Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/908a8a-58db-4509-a285-1ac2edda8e2a/1/Hrus-h0NoJNTldi8GH06lgtvmTQ.roa
File: Hrus-h0NoJNTldi8GH06lgtvmTQ.roa (raw, json)
Hash identifier: vLOXFydYQilCVQtYO32gJ3D/KIA7syOZY7xOsyWahKU=
Subject key identifier: 1E:BB:AC:FA:1D:0D:A0:93:53:95:D8:BC:18:7D:3A:96:0B:6F:99:34
Certificate issuer: /CN=0074ec3ec53f52f7f52835bb510ab6bedaa00a3d
Certificate serial: 107D47E8
Authority key identifier: 00:74:EC:3E:C5:3F:52:F7:F5:28:35:BB:51:0A:B6:BE:DA:A0:0A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHTsPsU_Uvf1KDW7UQq2vtqgCj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/908a8a-58db-4509-a285-1ac2edda8e2a/1/Hrus-h0NoJNTldi8GH06lgtvmTQ.roa
Signing time: Sat 01 Jan 2022 16:11:33 +0000
ROA not before: Sat 01 Jan 2022 16:11:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 193.16.112.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276645864 (0x107d47e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0074ec3ec53f52f7f52835bb510ab6bedaa00a3d
Validity
Not Before: Jan 1 16:11:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ebbacfa1d0da0935395d8bc187d3a960b6f9934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:62:e3:90:b1:ac:6c:58:05:85:e8:29:c5:60:
1f:69:f0:08:bf:c5:31:27:e1:a9:8f:1e:12:4b:f7:
06:42:2d:63:66:ea:11:08:9d:47:98:f9:a3:71:9e:
19:34:fd:69:05:95:7f:6b:3b:0c:11:ce:a2:90:1d:
03:17:61:d8:ad:32:76:92:83:3e:a5:79:73:d9:d7:
ba:07:ce:a5:30:fa:a4:0c:cb:43:12:e0:8c:0c:32:
8a:ac:1e:f8:0f:22:6c:71:a3:56:b4:e3:37:cd:e3:
9f:e8:90:76:e7:cc:46:38:2f:ca:3c:52:82:4f:e7:
2a:11:2b:92:35:2c:ad:c4:70:d6:5a:32:f8:8d:64:
c8:cd:8c:bb:a6:ea:c5:f8:27:d4:8d:61:15:3b:6d:
98:5d:0c:8b:5f:3a:ab:bc:f2:2e:a0:88:6c:86:95:
91:0f:37:4b:cf:35:c2:d9:0e:2b:6d:f7:c2:07:ac:
bc:73:ca:94:70:53:1e:c1:f9:f0:ca:27:ae:c6:59:
c0:b7:ec:ab:80:97:87:d5:af:d4:17:d5:24:43:1e:
e3:33:b7:e3:60:82:c4:c9:62:a2:56:15:dd:b8:f2:
85:a8:d4:af:65:c1:91:b6:3a:d9:ec:91:3b:1a:a9:
cb:ec:81:e4:6d:b5:47:b1:aa:da:a6:e9:db:8b:f1:
de:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BB:AC:FA:1D:0D:A0:93:53:95:D8:BC:18:7D:3A:96:0B:6F:99:34
X509v3 Authority Key Identifier:
keyid:00:74:EC:3E:C5:3F:52:F7:F5:28:35:BB:51:0A:B6:BE:DA:A0:0A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHTsPsU_Uvf1KDW7UQq2vtqgCj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/908a8a-58db-4509-a285-1ac2edda8e2a/1/Hrus-h0NoJNTldi8GH06lgtvmTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/908a8a-58db-4509-a285-1ac2edda8e2a/1/AHTsPsU_Uvf1KDW7UQq2vtqgCj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.112.0/20
