Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/HpPZDRcVDo6r1NI1oOyIvSG3oZw.roa
File: HpPZDRcVDo6r1NI1oOyIvSG3oZw.roa (raw, json)
Hash identifier: w8QJFS739qX5AyZbm5He/UQog5R7UuRs7Y7inpiSCo8=
Subject key identifier: 1E:93:D9:0D:17:15:0E:8E:AB:D4:D2:35:A0:EC:88:BD:21:B7:A1:9C
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 092A60E6
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/HpPZDRcVDo6r1NI1oOyIvSG3oZw.roa
Signing time: Sat 30 Apr 2022 07:19:04 +0000
ROA not before: Sat 30 Apr 2022 07:19:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210107
IP address blocks: 2a10:f40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153772262 (0x92a60e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Apr 30 07:19:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e93d90d17150e8eabd4d235a0ec88bd21b7a19c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:fe:89:a9:d1:b6:99:95:5c:51:c2:65:70:3b:
d8:ce:c6:33:6d:8d:e0:f8:34:6f:66:c1:97:d4:49:
88:0f:ef:61:75:07:a1:c6:a1:16:20:33:8d:b5:8d:
58:c3:27:80:00:8b:53:d9:b0:17:7a:7a:20:27:84:
a6:d6:6b:a6:cb:8a:f5:03:d2:36:b8:e8:f6:08:c7:
97:fd:9a:d2:57:b4:59:f6:5f:b9:cb:71:a2:15:33:
b9:ea:ec:fb:6d:10:15:44:c9:e3:ef:d6:87:52:6f:
f2:37:60:6b:8d:6a:78:06:29:16:83:77:4e:8a:e0:
f4:35:07:95:ec:0b:8e:e4:a7:a6:5b:60:eb:f5:33:
10:d3:33:a9:06:12:98:99:8e:0a:cc:6a:fa:0b:3b:
c8:ed:ab:9e:a1:28:7f:1b:c7:ea:22:75:be:c7:cb:
a5:83:48:74:f1:d7:52:87:b1:76:46:3d:e9:46:f6:
88:47:3a:bd:86:67:71:f0:aa:65:0d:6e:df:16:20:
8b:70:30:40:7a:3b:03:cb:48:a5:fa:c8:70:fa:80:
a5:33:ec:13:6a:eb:87:31:0f:69:bd:0f:f6:ee:7f:
c6:05:29:ea:19:f0:75:eb:69:4a:31:18:a9:51:36:
17:67:e0:86:33:29:a9:6c:a9:3f:30:b3:a0:6c:43:
02:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:93:D9:0D:17:15:0E:8E:AB:D4:D2:35:A0:EC:88:BD:21:B7:A1:9C
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/HpPZDRcVDo6r1NI1oOyIvSG3oZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:f40::/29
Signature Algorithm: sha256WithRSAEncryption
85:72:43:41:5b:61:94:62:d4:33:dc:8c:6c:b5:19:93:17:4a:
7a:bb:06:ed:91:c7:56:19:bf:58:bd:be:f4:7b:24:ca:64:66:
ca:4f:cf:94:78:9a:72:79:5b:7e:1a:37:5f:35:e3:31:87:bd:
61:db:3d:65:46:ea:cb:3b:1f:fd:2b:ce:f5:52:9f:56:c0:ae:
59:2f:6e:0d:84:cc:da:f2:ed:e4:c4:71:5a:e8:58:b8:02:a4:
f1:95:16:df:e5:e0:8c:98:ad:ec:05:a8:e8:0e:8a:0e:13:96:
6f:ae:47:1f:c8:4a:08:18:d5:9a:5f:e3:d0:81:4f:48:bb:46:
19:be:26:ae:a8:cf:7a:dd:a8:2a:45:21:43:bb:a3:de:e3:57:
70:f5:9d:2f:d8:2a:ef:26:8a:10:1d:8d:ab:d8:2f:fe:d5:05:
76:ac:5a:00:5c:47:40:79:2b:11:9e:df:15:1d:64:0e:f7:c7:
62:65:c6:ec:3c:a0:d5:9d:c8:90:a6:16:02:57:59:9e:67:6b:
01:15:f5:ce:49:9b:1e:0d:7e:7a:45:1c:c0:e5:30:18:75:14:
1f:33:a7:6d:00:d7:0a:d5:19:1e:ab:77:82:79:44:bc:a6:59:
7d:79:4c:b4:2f:b9:bf:81:fd:fa:e2:d7:01:d3:30:47:63:34:
e7:bf:b4:42
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIECSpg5jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
Mjc2MDNhOTNiY2EzMWIwMThmNTExZjZkNGIwYjc1NDZlOTYzMzYyMB4XDTIyMDQz
MDA3MTkwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWU5M2Q5MGQxNzE1
MGU4ZWFiZDRkMjM1YTBlYzg4YmQyMWI3YTE5YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPH+ianRtpmVXFHCZXA72M7GM22N4Pg0b2bBl9RJiA/vYXUH
ocahFiAzjbWNWMMngACLU9mwF3p6ICeEptZrpsuK9QPSNrjo9gjHl/2a0le0WfZf
uctxohUzuers+20QFUTJ4+/Wh1Jv8jdga41qeAYpFoN3Torg9DUHlewLjuSnpltg
6/UzENMzqQYSmJmOCsxq+gs7yO2rnqEofxvH6iJ1vsfLpYNIdPHXUoexdkY96Ub2
iEc6vYZncfCqZQ1u3xYgi3AwQHo7A8tIpfrIcPqApTPsE2rrhzEPab0P9u5/xgUp
6hnwdetpSjEYqVE2F2fghjMpqWypPzCzoGxDAmECAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBQek9kNFxUOjqvU0jWg7Ii9IbehnDAfBgNVHSMEGDAWgBSCdgOpO8oxsBj1
EfbUsLdUbpYzYjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2duWURxVHZLTWJBWTlSSDIxTEMzVkc2V00ySS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWIvOTFhZjY2LWQzOTQtNDJmYS1hMGM2LWIxNmNiNGRmYWRkMy8x
L0hwUFpEUmNWRG82cjFOSTFvT3lJdlNHM29ady5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWIv
OTFhZjY2LWQzOTQtNDJmYS1hMGM2LWIxNmNiNGRmYWRkMy8xL2duWURxVHZLTWJB
WTlSSDIxTEMzVkc2V00ySS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoQD0AwDQYJKoZIhvcNAQELBQAD
ggEBAIVyQ0FbYZRi1DPcjGy1GZMXSnq7Bu2Rx1YZv1i9vvR7JMpkZspPz5R4mnJ5
W34aN1814zGHvWHbPWVG6ss7H/0rzvVSn1bArlkvbg2EzNry7eTEcVroWLgCpPGV
Ft/l4IyYrewFqOgOig4Tlm+uRx/ISggY1Zpf49CBT0i7Rhm+Jq6oz3rdqCpFIUO7
o97jV3D1nS/YKu8mihAdjavYL/7VBXasWgBcR0B5KxGe3xUdZA73x2Jlxuw8oNWd
yJCmFgJXWZ5nawEV9c5Jmx4NfnpFHMDlMBh1FB8zp20A1wrVGR6rd4J5RLymWX15
TLQvub+B/fri1wHTMEdjNOe/tEI=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:44 2023 by rpki-client on console-ams.rpki-client.org