Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/HuhXCASaDWZMAhV4CATjwc5Df4Q.roa
File: HuhXCASaDWZMAhV4CATjwc5Df4Q.roa (raw, json)
Hash identifier: YKGRatIjayG//1wrE8+HbM43Ajpvw1QbzyvvTnir7GA=
Subject key identifier: 1E:E8:57:08:04:9A:0D:66:4C:02:15:78:08:04:E3:C1:CE:43:7F:84
Certificate issuer: /CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Certificate serial: 0551D671
Authority key identifier: 5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/HuhXCASaDWZMAhV4CATjwc5Df4Q.roa
Signing time: Sat 01 Jan 2022 06:56:03 +0000
ROA not before: Sat 01 Jan 2022 06:56:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 55933
IP address blocks: 193.42.24.0/23 maxlen: 24
193.42.24.0/22 maxlen: 24
193.42.26.0/24 maxlen: 24
2a06:5040:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89249393 (0x551d671)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Validity
Not Before: Jan 1 06:56:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ee85708049a0d664c0215780804e3c1ce437f84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8a:97:b8:7d:9f:dd:68:61:07:bb:b2:99:1c:
32:37:ff:5c:e8:d0:81:ff:2b:8d:06:1a:da:a7:66:
ad:04:60:69:5c:63:be:1a:73:3a:8b:2e:bd:5f:c2:
90:e4:bc:39:11:38:4c:68:41:47:86:4d:23:f7:cb:
1b:32:28:17:93:96:9d:0b:f5:a8:ba:95:14:b1:41:
43:b1:25:d8:c2:1c:da:8a:d3:3d:ff:c8:8b:ab:23:
da:26:7d:58:a4:94:0f:9e:58:c6:e6:08:f5:81:1b:
9a:67:55:74:c4:de:57:d0:23:49:e3:93:55:8d:46:
43:cc:b7:4c:0d:46:74:c1:f6:49:4b:ce:ce:54:65:
a9:7a:36:b8:81:49:1f:73:1f:4e:d9:30:15:e5:eb:
f6:f6:30:f2:54:2e:2e:f1:c4:d4:c3:5a:b1:9a:2c:
43:f1:dc:d6:84:03:73:15:64:e0:37:c8:b3:d8:31:
82:2e:52:11:43:c0:83:51:3f:52:20:9b:30:e8:df:
48:51:50:34:2b:f4:f0:ed:ff:3a:49:7a:3b:d1:ef:
b9:53:6e:40:75:05:65:4b:3d:31:51:01:f0:07:57:
e0:7b:33:c1:fa:9a:b9:83:fb:70:be:a5:ea:96:14:
08:b6:ec:50:bd:7f:6f:cc:b8:c4:05:cf:e0:88:d1:
e8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E8:57:08:04:9A:0D:66:4C:02:15:78:08:04:E3:C1:CE:43:7F:84
X509v3 Authority Key Identifier:
keyid:5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/HuhXCASaDWZMAhV4CATjwc5Df4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.24.0/22
IPv6:
2a06:5040:3::/48
Signature Algorithm: sha256WithRSAEncryption
28:5e:ce:94:db:3d:b7:8e:49:29:b0:9f:33:dc:03:70:14:1e:
da:1b:0a:81:a9:65:72:73:9f:e3:7a:15:02:32:c6:ad:b0:ea:
ac:39:85:f4:5c:29:95:ac:a8:cc:0e:cd:fa:6f:49:b3:ca:d0:
