Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/c73b3b-5b5c-4a77-8b80-d2b697aefa02/1/HL6Q_D2mKxyfw3rgZYaVbT_0t5g.roa
File: HL6Q_D2mKxyfw3rgZYaVbT_0t5g.roa (raw, json)
Hash identifier: 4bRhg2DyzWuDkL0GmTxvpV0mnMerm7atvByuer2vJCU=
Subject key identifier: 1C:BE:90:FC:3D:A6:2B:1C:9F:C3:7A:E0:65:86:95:6D:3F:F4:B7:98
Certificate issuer: /CN=2ee74296fce8d20befa18799dae6ec7831d61c5a
Certificate serial: 03D468D3
Authority key identifier: 2E:E7:42:96:FC:E8:D2:0B:EF:A1:87:99:DA:E6:EC:78:31:D6:1C:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LudClvzo0gvvoYeZ2ubseDHWHFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/c73b3b-5b5c-4a77-8b80-d2b697aefa02/1/HL6Q_D2mKxyfw3rgZYaVbT_0t5g.roa
Signing time: Thu 23 Jun 2022 05:22:32 +0000
ROA not before: Thu 23 Jun 2022 05:22:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25164
IP address blocks: 195.177.234.0/23 maxlen: 23
194.146.212.0/22 maxlen: 22
45.142.224.0/22 maxlen: 22
2a01:200::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64252115 (0x3d468d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ee74296fce8d20befa18799dae6ec7831d61c5a
Validity
Not Before: Jun 23 05:22:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1cbe90fc3da62b1c9fc37ae06586956d3ff4b798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:d0:58:3e:7d:6d:bc:d4:56:23:11:ab:33:6d:
4f:ec:5b:42:09:0c:de:ba:f9:63:2f:48:9a:46:bf:
56:3f:eb:e4:5f:b3:c4:25:55:65:a2:aa:45:a1:8f:
f1:7c:24:83:e0:a6:cd:00:a2:8e:a8:c3:e6:6e:e2:
90:c9:a4:53:91:0d:fd:80:06:30:9f:58:6c:06:63:
ff:3d:1e:48:3a:63:00:57:5e:5d:be:80:c5:b5:49:
4e:48:43:10:1e:23:89:55:8d:4b:8f:0c:9c:c0:3b:
27:2a:78:52:b1:ef:27:b4:55:fa:c3:63:bd:21:67:
52:fb:25:f0:5d:d4:88:48:73:83:9e:13:67:07:9b:
ec:47:92:fc:e4:8a:89:51:b6:99:61:2f:1c:43:16:
a0:ec:7e:2f:12:22:f4:f0:3c:22:77:1c:a7:a8:18:
59:ab:e4:18:80:1c:a5:95:f6:39:9a:25:dc:9c:45:
c6:b4:1d:68:42:ec:6e:fd:ba:0d:b2:5a:67:5e:e4:
b2:9d:4f:14:1b:e8:a0:06:87:be:cf:e2:08:77:8b:
40:75:78:88:4f:76:30:da:7b:e0:6d:7d:76:d5:56:
51:bb:4b:16:c7:f9:5d:58:39:3a:a1:b3:2e:ae:78:
b7:6d:13:1b:b6:5f:6f:46:8a:61:7c:ca:6f:4a:dd:
a3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:BE:90:FC:3D:A6:2B:1C:9F:C3:7A:E0:65:86:95:6D:3F:F4:B7:98
X509v3 Authority Key Identifier:
keyid:2E:E7:42:96:FC:E8:D2:0B:EF:A1:87:99:DA:E6:EC:78:31:D6:1C:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LudClvzo0gvvoYeZ2ubseDHWHFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/c73b3b-5b5c-4a77-8b80-d2b697aefa02/1/HL6Q_D2mKxyfw3rgZYaVbT_0t5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/c73b3b-5b5c-4a77-8b80-d2b697aefa02/1/LudClvzo0gvvoYeZ2ubseDHWHFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.224.0/22
