Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HE309rbiSJi-ohfnzffsOV7oV5Y.roa
File: HE309rbiSJi-ohfnzffsOV7oV5Y.roa (raw, json)
Hash identifier: z7krj8nS648YK5GxfkqkTaJzgIO+GwBZKd4NR3RzsP4=
Subject key identifier: 1C:4D:F4:F6:B6:E2:48:98:BE:A2:17:E7:CD:F7:EC:39:5E:E8:57:96
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17DAC806
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HE309rbiSJi-ohfnzffsOV7oV5Y.roa
Signing time: Sat 01 Jan 2022 04:54:36 +0000
ROA not before: Sat 01 Jan 2022 04:54:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201106
IP address blocks: 185.193.37.0/24 maxlen: 32
2a06:82c1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400214022 (0x17dac806)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c4df4f6b6e24898bea217e7cdf7ec395ee85796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:68:fb:ee:e0:25:20:65:ef:c4:51:9e:28:60:
61:4a:1f:4f:9e:42:f7:81:ca:2c:5e:26:3d:58:fb:
0e:2b:07:59:31:9b:4a:2f:c8:8a:39:82:dd:c3:65:
60:ba:b3:38:2b:c8:43:09:11:6f:e7:ae:b4:78:f5:
51:0b:88:fe:b9:b1:b0:83:28:b1:86:4d:ea:77:f8:
ac:b5:c7:64:eb:a3:9b:bc:7b:81:19:d9:af:9f:b5:
f8:58:87:5a:56:b2:97:bc:40:2a:3d:31:a8:7b:2c:
f5:af:dd:4f:62:31:5e:aa:6e:5e:9d:ad:1d:3f:3f:
85:2a:cb:cc:7f:fd:52:11:e7:98:46:f6:12:82:0b:
42:66:56:14:04:54:05:11:fa:81:be:cf:82:8c:1c:
ea:12:6e:61:38:f1:ab:fb:c3:c1:f0:5d:08:7b:05:
a2:da:16:06:04:43:d0:15:7e:eb:16:35:23:30:81:
05:21:1a:c2:e6:47:78:1f:37:6d:3a:87:03:c0:cd:
c7:0a:ed:bb:33:c0:09:61:af:98:06:31:ff:c3:1d:
7c:23:c8:70:7f:79:e5:69:a9:1d:c7:25:58:73:bc:
62:51:19:5b:b4:88:91:a7:1f:8d:ac:8c:e1:3a:cb:
62:a7:9e:1c:51:b1:5a:b5:54:65:b2:9a:cf:f3:13:
b1:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:4D:F4:F6:B6:E2:48:98:BE:A2:17:E7:CD:F7:EC:39:5E:E8:57:96
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HE309rbiSJi-ohfnzffsOV7oV5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.37.0/24
IPv6:
2a06:82c1::/48
Signature Algorithm: sha256WithRSAEncryption
7e:c6:84:9d:4b:9a:94:b7:85:b3:e2:6c:b9:1b:69:20:5a:17:
02:18:57:0d:b9:6b:a1:dc:72:c8:39:2d:46:5f:40:2c:45:47:
c3:35:55:10:c9:61:7d:25:7e:a4:e9:73:f8:5a:cd:e9:fe:12:
52:14:b1:c0:20:1e:e2:f7:31:42:6b:a5:eb:24:41:bb:36:b5:
95:7a:88:a9:f6:e9:b5:97:bf:cb:e8:34:21:17:04:bf:37:96:
b8:4f:f6:df:51:dd:0e:d0:f1:70:fe:08:10:e0:a8:f1:dd:ed:
82:a7:e3:c4:c8:3a:91:47:98:ff:f1:be:33:9b:c7:1d:ec:35:
ef:bb:9c:6c:80:24:66:bf:e4:a7:f7:cd:fc:22:41:7d:69:31:
95:c7:fb:45:ba:08:41:b0:e5:47:cd:24:23:95:6f:c3:82:3e:
37:c8:2e:15:3f:9f:e5:ba:1b:a0:28:e0:1f:85:b6:6c:20:32:
58:8a:af:72:3b:b9:86:ad:ff:c6:25:21:a2:31:53:d9:87:da:
83:d6:2e:94:c6:ff:a3:21:18:69:18:61:9a:af:21:ff:f6:11:
c0:1f:25:c3:e2:80:8b:cc:20:ef:00:5a:f1:d1:a0:04:f9:b3:
e2:ce:10:ac:8a:3c:8a:1a:b6:26:25:10:67:6c:09:b9:48:75:
ad:73:7f:c0
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEF9rIBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDEw
MTA0NTQzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWM0ZGY0ZjZiNmUy
NDg5OGJlYTIxN2U3Y2RmN2VjMzk1ZWU4NTc5NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPRo++7gJSBl78RRnihgYUofT55C94HKLF4mPVj7DisHWTGb
Si/IijmC3cNlYLqzOCvIQwkRb+eutHj1UQuI/rmxsIMosYZN6nf4rLXHZOujm7x7
gRnZr5+1+FiHWlayl7xAKj0xqHss9a/dT2IxXqpuXp2tHT8/hSrLzH/9UhHnmEb2
EoILQmZWFARUBRH6gb7Pgowc6hJuYTjxq/vDwfBdCHsFotoWBgRD0BV+6xY1IzCB
BSEawuZHeB83bTqHA8DNxwrtuzPACWGvmAYx/8MdfCPIcH955WmpHcclWHO8YlEZ
W7SIkacfjayM4TrLYqeeHFGxWrVUZbKaz/MTsXkCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQcTfT2tuJImL6iF+fN9+w5XuhXljAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
L0hFMzA5cmJpU0ppLW9oZm56ZmZzT1Y3b1Y1WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEALnBJTAPBAIAAjAJAwcAKgaCwQAA
MA0GCSqGSIb3DQEBCwUAA4IBAQB+xoSdS5qUt4Wz4my5G2kgWhcCGFcNuWuh3HLI
OS1GX0AsRUfDNVUQyWF9JX6k6XP4Ws3p/hJSFLHAIB7i9zFCa6XrJEG7NrWVeoip
9um1l7/L6DQhFwS/N5a4T/bfUd0O0PFw/ggQ4Kjx3e2Cp+PEyDqRR5j/8b4zm8cd
7DXvu5xsgCRmv+Sn9838IkF9aTGVx/tFughBsOVHzSQjlW/Dgj43yC4VP5/luhug
KOAfhbZsIDJYiq9yO7mGrf/GJSGiMVPZh9qD1i6Uxv+jIRhpGGGaryH/9hHAHyXD
4oCLzCDvAFrx0aAE+bPizhCsijyKGrYmJRBnbAm5SHWtc3/A
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:32 2024 by rpki-client on console-ams.rpki-client.org