Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/73f23a-e977-41c3-922d-b27c3412426a/1/H5nUDqvvStH1MIOhxZVn4c25uWY.roa
File: H5nUDqvvStH1MIOhxZVn4c25uWY.roa (raw, json)
Hash identifier: izJcmvj/skmTf16XUyD+4CWYXs/ztzF4bA1sUcX2IDY=
Subject key identifier: 1F:99:D4:0E:AB:EF:4A:D1:F5:30:83:A1:C5:95:67:E1:CD:B9:B9:66
Certificate issuer: /CN=3e1ae15be86eb0c4d9a764cc7a8f65995bf8c90e
Certificate serial: 027904
Authority key identifier: 3E:1A:E1:5B:E8:6E:B0:C4:D9:A7:64:CC:7A:8F:65:99:5B:F8:C9:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PhrhW-husMTZp2TMeo9lmVv4yQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/73f23a-e977-41c3-922d-b27c3412426a/1/H5nUDqvvStH1MIOhxZVn4c25uWY.roa
Signing time: Mon 24 Jan 2022 18:11:50 +0000
ROA not before: Mon 24 Jan 2022 18:11:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49788
IP address blocks: 185.30.224.0/22 maxlen: 22
2a04:45c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162052 (0x27904)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e1ae15be86eb0c4d9a764cc7a8f65995bf8c90e
Validity
Not Before: Jan 24 18:11:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f99d40eabef4ad1f53083a1c59567e1cdb9b966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:83:52:75:23:2b:88:93:13:87:28:03:99:eb:
f9:b3:4e:1a:e4:8c:fc:a8:63:24:1b:2a:d0:9b:f8:
53:ab:18:48:75:3c:37:4e:01:3f:a9:a1:20:fd:9c:
aa:26:d4:da:78:55:a7:89:90:f8:d4:ed:5a:18:16:
cd:34:97:2b:ae:b1:e2:5b:95:bf:74:72:74:5b:92:
a6:9a:42:63:4c:70:f7:3b:90:7b:a4:1c:e7:25:0a:
23:0c:e6:01:61:44:4c:30:1f:5f:8f:3f:a9:a4:87:
a9:07:bd:ae:61:73:e8:9c:9c:67:0c:36:7a:fc:2c:
f3:82:bc:b9:5a:f2:76:ff:f5:fa:63:6f:db:86:b0:
c1:75:3a:d0:8a:a0:09:e1:af:3f:96:35:3e:97:b9:
c5:e9:7b:d7:2b:6c:3d:be:33:63:96:e9:d8:be:a1:
4d:e7:39:5e:ef:fd:82:f3:7c:1f:da:2e:f4:fd:eb:
c3:95:4c:a3:cc:77:97:81:f6:36:75:12:bb:d1:b1:
b8:eb:86:0b:9e:bb:c4:80:9e:d3:e3:bc:19:2f:13:
42:08:a4:16:c1:8b:d4:72:c4:02:b3:91:04:cb:c0:
0a:f3:fe:f7:8d:99:21:7f:e8:c9:70:cb:70:86:13:
f5:b3:34:40:5f:77:cd:56:8c:ba:18:2c:3e:94:38:
1e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:99:D4:0E:AB:EF:4A:D1:F5:30:83:A1:C5:95:67:E1:CD:B9:B9:66
X509v3 Authority Key Identifier:
keyid:3E:1A:E1:5B:E8:6E:B0:C4:D9:A7:64:CC:7A:8F:65:99:5B:F8:C9:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PhrhW-husMTZp2TMeo9lmVv4yQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/73f23a-e977-41c3-922d-b27c3412426a/1/H5nUDqvvStH1MIOhxZVn4c25uWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/73f23a-e977-41c3-922d-b27c3412426a/1/PhrhW-husMTZp2TMeo9lmVv4yQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.224.0/22
IPv6:
2a04:45c0::/29
