Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/HK_6jD68TW9EHTQ2_mgwDuYF-dI.roa
File: HK_6jD68TW9EHTQ2_mgwDuYF-dI.roa (raw, json)
Hash identifier: cyici3kVK+39yBzlToM9UBFTCbonjHIXFXXhDtGxyb0=
Subject key identifier: 1C:AF:FA:8C:3E:BC:4D:6F:44:1D:34:36:FE:68:30:0E:E6:05:F9:D2
Certificate issuer: /CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Certificate serial: 0728B1EF
Authority key identifier: BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/HK_6jD68TW9EHTQ2_mgwDuYF-dI.roa
Signing time: Sat 01 Jan 2022 04:56:37 +0000
ROA not before: Sat 01 Jan 2022 04:56:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.31.15.0/24 maxlen: 24
193.31.60.0/24 maxlen: 24
193.31.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120107503 (0x728b1ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Validity
Not Before: Jan 1 04:56:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1caffa8c3ebc4d6f441d3436fe68300ee605f9d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:38:5f:e4:61:eb:94:bf:93:d9:9c:51:91:24:
48:b6:2f:b0:58:7e:9a:8b:3e:79:dc:30:2b:7f:eb:
c6:97:24:c2:da:ee:f4:e7:2c:60:4c:a4:94:a0:24:
68:62:7b:9c:e6:e2:a9:f3:29:ab:2f:31:57:8d:ce:
9c:43:fc:64:35:7b:df:05:4a:b5:42:26:c3:f8:e4:
76:f6:9b:6e:43:c5:49:6c:70:74:59:5b:96:15:46:
e9:bc:ed:53:e0:97:d3:da:e8:21:ff:53:25:8a:72:
b7:bf:26:74:f7:7d:dd:dd:b5:d4:47:2d:f6:af:06:
19:1a:ef:24:0a:cb:e9:94:53:7a:f9:b3:6d:a5:c3:
fb:74:90:58:5f:a5:38:ad:88:bc:f5:3b:d0:0e:69:
0c:64:43:07:d2:b5:95:31:39:57:e6:8c:f6:7c:e1:
9f:06:0e:b0:1e:d6:4e:fc:95:7e:22:28:11:7e:bc:
68:de:31:80:e1:6e:fd:b1:de:68:8a:00:a5:89:7f:
5d:31:d9:10:75:a6:54:de:82:20:df:53:85:a5:92:
d2:2f:4c:34:e4:7b:2f:61:e1:a0:e9:39:1f:60:82:
90:e9:25:06:b1:b6:6c:5b:c4:ac:f5:93:3f:b1:d1:
48:c1:ce:d9:81:75:2f:06:1e:c9:79:44:fd:65:8e:
19:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:AF:FA:8C:3E:BC:4D:6F:44:1D:34:36:FE:68:30:0E:E6:05:F9:D2
X509v3 Authority Key Identifier:
keyid:BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/HK_6jD68TW9EHTQ2_mgwDuYF-dI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/vx1f6v05F0clv-S--RvSfHsvb5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.15.0/24
193.31.60.0/24
193.31.62.0/24
Signature Algorithm: sha256WithRSAEncryption
82:81:da:30:8f:7d:86:09:1e:7c:d4:da:b7:7d:b2:73:1c:ff:
74:0a:4e:12:16:86:e6:66:ea:54:56:f7:31:20:04:33:c5:ec:
b9:e1:21:a7:83:cf:59:9f:05:6a:92:92:a2:2e:73:08:ad:00:
e3:4d:13:f5:d6:d0:20:98:51:c7:22:04:fd:24:4e:9c:c0:3b:
6f:94:46:08:ad:f9:e6:37:9c:7f:ea:6b:34:04:39:69:b7:28:
1e:50:a9:13:27:48:58:fd:75:fa:4a:30:6d:09:73:e1:83:be:
c7:e1:de:35:5a:fa:6c:a5:fd:6b:2d:d3:8b:62:b1:a5:94:9c:
f8:da:42:95:d4:67:28:f1:f7:b9:ff:5f:d9:e1:a5:9a:9f:5f:
c9:5b:3c:6f:54:72:4a:bd:a7:8f:ab:ac:86:b6:3c:57:36:59:
20:c4:a1:de:35:79:6d:e0:22:e2:b3:a8:62:1a:3c:56:52:79:
94:5c:81:5b:14:22:97:f0:ff:0d:14:ad:8d:74:b7:d6:ad:87:
d9:6f:0a:54:79:c4:7a:6d:1e:d1:a9:50:b8:9b:2c:ba:be:09:
67:cd:18:84:9f:8c:c1:7c:c9:c3:d8:91:e6:f3:38:14:f6:28:
ab:6a:23:14:0c:69:c0:4e:bf:74:a6:7d:d8:bb:ed:a4:09:9c:
48:8c:50:6c
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEByix7zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZjFkNWZlYWZkMzkxNzQ3MjViZmU0YmVmOTFiZDI3YzdiMmY2ZjkxMB4XDTIyMDEw
MTA0NTYzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWNhZmZhOGMzZWJj
NGQ2ZjQ0MWQzNDM2ZmU2ODMwMGVlNjA1ZjlkMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMU4X+Rh65S/k9mcUZEkSLYvsFh+mos+edwwK3/rxpckwtru
9OcsYEyklKAkaGJ7nObiqfMpqy8xV43OnEP8ZDV73wVKtUImw/jkdvabbkPFSWxw
dFlblhVG6bztU+CX09roIf9TJYpyt78mdPd93d211Ect9q8GGRrvJArL6ZRTevmz
baXD+3SQWF+lOK2IvPU70A5pDGRDB9K1lTE5V+aM9nzhnwYOsB7WTvyVfiIoEX68
aN4xgOFu/bHeaIoApYl/XTHZEHWmVN6CIN9ThaWS0i9MNOR7L2HhoOk5H2CCkOkl
BrG2bFvErPWTP7HRSMHO2YF1LwYeyXlE/WWOGZ8CAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBQcr/qMPrxNb0QdNDb+aDAO5gX50jAfBgNVHSMEGDAWgBS/HV/q/TkXRyW/
5L75G9J8ey9vkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3Z4MWY2djA1RjBjbHYtUy0tUnZTZkhzdmI1RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjMvNjA2NWQyLTEwM2UtNGFiNy1iZmIzLTFhOGM4NDJhZmUyYS8x
L0hLXzZqRDY4VFc5RUhUUTJfbWd3RHVZRi1kSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjMv
NjA2NWQyLTEwM2UtNGFiNy1iZmIzLTFhOGM4NDJhZmUyYS8xL3Z4MWY2djA1RjBj
bHYtUy0tUnZTZkhzdmI1RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAMEfDwMEAMEfPAMEAMEfPjANBgkq
hkiG9w0BAQsFAAOCAQEAgoHaMI99hgkefNTat32ycxz/dApOEhaG5mbqVFb3MSAE
M8XsueEhp4PPWZ8FapKSoi5zCK0A400T9dbQIJhRxyIE/SROnMA7b5RGCK355jec
f+prNAQ5abcoHlCpEydIWP11+kowbQlz4YO+x+HeNVr6bKX9ay3Ti2KxpZSc+NpC
ldRnKPH3uf9f2eGlmp9fyVs8b1RySr2nj6ushrY8VzZZIMSh3jV5beAi4rOoYho8
VlJ5lFyBWxQil/D/DRStjXS31q2H2W8KVHnEem0e0alQuJssur4JZ80YhJ+MwXzJ
w9iR5vM4FPYoq2ojFAxpwE6/dKZ92LvtpAmcSIxQbA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:29 2024 by rpki-client on console-ams.rpki-client.org