Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/HHeT0hBBv-gHgGTCBGkGGnC5RDI.roa
File: HHeT0hBBv-gHgGTCBGkGGnC5RDI.roa (raw, json)
Hash identifier: acbSV+k0FHVpoY7H4Xlrf0FYeWk/N0b3Ym4Kh7wI42k=
Subject key identifier: 1C:77:93:D2:10:41:BF:E8:07:80:64:C2:04:69:06:1A:70:B9:44:32
Certificate issuer: /CN=63703ca50c432acd7f1cbba7c07da2202299ca63
Certificate serial: 03A98236
Authority key identifier: 63:70:3C:A5:0C:43:2A:CD:7F:1C:BB:A7:C0:7D:A2:20:22:99:CA:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/HHeT0hBBv-gHgGTCBGkGGnC5RDI.roa
Signing time: Sat 01 Jan 2022 01:51:03 +0000
ROA not before: Sat 01 Jan 2022 01:51:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9158
IP address blocks: 193.3.233.0/24 maxlen: 24
2a10:e200::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61440566 (0x3a98236)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63703ca50c432acd7f1cbba7c07da2202299ca63
Validity
Not Before: Jan 1 01:51:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c7793d21041bfe8078064c20469061a70b94432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:86:e4:fa:2a:93:5f:8f:bf:36:66:8d:0f:c3:
6d:51:93:75:62:6d:a2:dd:a1:3f:30:ca:f1:0f:45:
09:df:90:72:43:66:a9:56:2a:3f:71:d4:84:1c:4a:
21:f7:98:ed:79:f8:b7:cc:cf:fe:97:19:08:09:1b:
2c:bc:db:9b:de:a7:f9:b6:78:db:bb:6c:5c:54:7e:
f8:46:60:91:8d:36:14:7b:06:62:23:f6:5e:ee:90:
cf:70:79:79:8f:3e:bd:e8:43:55:15:0d:19:7f:5f:
de:6d:8d:1b:19:2e:72:42:97:ec:74:1d:95:bd:8d:
84:37:0b:b4:e8:10:a7:9d:54:d6:43:b5:18:af:d5:
58:94:87:f0:61:22:d1:a5:ac:05:a9:8c:6c:d2:b2:
f1:f6:c0:29:f0:b0:7c:43:c0:b4:6c:68:6d:7f:ea:
6a:cb:bc:7b:54:bb:e6:35:62:b6:a2:c0:a6:e3:a0:
81:5a:64:a4:20:21:e1:08:26:f9:c7:04:8a:46:f6:
46:af:b7:5a:c1:5b:69:24:89:7c:6e:c6:f8:bf:9f:
48:a3:f3:24:57:de:0c:bf:94:29:74:84:39:12:95:
48:f7:f9:f8:45:1a:8b:e8:46:0e:5c:cc:8a:8d:0c:
71:f8:63:37:b3:62:aa:02:4e:69:d8:7f:3a:cb:20:
2c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:77:93:D2:10:41:BF:E8:07:80:64:C2:04:69:06:1A:70:B9:44:32
X509v3 Authority Key Identifier:
keyid:63:70:3C:A5:0C:43:2A:CD:7F:1C:BB:A7:C0:7D:A2:20:22:99:CA:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/HHeT0hBBv-gHgGTCBGkGGnC5RDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.233.0/24
IPv6:
2a10:e200::/32
Signature Algorithm: sha256WithRSAEncryption
35:de:0d:30:7f:d2:68:27:a6:5b:b8:33:0d:8f:9e:2e:e5:76:
18:25:20:94:8c:ed:7e:c1:46:89:e5:5b:4d:c8:9d:5a:da:7f:
