Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/9c04d5-459b-4fe2-8450-e11ab261ca7b/1/HVko920mjZIneGd7jaZzSgITceg.roa
File: HVko920mjZIneGd7jaZzSgITceg.roa (raw, json)
Hash identifier: T3QZc3oIBrQ7HeLEKuI8Z0v1b00I6rYtspBTNKc3Tms=
Subject key identifier: 1D:59:28:F7:6D:26:8D:92:27:78:67:7B:8D:A6:73:4A:02:13:71:E8
Certificate issuer: /CN=4f0788aad22ac4370d518cb7fb9dfe724b41f957
Certificate serial: 018572B43A385F8B427B6DA9442FDBF044F9
Authority key identifier: 4F:07:88:AA:D2:2A:C4:37:0D:51:8C:B7:FB:9D:FE:72:4B:41:F9:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TweIqtIqxDcNUYy3-53-cktB-Vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/9c04d5-459b-4fe2-8450-e11ab261ca7b/1/HVko920mjZIneGd7jaZzSgITceg.roa
Signing time: Mon 02 Jan 2023 13:38:11 +0000
ROA not before: Mon 02 Jan 2023 13:38:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211935
IP address blocks: 2001:67c:291c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:3a:38:5f:8b:42:7b:6d:a9:44:2f:db:f0:44:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f0788aad22ac4370d518cb7fb9dfe724b41f957
Validity
Not Before: Jan 2 13:38:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d5928f76d268d922778677b8da6734a021371e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:63:86:20:7b:54:85:9f:60:8e:35:33:2f:32:
78:e2:e3:18:1e:2e:6c:a7:c6:ad:24:6b:9f:47:5b:
23:ab:9f:84:19:20:2a:9e:f8:aa:04:13:d0:f6:c5:
fe:88:bf:0d:f8:a3:12:58:9b:24:fe:98:a2:fe:3a:
e9:bd:ea:fd:8a:84:83:a4:cb:3e:c6:d1:51:3c:95:
93:f9:91:48:e0:ef:25:16:7d:3a:03:65:0a:b5:ac:
af:5d:48:b7:0f:2a:e6:6e:a5:8b:6d:e3:5b:d9:3d:
03:4a:c6:d6:91:58:1a:7c:8a:dd:de:0a:29:05:c2:
77:df:cd:59:9a:38:4d:7a:5d:78:35:83:25:c3:f4:
2a:c7:91:58:d5:2a:9e:7a:8e:c2:6c:24:e1:c4:f0:
51:c2:3b:92:d3:8e:98:39:6a:c7:9d:06:29:da:43:
10:8e:9f:7a:53:f7:ea:5e:be:96:18:9d:5c:db:c1:
c2:52:f6:bc:b4:98:52:3c:50:32:e6:a6:37:d0:a3:
33:09:3c:98:91:f2:b0:33:74:a1:c2:96:8a:83:f2:
27:dd:8a:39:cb:03:ca:29:fd:a8:a6:08:06:3c:66:
2b:ab:6b:68:6b:ee:aa:05:ca:2f:f8:8d:f9:2a:bd:
8e:41:a4:bf:39:af:44:c5:d6:e3:01:cc:3e:80:36:
bb:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:59:28:F7:6D:26:8D:92:27:78:67:7B:8D:A6:73:4A:02:13:71:E8
X509v3 Authority Key Identifier:
keyid:4F:07:88:AA:D2:2A:C4:37:0D:51:8C:B7:FB:9D:FE:72:4B:41:F9:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TweIqtIqxDcNUYy3-53-cktB-Vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/9c04d5-459b-4fe2-8450-e11ab261ca7b/1/HVko920mjZIneGd7jaZzSgITceg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/9c04d5-459b-4fe2-8450-e11ab261ca7b/1/TweIqtIqxDcNUYy3-53-cktB-Vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:291c::/48
