Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/49924d-7699-4af4-aff9-22aa4f3a7615/1/H9qETBEvWrV0Q3P2XNzcov9Ge9Q.roa
File: H9qETBEvWrV0Q3P2XNzcov9Ge9Q.roa (raw, json)
Hash identifier: xz9YXGBf2niSWRZjX1U0QyqzZSFcztZvaWsBz1zC5Yo=
Subject key identifier: 1F:DA:84:4C:11:2F:5A:B5:74:43:73:F6:5C:DC:DC:A2:FF:46:7B:D4
Certificate issuer: /CN=46055e82002cc0bd7b9987e5d7365420eafd4970
Certificate serial: 065FAA72
Authority key identifier: 46:05:5E:82:00:2C:C0:BD:7B:99:87:E5:D7:36:54:20:EA:FD:49:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RgVeggAswL17mYfl1zZUIOr9SXA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/49924d-7699-4af4-aff9-22aa4f3a7615/1/H9qETBEvWrV0Q3P2XNzcov9Ge9Q.roa
Signing time: Sat 01 Jan 2022 08:56:56 +0000
ROA not before: Sat 01 Jan 2022 08:56:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12735
IP address blocks: 193.160.144.0/24 maxlen: 24
2a0c:bec0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106932850 (0x65faa72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46055e82002cc0bd7b9987e5d7365420eafd4970
Validity
Not Before: Jan 1 08:56:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fda844c112f5ab5744373f65cdcdca2ff467bd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5d:42:8b:09:12:6d:21:45:da:0c:79:24:8b:
f3:32:40:5f:6a:de:90:31:4e:fc:f7:2f:ff:a5:7c:
6d:80:b5:8f:4a:3d:75:d0:3c:63:87:9a:a3:61:92:
ba:d2:c3:94:9f:bf:33:29:c8:3b:80:0d:6d:ad:88:
4b:da:fb:b9:9e:39:bf:2b:2b:47:6d:9a:07:13:2d:
e3:7b:d7:0c:3e:98:e5:d9:1a:c3:28:3a:a1:73:63:
f8:e4:79:38:21:af:58:f8:b2:04:93:73:5e:79:11:
bc:2f:dd:97:2c:17:0e:73:4a:ab:36:c3:31:fc:40:
27:1a:1a:97:98:1e:4c:d9:c4:c2:ea:5e:25:22:aa:
6d:f6:64:f3:e8:8a:04:2b:16:9d:b9:a7:c2:80:80:
30:6d:5b:67:11:0e:24:d2:37:b4:2e:f8:bf:e6:51:
91:01:57:39:70:1a:e2:83:00:c4:36:72:c2:45:2c:
62:7a:4f:b2:1c:65:9e:8d:1a:9d:19:a7:0b:2e:7d:
cb:10:60:eb:97:6c:d1:9d:03:8c:01:9f:93:93:3d:
ce:ab:90:6e:2e:fc:6b:76:07:3a:cc:4c:e9:d4:90:
15:38:07:a5:e5:45:5f:11:63:8f:38:b7:26:54:46:
d5:a9:f4:69:bf:bf:4d:91:2a:4d:fe:45:2e:65:ee:
3b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:DA:84:4C:11:2F:5A:B5:74:43:73:F6:5C:DC:DC:A2:FF:46:7B:D4
X509v3 Authority Key Identifier:
keyid:46:05:5E:82:00:2C:C0:BD:7B:99:87:E5:D7:36:54:20:EA:FD:49:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RgVeggAswL17mYfl1zZUIOr9SXA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/49924d-7699-4af4-aff9-22aa4f3a7615/1/H9qETBEvWrV0Q3P2XNzcov9Ge9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/49924d-7699-4af4-aff9-22aa4f3a7615/1/RgVeggAswL17mYfl1zZUIOr9SXA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.144.0/24
