
keyid:18:E0:E9:A3:D2:0C:FA:C6:CB:E3:CC:F7:4A:B5:78:4A:77:68:29:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GODpo9IM-sbL48z3SrV4SndoKTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/a763ed-beb0-43cb-baa3-95ab81b77691/1/HlIvDLWio2rQM67Pq2gQY4L4hh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/a763ed-beb0-43cb-baa3-95ab81b77691/1/GODpo9IM-sbL48z3SrV4SndoKTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.151.64.0/20
185.55.164.0/22
IPv6:
2a00:ef60::/32
Signature Algorithm: sha256WithRSAEncryption
23:18:00:7f:ed:58:d4:c6:6d:5c:71:25:fe:7d:85:c3:f4:3e:
5f:aa:ea:27:6f:ff:68:51:04:a3:80:67:bc:1e:7e:f2:de:3b:
48:54:b4:22:9d:f1:9e:a3:8c:c4:c6:d1:f2:1c:08:d4:f5:be:
4d:d1:2f:3e:9c:ff:dd:31:25:26:2f:c3:d1:41:ff:33:fd:a3:
dd:d6:fd:0c:1c:c9:7a:20:5d:2d:5c:c1:27:ba:c3:6f:44:ec:
9a:83:16:e9:a4:b6:49:a3:d1:ea:e5:50:e1:ae:a8:60:d3:3e:
27:a3:2b:69:b8:ec:c2:bc:29:0e:bb:93:48:6f:a2:ad:7c:4b:
4a:c2:a6:be:60:e1:69:bf:04:9b:25:43:6c:13:7b:7a:7c:4d:
da:e5:75:b8:1a:06:36:88:68:a1:5c:6a:bf:bc:61:b9:48:c1:
38:a7:93:00:b2:07:66:64:77:7a:2c:df:b8:ff:23:f9:64:02:
b4:8b:3e:b7:a0:8e:db:f0:52:68:5d:0f:a4:61:4f:58:9d:32:
d1:ee:19:90:48:33:a5:e6:53:c2:6d:aa:ad:03:75:6b:74:58:
4f:4c:64:a2:14:9f:ee:86:3c:57:8f:e3:af:d5:b8:73:e6:7a:
7d:0d:35:17:54:45:f0:a1:27:da:ea:9e:2b:3d:cd:2e:f4:be:
72:aa:dd:6f
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIECpxoWzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
OGUwZTlhM2QyMGNmYWM2Y2JlM2NjZjc0YWI1Nzg0YTc3NjgyOTMzMB4XDTIyMDEw
MTA3NTQ1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWU1MjJmMGNiNWEy
YTM2YWQwMzNhZWNmYWI2ODEwNjM4MmY4ODYxZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKCtotjIoQvKlIY6NEMV2r7L53ettEb6z7+XhnPmWwdzocpN
Xju2J57j+fwxBZ+JC7fzs1oLWetF1hjX69/fKC3qsWAiTnsCW5cvFhKs8gfHh/3J
UonT1jGiqz1wNkSPf3NCIdqqyUUQs9eTOCrx89NxMB73SQQJgJBQ7SxPI6BsfAyb
nZzGt8erYCX8tdS9hMY8dZC+plmWVwmhq5Dnq06g6sIp/o/QEXc2OaFPy8xd4+83
C5lg78UKcsWQshpb7N3r/V6HoCO7wLsnjwHDJKp5HO2cUCGVOpyBG+w+MS3dCfbp
xBJDgWupYude6akAIjdP8ZQak8IeV9T8/En0W60CAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBQeUi8MtaKjatAzrs+raBBjgviGHzAfBgNVHSMEGDAWgBQY4Omj0gz6xsvj
zPdKtXhKd2gpMzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dPRHBvOUlNLXNiTDQ4ejNTclY0U25kb0tUTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGUvYTc2M2VkLWJlYjAtNDNjYi1iYWEzLTk1YWI4MWI3NzY5MS8x
L0hsSXZETFdpbzJyUU02N1BxMmdRWTRMNGhoOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGUv
YTc2M2VkLWJlYjAtNDNjYi1iYWEzLTk1YWI4MWI3NzY5MS8xL0dPRHBvOUlNLXNi
TDQ4ejNTclY0U25kb0tUTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEBFuXQAMEArk3pDANBAIAAjAHAwUA
KgDvYDANBgkqhkiG9w0BAQsFAAOCAQEAIxgAf+1Y1MZtXHEl/n2Fw/Q+X6rqJ2//
aFEEo4BnvB5+8t47SFS0Ip3xnqOMxMbR8hwI1PW+TdEvPpz/3TElJi/D0UH/M/2j
3db9DBzJeiBdLVzBJ7rDb0TsmoMW6aS2SaPR6uVQ4a6oYNM+J6MrabjswrwpDruT
SG+irXxLSsKmvmDhab8EmyVDbBN7enxN2uV1uBoGNohooVxqv7xhuUjBOKeTALIH
ZmR3eizfuP8j+WQCtIs+t6CO2/BSaF0PpGFPWJ0y0e4ZkEgzpeZTwm2qrQN1a3RY
T0xkohSf7oY8V4/jr9W4c+Z6fQ01F1RF8KEn2uqeKz3NLvS+cqrdbw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:19 2023 by rpki-client on console-fra.rpki-client.org