Signature Algorithm: sha256WithRSAEncryption
07:c7:68:15:b4:22:3f:1a:fd:d1:c5:b2:67:b9:b9:39:e5:4e:
fa:69:e4:4d:5a:9e:e2:3b:76:6b:99:e3:25:4a:03:bf:f0:ad:
2c:8f:10:a9:16:ab:ca:9f:6c:0c:47:0f:50:b9:0e:c1:b7:89:
5d:2e:84:5e:08:07:74:19:5a:7f:0b:34:87:b2:52:57:e6:23:
2d:61:d3:24:63:24:1c:d6:1d:77:68:7e:d1:5c:6e:fb:86:7a:
28:40:d8:5d:cc:ea:79:e6:52:b8:b6:2e:7d:5d:f6:59:30:fb:
92:8f:c9:91:5e:dc:64:a1:1b:54:59:c2:3e:49:8d:20:2c:cb:
2f:ca:b2:80:1e:20:c4:62:7b:15:a0:bf:b1:f2:14:78:22:b4:
27:2b:8e:ec:fa:e5:f5:2e:43:46:17:b9:b3:f7:5b:c0:5e:3d:
11:bb:20:70:3e:22:a3:b8:3b:df:e3:01:27:a0:93:ea:94:bd:
1b:57:d4:4b:2a:61:42:14:45:da:6c:ea:b7:75:8a:11:a5:81:
28:fb:ae:c9:e8:8d:38:1b:ff:71:3e:d4:1f:11:74:d0:e3:61:
bf:4c:07:63:f9:0f:98:67:82:5a:5d:c6:2a:23:f5:bd:c4:3f:
3d:c6:7d:33:b8:29:c6:f6:ce:c6:64:a9:50:b1:ff:94:c8:95:
c5:3a:00:6c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIDAnkEMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDNl
MWFlMTViZTg2ZWIwYzRkOWE3NjRjYzdhOGY2NTk5NWJmOGM5MGUwHhcNMjIwMTI0
MTgxMTUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygxZjk5ZDQwZWFiZWY0
YWQxZjUzMDgzYTFjNTk1NjdlMWNkYjliOTY2MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA4YNSdSMriJMThygDmev5s04a5Iz8qGMkGyrQm/hTqxhIdTw3
TgE/qaEg/ZyqJtTaeFWniZD41O1aGBbNNJcrrrHiW5W/dHJ0W5KmmkJjTHD3O5B7
pBznJQojDOYBYURMMB9fjz+ppIepB72uYXPonJxnDDZ6/Czzgry5WvJ2//X6Y2/b
hrDBdTrQiqAJ4a8/ljU+l7nF6XvXK2w9vjNjlunYvqFN5zle7/2C83wf2i70/evD
lUyjzHeXgfY2dRK70bG464YLnrvEgJ7T47wZLxNCCKQWwYvUcsQCs5EEy8AK8/73
jZkhf+jJcMtwhhP1szRAX3fNVoy6GCw+lDgepQIDAQABo4ICGDCCAhQwHQYDVR0O
BBYEFB+Z1A6r70rR9TCDocWVZ+HNublmMB8GA1UdIwQYMBaAFD4a4VvobrDE2adk
zHqPZZlb+MkOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
UGhyaFctaHVzTVRacDJUTWVvOWxtVnY0eVE0LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9lNC83M2YyM2EtZTk3Ny00MWMzLTkyMmQtYjI3YzM0MTI0MjZhLzEv
SDVuVURxdnZTdEgxTUlPaHhaVm40YzI1dVdZLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC83
M2YyM2EtZTk3Ny00MWMzLTkyMmQtYjI3YzM0MTI0MjZhLzEvUGhyaFctaHVzTVRa
cDJUTWVvOWxtVnY0eVE0LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4G
CCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuR7gMA0EAgACMAcDBQMqBEXAMA0G
CSqGSIb3DQEBCwUAA4IBAQAHx2gVtCI/Gv3RxbJnubk55U76aeRNWp7iO3ZrmeMl
SgO/8K0sjxCpFqvKn2wMRw9QuQ7Bt4ldLoReCAd0GVp/CzSHslJX5iMtYdMkYyQc
1h13aH7RXG77hnooQNhdzOp55lK4ti59XfZZMPuSj8mRXtxkoRtUWcI+SY0gLMsv
yrKAHiDEYnsVoL+x8hR4IrQnK47s+uX1LkNGF7mz91vAXj0RuyBwPiKjuDvf4wEn
oJPqlL0bV9RLKmFCFEXabOq3dYoRpYEo+67J6I04G/9xPtQfEXTQ42G/TAdj+Q+Y
Z4JaXcYqI/W9xD89xn0zuCnG9s7GZKlQsf+UyJXFOgBs
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:23 2023 by rpki-client on console-ams.rpki-client.org