Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HNvWEWzwcfjIE6TMiWCTNLHKgcI.roa
File: HNvWEWzwcfjIE6TMiWCTNLHKgcI.roa (raw, json)
Hash identifier: LnVd9ogFh+yaQJ+NXiSdngp3sh1L84tcm/VkYa8LNQo=
Subject key identifier: 1C:DB:D6:11:6C:F0:71:F8:C8:13:A4:CC:89:60:93:34:B1:CA:81:C2
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17EE588D
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HNvWEWzwcfjIE6TMiWCTNLHKgcI.roa
Signing time: Sat 01 Jan 2022 04:54:48 +0000
ROA not before: Sat 01 Jan 2022 04:54:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211041
IP address blocks: 185.172.167.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401496205 (0x17ee588d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1cdbd6116cf071f8c813a4cc89609334b1ca81c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:82:84:27:69:cf:7b:4e:26:13:0e:f5:b3:7e:
c2:06:ea:be:71:6b:14:7e:f0:14:a3:6b:9a:b3:5b:
12:a4:38:4d:12:01:2c:f4:0b:42:55:30:6f:09:c0:
42:d3:b2:78:b1:86:78:db:e1:1a:2f:b2:b4:82:41:
71:a8:84:05:9f:b1:a2:5a:d6:dd:46:e1:7a:3a:6c:
24:39:4f:1f:c7:55:f3:45:c4:9a:10:e2:79:30:44:
2b:c8:83:f4:b8:8c:04:0a:c6:67:07:0b:e8:74:b1:
c5:21:32:7a:ea:a7:89:10:86:ac:4b:c4:c5:19:25:
2c:bd:d5:26:f5:1d:a6:15:ea:0c:a8:03:60:2a:85:
7f:78:d7:79:97:ef:c4:28:88:b3:0a:74:c1:fd:e0:
73:b3:df:02:77:9a:45:6b:ab:05:8a:c4:f4:d1:91:
cf:5b:0f:cd:33:41:03:85:5c:b4:ec:bc:8b:3f:b0:
6e:e3:74:dd:bb:4f:d7:80:19:09:5b:a4:9d:13:56:
19:0e:f4:1c:9b:28:1a:f9:18:78:ea:0f:7e:a4:a7:
53:56:5b:4c:61:c6:ab:61:0e:72:c9:65:c1:a9:df:
8e:23:82:6e:5a:41:e3:b0:8a:d5:d7:53:3e:2c:36:
df:9c:d6:84:6d:0a:b5:58:f8:28:e5:dc:07:25:d0:
87:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:DB:D6:11:6C:F0:71:F8:C8:13:A4:CC:89:60:93:34:B1:CA:81:C2
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HNvWEWzwcfjIE6TMiWCTNLHKgcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.167.0/24
Signature Algorithm: sha256WithRSAEncryption
78:14:b0:85:24:1e:a9:df:39:ce:06:e0:18:91:b8:a0:94:2c:
81:b5:44:d5:6d:7e:a1:52:df:d3:64:cd:6b:35:af:9b:72:a5:
64:be:46:0d:85:5f:d8:4f:fe:91:51:64:6a:70:f8:ed:4f:cd:
b9:fe:b1:80:dc:f2:10:c8:bb:86:f3:0c:fa:30:c5:09:44:4b:
66:04:08:9a:2c:61:58:74:73:54:4f:e7:41:51:6e:00:4a:36:
bd:dc:ee:30:b7:ca:d4:9a:58:70:e2:46:57:ba:4a:fa:a6:d5:
b2:c7:8d:a6:83:94:eb:86:3a:5e:b7:f1:4d:fa:fd:a9:e4:57:
d7:c4:f9:29:1e:60:12:2c:20:76:2b:86:17:1c:24:49:51:42:
fd:1d:d2:65:73:75:43:0b:29:45:fa:a9:f5:33:ee:d4:8b:da:
a5:7b:1d:c1:26:9f:bb:34:68:22:52:0e:ee:be:e5:1e:63:90:
e4:8f:54:6b:ee:3f:fc:f8:40:f7:67:87:dd:1e:6e:72:49:e7:
24:b5:b9:cf:77:7b:28:6f:0a:51:95:15:33:8a:a6:8b:d6:23:
af:ab:c3:28:f3:04:a7:27:af:8a:b8:97:5a:8b:7e:20:e2:b2:
23:f9:b5:42:14:df:9e:bc:9e:c7:ac:d6:be:c0:87:15:84:a5:
36:ca:2e:b6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF+5YjTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDEw
MTA0NTQ0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWNkYmQ2MTE2Y2Yw
NzFmOGM4MTNhNGNjODk2MDkzMzRiMWNhODFjMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALaChCdpz3tOJhMO9bN+wgbqvnFrFH7wFKNrmrNbEqQ4TRIB
LPQLQlUwbwnAQtOyeLGGeNvhGi+ytIJBcaiEBZ+xolrW3UbhejpsJDlPH8dV80XE
mhDieTBEK8iD9LiMBArGZwcL6HSxxSEyeuqniRCGrEvExRklLL3VJvUdphXqDKgD
YCqFf3jXeZfvxCiIswp0wf3gc7PfAneaRWurBYrE9NGRz1sPzTNBA4VctOy8iz+w
buN03btP14AZCVuknRNWGQ70HJsoGvkYeOoPfqSnU1ZbTGHGq2EOcsllwanfjiOC
blpB47CK1ddTPiw235zWhG0KtVj4KOXcByXQh0cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQc29YRbPBx+MgTpMyJYJM0scqBwjAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
L0hOdldFV3p3Y2ZqSUU2VE1pV0NUTkxIS2djSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmspzANBgkqhkiG9w0BAQsFAAOC
AQEAeBSwhSQeqd85zgbgGJG4oJQsgbVE1W1+oVLf02TNazWvm3KlZL5GDYVf2E/+
kVFkanD47U/Nuf6xgNzyEMi7hvMM+jDFCURLZgQImixhWHRzVE/nQVFuAEo2vdzu
MLfK1JpYcOJGV7pK+qbVsseNpoOU64Y6XrfxTfr9qeRX18T5KR5gEiwgdiuGFxwk
SVFC/R3SZXN1QwspRfqp9TPu1IvapXsdwSafuzRoIlIO7r7lHmOQ5I9Ua+4//PhA
92eH3R5ucknnJLW5z3d7KG8KUZUVM4qmi9Yjr6vDKPMEpyeviriXWot+IOKyI/m1
QhTfnryex6zWvsCHFYSlNsoutg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org