a5:0a:7d:46:46:fc:89:e7:eb:5b:2d:ed:3a:54:7f:68:11:f4:
ec:73:f2:73:3e:79:de:c5:a3:e1:4d:48:88:39:f9:1d:a4:db:
21:e5:5e:d9:64:e4:73:29:bc:73:98:21:b2:f8:43:e1:e6:12:
77:39:dd:7b:31:f4:9e:92:dd:ee:48:be:39:d7:9b:f2:cb:36:
48:49:5c:2f:ab:af:75:b3:08:b0:86:58:2f:d8:4e:6c:7b:90:
2e:c0:bd:bd:22:51:c7:30:69:71:ee:ec:cb:bf:4d:a1:89:37:
1e:14:f3:03:94:c7:ff:48:b5:9c:52:1c:45:1f:e2:e4:90:ef:
43:a5:f2:ed:1c:f1:5b:0a:8e:a9:16:d9:f6:6f:77:f1:0a:67:
be:1d:83:f1:c6:8a:f0:1f:17:a7:41:e1:11:d6:c2:49:9b:5f:
ff:7a:fe:05:56:5e:3f:2d:18:d2:6d:83:76:54:0b:90:f6:ce:
f0:11:b4:99:da:94:86:35:30:e2:bc:11:b0:12:8a:d3:9e:80:
25:8b:6f:cc
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEBVHWcTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YjJkZDlmZTYyOGI2YmMxMDE0MWRlMDI0MTc2NmExYjdhNjMxOTNmMB4XDTIyMDEw
MTA2NTYwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWVlODU3MDgwNDlh
MGQ2NjRjMDIxNTc4MDgwNGUzYzFjZTQzN2Y4NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK6Kl7h9n91oYQe7spkcMjf/XOjQgf8rjQYa2qdmrQRgaVxj
vhpzOosuvV/CkOS8ORE4TGhBR4ZNI/fLGzIoF5OWnQv1qLqVFLFBQ7El2MIc2orT
Pf/Ii6sj2iZ9WKSUD55YxuYI9YEbmmdVdMTeV9AjSeOTVY1GQ8y3TA1GdMH2SUvO
zlRlqXo2uIFJH3MfTtkwFeXr9vYw8lQuLvHE1MNasZosQ/Hc1oQDcxVk4DfIs9gx
gi5SEUPAg1E/UiCbMOjfSFFQNCv08O3/Okl6O9HvuVNuQHUFZUs9MVEB8AdX4Hsz
wfqauYP7cL6l6pYUCLbsUL1/b8y4xAXP4IjR6H0CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQe6FcIBJoNZkwCFXgIBOPBzkN/hDAfBgNVHSMEGDAWgBRbLdn+YotrwQFB
3gJBdmobemMZPzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1d5M1pfbUtMYThFQlFkNENRWFpxRzNwakdUOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGYvNGRlODg5LWRjOWQtNDFlNS1iM2FhLTBkN2I1NTFmODI4Yy8x
L0h1aFhDQVNhRFdaTUFoVjRDQVRqd2M1RGY0US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGYv
NGRlODg5LWRjOWQtNDFlNS1iM2FhLTBkN2I1NTFmODI4Yy8xL1d5M1pfbUtMYThF
QlFkNENRWFpxRzNwakdUOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAsEqGDAPBAIAAjAJAwcAKgZQQAAD
MA0GCSqGSIb3DQEBCwUAA4IBAQAoXs6U2z23jkkpsJ8z3ANwFB7aGwqBqWVyc5/j
ehUCMsatsOqsOYX0XCmVrKjMDs36b0mzytClCn1GRvyJ5+tbLe06VH9oEfTsc/Jz
PnnexaPhTUiIOfkdpNsh5V7ZZORzKbxzmCGy+EPh5hJ3Od17MfSekt3uSL4515vy
yzZISVwvq691swiwhlgv2E5se5AuwL29IlHHMGlx7uzLv02hiTceFPMDlMf/SLWc
UhxFH+LkkO9DpfLtHPFbCo6pFtn2b3fxCme+HYPxxorwHxenQeER1sJJm1//ev4F
Vl4/LRjSbYN2VAuQ9s7wEbSZ2pSGNTDivBGwEorTnoAli2/M
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:57 2023 by rpki-client on console-ams.rpki-client.org