Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/3af1e6-7f6d-4ac8-a022-fab9bab2f894/1/HaxBUB3nLbNbScrGwcNhlGvabs8.roa
File: HaxBUB3nLbNbScrGwcNhlGvabs8.roa (raw, json)
Hash identifier: c2D+FqSJwfr3eDzGTtaiYflT3hR8ycx3ykNF+FMGLr4=
Subject key identifier: 1D:AC:41:50:1D:E7:2D:B3:5B:49:CA:C6:C1:C3:61:94:6B:DA:6E:CF
Certificate issuer: /CN=166dcaf076c3ec103117deaa67990c968bcd644d
Certificate serial: 02468803
Authority key identifier: 16:6D:CA:F0:76:C3:EC:10:31:17:DE:AA:67:99:0C:96:8B:CD:64:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fm3K8HbD7BAxF96qZ5kMlovNZE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/3af1e6-7f6d-4ac8-a022-fab9bab2f894/1/HaxBUB3nLbNbScrGwcNhlGvabs8.roa
Signing time: Wed 08 Jun 2022 19:33:02 +0000
ROA not before: Wed 08 Jun 2022 19:33:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 213.109.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38176771 (0x2468803)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=166dcaf076c3ec103117deaa67990c968bcd644d
Validity
Not Before: Jun 8 19:33:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1dac41501de72db35b49cac6c1c361946bda6ecf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2a:a4:c0:a3:8a:c0:2f:f1:aa:7b:db:d7:b0:
80:cd:fb:b1:6d:30:52:e2:b8:5f:08:48:75:08:4c:
fc:92:cd:ca:7c:89:a6:d7:c0:ed:34:72:a1:de:4e:
7f:b0:aa:f9:9d:ac:03:a0:1d:bc:6b:db:59:1b:cc:
95:12:28:f5:58:11:ba:e0:2b:95:96:54:cd:f5:24:
ce:84:ec:d9:7d:79:d9:a7:50:79:81:2a:40:66:c1:
fb:bc:fd:5e:47:69:73:1b:fe:45:8b:e8:54:5b:f1:
5e:01:b4:4c:35:29:f8:f2:e9:62:62:58:71:7f:b8:
ba:9d:d1:96:49:e6:88:a3:4e:5c:fb:0b:a3:c2:70:
c6:97:02:f7:3f:09:fe:c0:81:26:2d:28:83:fb:5f:
f7:92:e7:64:ff:fe:36:38:b6:87:f5:a7:b9:f7:a1:
5a:35:df:bc:b3:bc:22:05:e9:f4:4c:31:6d:9f:82:
59:80:cf:14:b0:3a:9b:b8:26:a4:df:98:8b:af:b4:
99:11:f0:e7:d6:67:23:0a:c6:07:3e:ae:9e:25:91:
7a:9a:12:73:8a:26:cb:c4:f0:54:ab:80:09:e5:22:
03:a1:ae:93:cd:a5:51:92:ff:4a:57:49:ab:38:b6:
f4:44:20:00:f9:f4:bc:41:0b:14:60:67:3a:53:88:
0b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:AC:41:50:1D:E7:2D:B3:5B:49:CA:C6:C1:C3:61:94:6B:DA:6E:CF
X509v3 Authority Key Identifier:
keyid:16:6D:CA:F0:76:C3:EC:10:31:17:DE:AA:67:99:0C:96:8B:CD:64:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fm3K8HbD7BAxF96qZ5kMlovNZE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/3af1e6-7f6d-4ac8-a022-fab9bab2f894/1/HaxBUB3nLbNbScrGwcNhlGvabs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/3af1e6-7f6d-4ac8-a022-fab9bab2f894/1/Fm3K8HbD7BAxF96qZ5kMlovNZE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.154.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:d5:5c:ec:13:11:7e:31:bb:07:97:37:c8:d9:99:1b:c6:5b:
f9:73:97:20:0e:11:b1:2c:75:9b:74:3e:04:21:e4:26:f6:c9:
58:27:3d:4b:2b:60:86:bf:ed:96:1b:89:ed:8d:01:94:9a:53:
46:1e:71:13:cd:1a:73:62:db:c0:63:9a:b6:77:1e:32:23:1e:
2f:10:04:68:c6:4f:5e:7c:3e:3a:56:ca:20:1a:b9:21:53:a6:
45:ad:34:cd:c9:be:57:2c:a0:9d:99:de:99:e5:ca:54:25:96:
96:18:7f:a5:cb:e8:8d:19:8f:8c:1e:27:a2:f8:9d:32:b8:10:
81:55:e1:93:d3:ec:8e:76:f6:37:ab:f8:c0:ac:92:da:10:b2:
e1:9c:13:51:cc:77:cd:ba:7a:ed:16:0b:6c:f3:56:80:b5:e2:
0a:c6:0a:99:56:d1:0f:6e:60:cc:b8:f7:5d:4e:a6:f3:05:65:
3e:65:7a:62:8c:c5:c7:3d:40:29:ff:9b:f4:fd:08:52:83:14:
cf:06:e3:b8:02:8e:cb:95:2b:ef:68:6f:a0:ef:76:17:ab:e7:
94:84:e6:7b:4e:0d:71:c0:2d:2f:70:f9:0c:b1:fe:5b:82:37:
6a:74:4b:c0:9d:d1:7b:b5:d0:c5:25:4e:44:7d:ba:86:c9:5c:
4e:b0:36:c6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAkaIAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NjZkY2FmMDc2YzNlYzEwMzExN2RlYWE2Nzk5MGM5NjhiY2Q2NDRkMB4XDTIyMDYw
ODE5MzMwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWRhYzQxNTAxZGU3
MmRiMzViNDljYWM2YzFjMzYxOTQ2YmRhNmVjZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJMqpMCjisAv8ap729ewgM37sW0wUuK4XwhIdQhM/JLNynyJ
ptfA7TRyod5Of7Cq+Z2sA6AdvGvbWRvMlRIo9VgRuuArlZZUzfUkzoTs2X152adQ
eYEqQGbB+7z9Xkdpcxv+RYvoVFvxXgG0TDUp+PLpYmJYcX+4up3RlknmiKNOXPsL
o8JwxpcC9z8J/sCBJi0og/tf95LnZP/+Nji2h/WnufehWjXfvLO8IgXp9EwxbZ+C
WYDPFLA6m7gmpN+Yi6+0mRHw59ZnIwrGBz6uniWRepoSc4omy8TwVKuACeUiA6Gu
k82lUZL/SldJqzi29EQgAPn0vEELFGBnOlOIC/sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQdrEFQHects1tJysbBw2GUa9puzzAfBgNVHSMEGDAWgBQWbcrwdsPsEDEX
3qpnmQyWi81kTTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ZtM0s4SGJEN0JBeEY5NnFaNWtNbG92TlpFMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTEvM2FmMWU2LTdmNmQtNGFjOC1hMDIyLWZhYjliYWIyZjg5NC8x
L0hheEJVQjNuTGJOYlNjckd3Y05obEd2YWJzOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTEv
M2FmMWU2LTdmNmQtNGFjOC1hMDIyLWZhYjliYWIyZjg5NC8xL0ZtM0s4SGJEN0JB
eEY5NnFaNWtNbG92TlpFMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANVtmjANBgkqhkiG9w0BAQsFAAOC
AQEAjNVc7BMRfjG7B5c3yNmZG8Zb+XOXIA4RsSx1m3Q+BCHkJvbJWCc9Sytghr/t
lhuJ7Y0BlJpTRh5xE80ac2LbwGOatnceMiMeLxAEaMZPXnw+OlbKIBq5IVOmRa00
zcm+VyygnZnemeXKVCWWlhh/pcvojRmPjB4novidMrgQgVXhk9Psjnb2N6v4wKyS
2hCy4ZwTUcx3zbp67RYLbPNWgLXiCsYKmVbRD25gzLj3XU6m8wVlPmV6YozFxz1A
Kf+b9P0IUoMUzwbjuAKOy5Ur72hvoO92F6vnlITme04NccAtL3D5DLH+W4I3anRL
wJ3Re7XQxSVORH26hslcTrA2xg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:27 2023 by rpki-client on console-fra.rpki-client.org