IPv6:
2a0c:bec0::/29
Signature Algorithm: sha256WithRSAEncryption
04:ed:89:01:ca:32:a1:8c:8a:4e:86:72:48:99:f6:d5:0b:e5:
2c:8d:de:7b:72:6b:48:1b:3f:df:c0:d3:6f:03:0d:a4:cd:06:
a1:92:c9:2c:fe:47:2f:cb:38:45:3e:7f:2b:09:e3:aa:c3:f2:
da:b2:96:9c:49:43:7e:7e:5b:43:16:be:20:a2:e1:17:20:d5:
51:93:3c:12:9a:65:67:2f:04:78:fa:c6:18:9f:64:a1:e5:2d:
9b:f0:3c:44:bf:aa:13:64:12:a9:3d:96:06:fe:85:d0:23:a4:
ca:37:fe:5a:df:bf:a4:e6:82:86:c9:3e:8b:1e:67:2e:30:fe:
e8:2c:9c:14:44:46:bd:92:f0:1f:7c:11:71:7f:bd:e4:3f:8f:
f6:cb:23:69:82:5a:d0:c3:21:9a:c2:73:63:ec:c7:91:09:0f:
6a:1f:36:51:e2:66:40:4b:31:95:90:b5:b0:04:ba:36:b9:d9:
06:6d:52:00:c5:ad:91:ae:60:91:bb:af:e0:75:65:b9:61:f0:
ee:c4:24:c0:f3:d4:cf:eb:bb:d1:d6:b5:be:34:6d:93:76:38:
33:93:1d:6c:58:c7:09:14:99:c2:6e:59:a9:1f:30:ac:63:2e:
de:9c:f2:c9:e9:17:96:1f:0c:05:b0:e6:41:18:be:70:a6:56:
49:f8:d1:54
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBl+qcjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NjA1NWU4MjAwMmNjMGJkN2I5OTg3ZTVkNzM2NTQyMGVhZmQ0OTcwMB4XDTIyMDEw
MTA4NTY1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWZkYTg0NGMxMTJm
NWFiNTc0NDM3M2Y2NWNkY2RjYTJmZjQ2N2JkNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL9dQosJEm0hRdoMeSSL8zJAX2rekDFO/Pcv/6V8bYC1j0o9
ddA8Y4eao2GSutLDlJ+/MynIO4ANba2IS9r7uZ45vysrR22aBxMt43vXDD6Y5dka
wyg6oXNj+OR5OCGvWPiyBJNzXnkRvC/dlywXDnNKqzbDMfxAJxoal5geTNnEwupe
JSKqbfZk8+iKBCsWnbmnwoCAMG1bZxEOJNI3tC74v+ZRkQFXOXAa4oMAxDZywkUs
YnpPshxlno0anRmnCy59yxBg65ds0Z0DjAGfk5M9zquQbi78a3YHOsxM6dSQFTgH
peVFXxFjjzi3JlRG1an0ab+/TZEqTf5FLmXuO78CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQf2oRMES9atXRDc/Zc3Nyi/0Z71DAfBgNVHSMEGDAWgBRGBV6CACzAvXuZ
h+XXNlQg6v1JcDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1JnVmVnZ0Fzd0wxN21ZZmwxelpVSU9yOVNYQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzMvNDk5MjRkLTc2OTktNGFmNC1hZmY5LTIyYWE0ZjNhNzYxNS8x
L0g5cUVUQkV2V3JWMFEzUDJYTnpjb3Y5R2U5US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzMv
NDk5MjRkLTc2OTktNGFmNC1hZmY5LTIyYWE0ZjNhNzYxNS8xL1JnVmVnZ0Fzd0wx
N21ZZmwxelpVSU9yOVNYQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAMGgkDANBAIAAjAHAwUDKgy+wDAN
BgkqhkiG9w0BAQsFAAOCAQEABO2JAcoyoYyKToZySJn21QvlLI3ee3JrSBs/38DT
bwMNpM0GoZLJLP5HL8s4RT5/KwnjqsPy2rKWnElDfn5bQxa+IKLhFyDVUZM8Eppl
Zy8EePrGGJ9koeUtm/A8RL+qE2QSqT2WBv6F0COkyjf+Wt+/pOaChsk+ix5nLjD+
6CycFERGvZLwH3wRcX+95D+P9ssjaYJa0MMhmsJzY+zHkQkPah82UeJmQEsxlZC1
sAS6NrnZBm1SAMWtka5gkbuv4HVluWHw7sQkwPPUz+u70da1vjRtk3Y4M5MdbFjH
CRSZwm5ZqR8wrGMu3pzyyekXlh8MBbDmQRi+cKZWSfjRVA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:21 2023 by rpki-client on console-ams.rpki-client.org