88:94:a2:a8:4b:26:d7:bc:1e:98:8c:f0:a6:a2:28:f4:38:a9:
5d:e5:f3:ef:5c:2e:5f:24:15:0f:ad:07:21:65:63:36:6b:13:
09:c6:f9:dd:90:82:42:6d:ac:d3:d7:39:eb:da:f2:00:1d:60:
76:00:83:16:57:38:ac:c9:5e:d2:9a:47:99:c5:c7:f2:9c:7a:
5f:48:37:45:89:ba:8d:2e:0e:32:cc:88:b6:5b:b4:79:a8:d9:
29:ab:38:46:ef:b8:3b:f6:00:f1:00:40:86:b3:e6:34:99:0b:
0c:11:ba:7e:a0:a9:1f:0a:aa:80:aa:9a:aa:29:77:c7:7e:db:
88:ad:39:c8:c5:7c:85:45:44:ad:03:10:86:a2:ea:ef:87:74:
a9:0f:ec:7d:7c:49:59:bc:b9:ff:32:a5:b6:65:df:04:c8:dd:
ef:63:56:c3:4b:d5:91:e0:b3:3f:80:b6:7a:2f:1f:4b:92:84:
0d:53:a3:e1:42:e5:44:44:20:4e:fc:8e:04:9a:f2:f5:fa:b1:
6c:0f:fb:f8:75:f1:d6:f4:fe:76:ce:d3:10:a2:69:82:56:06:
1a:bd:61:6e
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEA6mCNjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MzcwM2NhNTBjNDMyYWNkN2YxY2JiYTdjMDdkYTIyMDIyOTljYTYzMB4XDTIyMDEw
MTAxNTEwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWM3NzkzZDIxMDQx
YmZlODA3ODA2NGMyMDQ2OTA2MWE3MGI5NDQzMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMWG5Poqk1+PvzZmjQ/DbVGTdWJtot2hPzDK8Q9FCd+QckNm
qVYqP3HUhBxKIfeY7Xn4t8zP/pcZCAkbLLzbm96n+bZ427tsXFR++EZgkY02FHsG
YiP2Xu6Qz3B5eY8+vehDVRUNGX9f3m2NGxkuckKX7HQdlb2NhDcLtOgQp51U1kO1
GK/VWJSH8GEi0aWsBamMbNKy8fbAKfCwfEPAtGxobX/qasu8e1S75jVitqLApuOg
gVpkpCAh4Qgm+ccEikb2Rq+3WsFbaSSJfG7G+L+fSKPzJFfeDL+UKXSEORKVSPf5
+EUai+hGDlzMio0McfhjN7NiqgJOadh/OssgLD0CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQcd5PSEEG/6AeAZMIEaQYacLlEMjAfBgNVHSMEGDAWgBRjcDylDEMqzX8c
u6fAfaIgIpnKYzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kzQThwUXhES3MxX0hMdW53SDJpSUNLWnltTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWMvYWYzMzRhLWY5YjMtNDE5ZC1iNTkwLWZiMGZiMWMwNmM3NC8x
L0hIZVQwaEJCdi1nSGdHVENCR2tHR25DNVJESS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWMv
YWYzMzRhLWY5YjMtNDE5ZC1iNTkwLWZiMGZiMWMwNmM3NC8xL1kzQThwUXhES3Mx
X0hMdW53SDJpSUNLWnltTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAMED6TANBAIAAjAHAwUAKhDiADAN
BgkqhkiG9w0BAQsFAAOCAQEANd4NMH/SaCemW7gzDY+eLuV2GCUglIztfsFGieVb
TcidWtp/iJSiqEsm17wemIzwpqIo9DipXeXz71wuXyQVD60HIWVjNmsTCcb53ZCC
Qm2s09c569ryAB1gdgCDFlc4rMle0ppHmcXH8px6X0g3RYm6jS4OMsyItlu0eajZ
Kas4Ru+4O/YA8QBAhrPmNJkLDBG6fqCpHwqqgKqaqil3x37biK05yMV8hUVErQMQ
hqLq74d0qQ/sfXxJWby5/zKltmXfBMjd72NWw0vVkeCzP4C2ei8fS5KEDVOj4ULl
REQgTvyOBJry9fqxbA/7+HXx1vT+ds7TEKJpglYGGr1hbg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:06 2024 by rpki-client on console-ams.rpki-client.org