Signature Algorithm: sha256WithRSAEncryption
6f:fe:72:dd:22:49:95:94:b2:05:35:a3:a6:5b:21:18:99:5c:
8d:12:20:45:a8:e4:5d:02:76:4b:29:70:0d:5d:09:78:cc:96:
1f:4c:c6:f0:f4:9c:cd:02:46:77:4e:91:91:3f:e9:fe:73:c5:
fb:f9:ad:f6:f4:21:1a:bd:00:d9:2b:98:b4:19:61:d0:c6:32:
88:33:b1:3a:67:82:46:1b:47:ad:ba:92:a0:74:c9:d3:cf:86:
ce:c5:0d:98:e8:23:c4:d3:2f:1d:24:dd:e2:6d:2d:39:7a:98:
7d:0e:4a:f4:bc:95:a4:31:90:13:1a:ab:76:86:a8:5b:2e:a3:
73:2f:4f:e3:54:10:2d:f6:a0:c3:a0:06:fa:8a:db:29:6a:2e:
a3:53:25:c2:8d:5a:eb:fd:75:7a:c2:4b:2a:0f:37:af:33:fa:
2e:7b:fd:de:28:da:14:b6:f9:31:e0:cc:42:c1:48:97:a3:54:
a2:dc:cc:8a:f6:f7:1f:62:31:43:03:8a:84:6e:09:32:39:fd:
5d:30:e9:53:7a:a7:fe:91:05:68:46:2f:38:c7:ac:f1:49:20:
9a:29:1c:fa:8d:90:8e:aa:b8:29:75:1d:4d:42:5a:a0:ad:92:
76:6a:0c:6a:22:7d:c2:83:b6:7a:3b:1f:15:e3:5c:59:fb:6c:
ff:3a:08:a2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEEH1H6DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MDc0ZWMzZWM1M2Y1MmY3ZjUyODM1YmI1MTBhYjZiZWRhYTAwYTNkMB4XDTIyMDEw
MTE2MTEzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWViYmFjZmExZDBk
YTA5MzUzOTVkOGJjMTg3ZDNhOTYwYjZmOTkzNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI1i45CxrGxYBYXoKcVgH2nwCL/FMSfhqY8eEkv3BkItY2bq
EQidR5j5o3GeGTT9aQWVf2s7DBHOopAdAxdh2K0ydpKDPqV5c9nXugfOpTD6pAzL
QxLgjAwyiqwe+A8ibHGjVrTjN83jn+iQdufMRjgvyjxSgk/nKhErkjUsrcRw1loy
+I1kyM2Mu6bqxfgn1I1hFTttmF0Mi186q7zyLqCIbIaVkQ83S881wtkOK233wges
vHPKlHBTHsH58MonrsZZwLfsq4CXh9Wv1BfVJEMe4zO342CCxMliolYV3bjyhajU
r2XBkbY62eyROxqpy+yB5G21R7Gq2qbp24vx3jkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQeu6z6HQ2gk1OV2LwYfTqWC2+ZNDAfBgNVHSMEGDAWgBQAdOw+xT9S9/Uo
NbtRCra+2qAKPTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FIVHNQc1VfVXZmMUtEVzdVUXEydnRxZ0NqMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWMvOTA4YThhLTU4ZGItNDUwOS1hMjg1LTFhYzJlZGRhOGUyYS8x
L0hydXMtaDBOb0pOVGxkaThHSDA2bGd0dm1UUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWMv
OTA4YThhLTU4ZGItNDUwOS1hMjg1LTFhYzJlZGRhOGUyYS8xL0FIVHNQc1VfVXZm
MUtEVzdVUXEydnRxZ0NqMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMEQcDANBgkqhkiG9w0BAQsFAAOC
AQEAb/5y3SJJlZSyBTWjplshGJlcjRIgRajkXQJ2SylwDV0JeMyWH0zG8PSczQJG
d06RkT/p/nPF+/mt9vQhGr0A2SuYtBlh0MYyiDOxOmeCRhtHrbqSoHTJ08+GzsUN
mOgjxNMvHSTd4m0tOXqYfQ5K9LyVpDGQExqrdoaoWy6jcy9P41QQLfagw6AG+orb
KWouo1Mlwo1a6/11esJLKg83rzP6Lnv93ijaFLb5MeDMQsFIl6NUotzMivb3H2Ix
QwOKhG4JMjn9XTDpU3qn/pEFaEYvOMes8Ukgmikc+o2Qjqq4KXUdTUJaoK2SdmoM
aiJ9woO2ejsfFeNcWfts/zoIog==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:51 2023 by rpki-client on console-ams.rpki-client.org