Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6f5128-7cba-49c5-9b25-99c1b0cfc3a8/1/HIjoCqZENsm_BZmDAj35L3l4QyQ.roa
File: HIjoCqZENsm_BZmDAj35L3l4QyQ.roa (raw, json)
Hash identifier: vXa5n9xMcazbqL/Z8Gkzd+IX3s1NbE9Q9NHfPqAYqcM=
Subject key identifier: 1C:88:E8:0A:A6:44:36:C9:BF:05:99:83:02:3D:F9:2F:79:78:43:24
Certificate issuer: /CN=ea583d61f2e57a6b16ea4b1a9ca27bb250d748ef
Certificate serial: 09A61376
Authority key identifier: EA:58:3D:61:F2:E5:7A:6B:16:EA:4B:1A:9C:A2:7B:B2:50:D7:48:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6lg9YfLlemsW6ksanKJ7slDXSO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6f5128-7cba-49c5-9b25-99c1b0cfc3a8/1/HIjoCqZENsm_BZmDAj35L3l4QyQ.roa
Signing time: Sat 01 Jan 2022 13:01:07 +0000
ROA not before: Sat 01 Jan 2022 13:01:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8495
IP address blocks: 193.25.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161878902 (0x9a61376)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea583d61f2e57a6b16ea4b1a9ca27bb250d748ef
Validity
Not Before: Jan 1 13:01:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c88e80aa64436c9bf059983023df92f79784324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cb:95:18:89:a6:86:f5:cc:60:0a:3b:fd:43:
d3:9c:d6:ef:94:96:a1:9d:95:2b:90:61:c6:4f:7c:
35:64:63:3e:d7:07:5e:9a:d4:de:01:13:22:9f:03:
30:ed:a3:e5:20:62:f4:fb:cb:23:29:bb:e5:29:b4:
46:0b:3b:61:8d:b6:b8:16:22:ad:cd:d9:09:49:a7:
59:84:bf:72:a8:a7:92:3a:47:26:f5:de:00:f1:41:
a0:62:05:c2:c8:6c:68:d6:fb:7a:59:d8:e7:0e:11:
8c:d1:57:40:c8:a1:92:c4:3d:9d:04:7e:73:8b:c8:
3b:21:2a:6a:ed:ce:b0:64:ba:c8:15:91:22:08:81:
c7:b9:6e:78:7e:f0:b7:ab:f1:3b:63:1d:6f:2a:f5:
bb:56:8a:02:c4:bb:c2:1e:fd:d2:e9:c5:64:86:3a:
95:31:3a:55:bc:2a:fa:63:e8:09:2b:5e:93:cc:b1:
f0:df:89:c0:63:b9:89:67:ae:4e:af:34:0c:e3:1a:
bc:6c:ba:e0:6f:b5:a3:08:9d:cf:9b:39:d4:0c:9e:
ab:3f:90:5e:0a:8c:cc:9e:c6:d0:32:68:10:df:4f:
fc:e3:c8:67:e7:0e:94:30:1d:9b:c9:98:13:fd:91:
97:4f:39:c7:cb:21:f2:a6:33:2e:31:0e:f6:ae:ea:
77:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:88:E8:0A:A6:44:36:C9:BF:05:99:83:02:3D:F9:2F:79:78:43:24
X509v3 Authority Key Identifier:
keyid:EA:58:3D:61:F2:E5:7A:6B:16:EA:4B:1A:9C:A2:7B:B2:50:D7:48:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6lg9YfLlemsW6ksanKJ7slDXSO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6f5128-7cba-49c5-9b25-99c1b0cfc3a8/1/HIjoCqZENsm_BZmDAj35L3l4QyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6f5128-7cba-49c5-9b25-99c1b0cfc3a8/1/6lg9YfLlemsW6ksanKJ7slDXSO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.172.0/24