Signature Algorithm: sha256WithRSAEncryption
20:9c:ae:e9:af:f5:36:f0:9e:86:09:99:3e:c3:d4:30:95:13:
03:b0:6c:0e:5a:e4:24:e1:85:e1:91:15:16:3f:15:e6:55:34:
6f:be:27:95:ec:a4:bf:86:39:5b:d7:95:8d:d8:92:43:1c:b6:
fd:c2:8b:fd:e3:f1:56:1a:a6:fe:18:44:7c:02:e5:08:e0:31:
fb:bf:00:f9:b8:ae:07:d3:c5:0c:7e:4e:c1:6d:8a:27:fd:c2:
0b:32:00:42:5a:64:c4:bf:22:65:f2:35:85:e5:0e:06:6e:8a:
50:3a:2d:91:39:c0:05:03:82:16:b3:3d:cd:a8:42:28:f7:2b:
6f:aa:0b:53:8c:38:44:b7:b5:7a:9d:02:d0:7a:a1:e3:52:84:
d1:0f:d3:87:ec:b7:42:47:b1:fe:73:ab:da:8b:5f:4d:87:3f:
3c:f1:f1:15:81:ac:01:e7:e6:b5:42:16:9c:63:b1:ac:3e:78:
86:a9:51:35:01:a9:c0:d1:5e:87:69:82:de:df:d6:0b:0b:f4:
0d:25:85:f3:90:42:f4:ae:b6:07:13:0f:02:95:01:f6:8a:83:
63:39:fe:49:39:16:0d:ea:6c:04:f0:0d:78:70:2a:f4:7e:5b:
60:72:42:89:53:8c:ad:ed:9d:53:30:75:a6:e5:78:ba:ca:c9:
a0:8f:3b:a5
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVytDo4X4tCe22pRC/b8ET5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMDc4OGFhZDIyYWM0MzcwZDUxOGNiN2ZiOWRmZTcyNGI0
MWY5NTcwHhcNMjMwMTAyMTMzODExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZDU5MjhmNzZkMjY4ZDkyMjc3ODY3N2I4ZGE2NzM0YTAyMTM3MWU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGOGIHtUhZ9gjjUzLzJ44uMYHi5s
p8atJGufR1sjq5+EGSAqnviqBBPQ9sX+iL8N+KMSWJsk/pii/jrpver9ioSDpMs+
xtFRPJWT+ZFI4O8lFn06A2UKtayvXUi3DyrmbqWLbeNb2T0DSsbWkVgafIrd3gop
BcJ3381ZmjhNel14NYMlw/Qqx5FY1Sqeeo7CbCThxPBRwjuS046YOWrHnQYp2kMQ
jp96U/fqXr6WGJ1c28HCUva8tJhSPFAy5qY30KMzCTyYkfKwM3ShwpaKg/In3Yo5
ywPKKf2opggGPGYrq2toa+6qBcov+I35Kr2OQaS/Oa9ExdbjAcw+gDa7xwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFB1ZKPdtJo2SJ3hne42mc0oCE3HoMB8GA1UdIwQY
MBaAFE8HiKrSKsQ3DVGMt/ud/nJLQflXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHdlSXF0SXF4RGNOVVl5My01My1ja3RCLVZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy85YzA0ZDUtNDU5Yi00ZmUyLTg0NTAt
ZTExYWIyNjFjYTdiLzEvSFZrbzkyMG1qWkluZUdkN2phWnpTZ0lUY2VnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy85YzA0ZDUtNDU5Yi00ZmUyLTg0NTAtZTExYWIyNjFjYTdi
LzEvVHdlSXF0SXF4RGNOVVl5My01My1ja3RCLVZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCkc
MA0GCSqGSIb3DQEBCwUAA4IBAQAgnK7pr/U28J6GCZk+w9QwlRMDsGwOWuQk4YXh
kRUWPxXmVTRvvieV7KS/hjlb15WN2JJDHLb9wov94/FWGqb+GER8AuUI4DH7vwD5
uK4H08UMfk7BbYon/cILMgBCWmTEvyJl8jWF5Q4GbopQOi2ROcAFA4IWsz3NqEIo
9ytvqgtTjDhEt7V6nQLQeqHjUoTRD9OH7LdCR7H+c6vai19Nhz888fEVgawB5+a1
QhacY7GsPniGqVE1AanA0V6HaYLe39YLC/QNJYXzkEL0rrYHEw8ClQH2ioNjOf5J
ORYN6mwE8A14cCr0fltgckKJU4yt7Z1TMHWm5Xi6ysmgjzul
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:09 2025 by rpki-client