194.146.212.0/22
195.177.234.0/23
IPv6:
2a01:200::/32
Signature Algorithm: sha256WithRSAEncryption
03:b8:32:db:7f:0a:f5:40:66:81:0b:f8:c9:1a:8c:98:d8:94:
3f:11:f9:04:06:ad:58:80:33:6c:b2:a9:9c:b9:fb:52:d2:90:
40:e1:78:c2:d6:3f:d9:4e:b2:ee:f5:e6:37:03:e7:ca:32:ad:
39:92:be:86:b7:1f:b9:1c:e1:8c:67:5f:aa:19:a2:15:d8:9e:
9e:0e:05:1c:b9:c9:bc:cd:a8:38:0f:c3:54:24:00:bb:d8:12:
24:bc:8a:1d:38:c7:c2:08:29:df:c9:ba:75:4f:96:f5:d5:b1:
e6:bb:58:54:cb:62:df:19:e8:62:40:ef:98:56:51:c4:47:c5:
10:6e:5c:50:12:4d:2a:75:00:fa:91:79:14:fd:52:7f:62:d2:
f3:60:33:67:a2:c4:0f:08:c9:a6:ec:4f:11:c8:87:57:db:7a:
1a:bc:4a:c1:f4:2c:2e:83:e7:80:ca:8e:d0:07:95:a1:a2:83:
ee:8e:9b:5d:ad:94:de:f5:2b:e5:b3:71:84:fa:d2:86:d6:e9:
e1:5c:85:75:b0:97:64:18:fb:e7:78:c4:f7:a2:70:ce:10:54:
8f:36:8c:dc:6b:49:b1:1f:9b:27:ed:29:97:05:01:32:8f:e5:
3b:23:72:e7:30:ad:db:e5:64:99:fc:df:e4:79:d2:b2:b5:6e:
8e:1a:ab:87
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgIEA9Ro0zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
ZWU3NDI5NmZjZThkMjBiZWZhMTg3OTlkYWU2ZWM3ODMxZDYxYzVhMB4XDTIyMDYy
MzA1MjIzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWNiZTkwZmMzZGE2
MmIxYzlmYzM3YWUwNjU4Njk1NmQzZmY0Yjc5ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPvQWD59bbzUViMRqzNtT+xbQgkM3rr5Yy9Imka/Vj/r5F+z
xCVVZaKqRaGP8Xwkg+CmzQCijqjD5m7ikMmkU5EN/YAGMJ9YbAZj/z0eSDpjAFde
Xb6AxbVJTkhDEB4jiVWNS48MnMA7Jyp4UrHvJ7RV+sNjvSFnUvsl8F3UiEhzg54T
Zweb7EeS/OSKiVG2mWEvHEMWoOx+LxIi9PA8Inccp6gYWavkGIAcpZX2OZol3JxF
xrQdaELsbv26DbJaZ17ksp1PFBvooAaHvs/iCHeLQHV4iE92MNp74G19dtVWUbtL
Fsf5XVg5OqGzLq54t20TG7Zfb0aKYXzKb0rdo+MCAwEAAaOCAiQwggIgMB0GA1Ud
DgQWBBQcvpD8PaYrHJ/DeuBlhpVtP/S3mDAfBgNVHSMEGDAWgBQu50KW/OjSC++h
h5na5ux4MdYcWjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0x1ZENsdnpvMGd2dm9ZZVoydWJzZURIV0hGby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTQvYzczYjNiLTViNWMtNGE3Ny04YjgwLWQyYjY5N2FlZmEwMi8x
L0hMNlFfRDJtS3h5ZnczcmdaWWFWYlRfMHQ1Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTQv
YzczYjNiLTViNWMtNGE3Ny04YjgwLWQyYjY5N2FlZmEwMi8xL0x1ZENsdnpvMGd2
dm9ZZVoydWJzZURIV0hGby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA6
BggrBgEFBQcBBwEB/wQrMCkwGAQCAAEwEgMEAi2O4AMEAsKS1AMEAcOx6jANBAIA
AjAHAwUAKgECADANBgkqhkiG9w0BAQsFAAOCAQEAA7gy238K9UBmgQv4yRqMmNiU
PxH5BAatWIAzbLKpnLn7UtKQQOF4wtY/2U6y7vXmNwPnyjKtOZK+hrcfuRzhjGdf
qhmiFdieng4FHLnJvM2oOA/DVCQAu9gSJLyKHTjHwggp38m6dU+W9dWx5rtYVMti
3xnoYkDvmFZRxEfFEG5cUBJNKnUA+pF5FP1Sf2LS82AzZ6LEDwjJpuxPEciHV9t6
GrxKwfQsLoPngMqO0AeVoaKD7o6bXa2U3vUr5bNxhPrShtbp4VyFdbCXZBj753jE
96JwzhBUjzaM3GtJsR+bJ+0plwUBMo/lOyNy5zCt2+Vkmfzf5HnSsrVujhqrhw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:29 2024 by rpki-client on console-ams.rpki-client.org