Signature Algorithm: sha256WithRSAEncryption
d8:7a:47:64:23:84:7d:b5:46:05:d9:51:30:64:a7:1e:bb:14:
52:19:51:c2:cc:3d:66:1b:c0:82:28:f0:ea:a0:b8:4f:36:22:
6d:2c:2d:fb:67:16:aa:9a:29:44:1d:50:c9:a0:be:1f:56:f0:
07:c3:c2:fd:d3:56:50:5f:ad:eb:e0:90:3f:75:91:f4:0a:df:
3a:c0:69:9f:e1:ac:5e:37:ce:10:28:f2:fe:4d:39:8b:70:39:
a0:86:c5:78:df:7e:b2:44:c1:22:42:56:f3:64:1c:61:22:47:
0e:56:6d:51:e8:ea:7c:e7:0c:92:5a:8d:6c:90:13:f8:55:70:
7d:6a:12:b7:63:44:c5:97:e8:8d:a5:ed:de:2a:cc:13:83:06:
8b:66:9e:1c:ad:9f:2d:0e:80:f4:80:27:57:12:5c:f3:30:c1:
81:30:bc:29:c0:a7:8a:f6:46:80:3b:f6:f3:3c:28:ac:68:74:
60:74:7a:3d:38:1f:17:2c:d2:42:24:0c:0b:f4:7e:8e:e1:27:
db:1a:84:d5:e5:a5:6d:33:c1:86:25:51:fb:80:4c:87:83:9a:
c6:0c:6b:ea:e0:2c:1c:b3:61:d4:de:74:64:3b:88:f9:c4:09:
00:69:b0:82:05:f6:de:e9:86:49:51:a1:d3:39:16:01:c1:db:
ec:6e:f7:a5
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECaYTdjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YTU4M2Q2MWYyZTU3YTZiMTZlYTRiMWE5Y2EyN2JiMjUwZDc0OGVmMB4XDTIyMDEw
MTEzMDEwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWM4OGU4MGFhNjQ0
MzZjOWJmMDU5OTgzMDIzZGY5MmY3OTc4NDMyNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALXLlRiJpob1zGAKO/1D05zW75SWoZ2VK5Bhxk98NWRjPtcH
XprU3gETIp8DMO2j5SBi9PvLIym75Sm0Rgs7YY22uBYirc3ZCUmnWYS/cqinkjpH
JvXeAPFBoGIFwshsaNb7elnY5w4RjNFXQMihksQ9nQR+c4vIOyEqau3OsGS6yBWR
IgiBx7lueH7wt6vxO2Mdbyr1u1aKAsS7wh790unFZIY6lTE6Vbwq+mPoCStek8yx
8N+JwGO5iWeuTq80DOMavGy64G+1owidz5s51Ayeqz+QXgqMzJ7G0DJoEN9P/OPI
Z+cOlDAdm8mYE/2Rl085x8sh8qYzLjEO9q7qd8ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQciOgKpkQ2yb8FmYMCPfkveXhDJDAfBgNVHSMEGDAWgBTqWD1h8uV6axbq
SxqconuyUNdI7zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZsZzlZZkxsZW1zVzZrc2FuS0o3c2xEWFNPOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2QvNmY1MTI4LTdjYmEtNDljNS05YjI1LTk5YzFiMGNmYzNhOC8x
L0hJam9DcVpFTnNtX0JabURBajM1TDNsNFF5US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Qv
NmY1MTI4LTdjYmEtNDljNS05YjI1LTk5YzFiMGNmYzNhOC8xLzZsZzlZZkxsZW1z
VzZrc2FuS0o3c2xEWFNPOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEZrDANBgkqhkiG9w0BAQsFAAOC
AQEA2HpHZCOEfbVGBdlRMGSnHrsUUhlRwsw9ZhvAgijw6qC4TzYibSwt+2cWqpop
RB1QyaC+H1bwB8PC/dNWUF+t6+CQP3WR9ArfOsBpn+GsXjfOECjy/k05i3A5oIbF
eN9+skTBIkJW82QcYSJHDlZtUejqfOcMklqNbJAT+FVwfWoSt2NExZfojaXt3irM
E4MGi2aeHK2fLQ6A9IAnVxJc8zDBgTC8KcCnivZGgDv28zworGh0YHR6PTgfFyzS
QiQMC/R+juEn2xqE1eWlbTPBhiVR+4BMh4Oaxgxr6uAsHLNh1N50ZDuI+cQJAGmw
ggX23umGSVGh0zkWAcHb7G73pQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:48 2024 by rpki-client on console-ams.rpki-client.org