Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/8a344e-0ed8-42b2-a744-a9e8468710a3/1/mxVEyoLja9qvruGRA-OkA7cfhjA.roa
File: mxVEyoLja9qvruGRA-OkA7cfhjA.roa (raw, json)
Hash identifier: FSaamBU3YhKLFuB5DVcqiO/1BxtuWU+6WwyZUNiumOY=
Subject key identifier: 9B:15:44:CA:82:E3:6B:DA:AF:AE:E1:91:03:E3:A4:03:B7:1F:86:30
Certificate issuer: /CN=c8d335041718b18830b1f58c15d3518510fe6118
Certificate serial: EE070B
Authority key identifier: C8:D3:35:04:17:18:B1:88:30:B1:F5:8C:15:D3:51:85:10:FE:61:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yNM1BBcYsYgwsfWMFdNRhRD-YRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/8a344e-0ed8-42b2-a744-a9e8468710a3/1/mxVEyoLja9qvruGRA-OkA7cfhjA.roa
Signing time: Tue 05 Apr 2022 07:32:32 +0000
ROA not before: Tue 05 Apr 2022 07:32:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7155
IP address blocks: 185.15.32.0/22 maxlen: 22
37.252.200.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15599371 (0xee070b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8d335041718b18830b1f58c15d3518510fe6118
Validity
Not Before: Apr 5 07:32:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b1544ca82e36bdaafaee19103e3a403b71f8630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:81:bb:7a:82:b5:5e:87:58:25:d4:52:fb:24:
1b:75:eb:b1:6f:ea:77:de:44:3e:4e:0e:67:9f:80:
8c:70:11:e4:9e:55:0d:5b:42:ae:0b:08:c6:c9:72:
4b:a8:43:9e:b3:60:c4:25:4b:2b:5a:a2:8f:ee:03:
05:5f:97:96:0a:fd:60:68:94:b4:25:65:6c:27:50:
70:1d:5a:b0:8b:86:9a:01:4d:ff:49:3a:a8:62:3a:
71:79:5b:bb:ec:0b:a3:1d:22:81:f2:6e:04:c9:da:
d5:59:dd:c1:76:97:54:55:0f:db:ea:be:04:9d:f9:
e4:75:e8:e6:cf:b2:5f:e5:c5:7f:88:1b:6c:e9:87:
ec:31:58:5f:89:8b:35:8e:6c:da:93:df:65:6b:17:
12:93:39:bb:ae:6b:f4:76:42:ed:65:8c:75:82:42:
aa:ef:c5:ad:50:8a:a1:7b:09:ad:72:ec:f3:f0:a8:
6c:14:cf:70:81:60:ad:8e:d2:ea:7a:a1:b6:11:8a:
d0:40:55:c2:1c:c4:56:4c:67:fb:eb:a8:d6:e6:73:
9a:ae:f9:88:85:42:29:5e:38:0e:58:17:96:4b:58:
08:2d:51:21:f3:11:12:a4:02:22:55:f4:97:b7:2f:
92:66:e1:ff:77:e9:46:2a:7a:aa:0e:e9:cb:b1:ed:
92:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:15:44:CA:82:E3:6B:DA:AF:AE:E1:91:03:E3:A4:03:B7:1F:86:30
X509v3 Authority Key Identifier:
keyid:C8:D3:35:04:17:18:B1:88:30:B1:F5:8C:15:D3:51:85:10:FE:61:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNM1BBcYsYgwsfWMFdNRhRD-YRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/8a344e-0ed8-42b2-a744-a9e8468710a3/1/mxVEyoLja9qvruGRA-OkA7cfhjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/8a344e-0ed8-42b2-a744-a9e8468710a3/1/yNM1BBcYsYgwsfWMFdNRhRD-YRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.252.200.0/21
185.15.32.0/22
Signature Algorithm: sha256WithRSAEncryption
40:ed:7e:80:16:e2:15:a6:f5:e4:98:67:5f:bf:dd:2c:58:88:
65:c3:3e:38:63:40:80:0b:f8:a8:96:f9:cc:51:fa:2d:17:f9:
6a:c2:af:05:f1:47:ac:7b:81:75:01:26:73:c7:5e:14:52:2c:
6f:42:0b:be:16:4f:5a:65:75:d4:63:ec:36:c6:ad:97:f3:a4:
1a:5e:31:ef:c9:f4:60:66:03:51:5e:c3:d9:4f:3f:16:e8:a3:
8e:d0:70:04:b1:f5:15:05:bf:01:4f:cc:12:d0:47:26:02:d1:
eb:bd:32:87:fc:dd:d5:a9:c6:5a:37:fe:30:29:ff:7b:03:f4:
c6:ed:ed:c4:1b:19:a7:f7:14:3a:db:5f:5c:49:f1:7a:28:dc:
de:90:22:ac:2b:94:1b:7d:27:c4:58:b8:6e:aa:8a:ec:f5:0e:
be:93:bc:ea:a3:b4:63:7b:6b:7f:e3:ca:56:00:07:12:9b:cc:
d0:c9:1b:90:09:f8:4f:bf:3c:ca:ae:1b:04:ad:4d:0c:7d:d8:
d3:dc:99:86:bb:84:7a:12:58:9a:81:8f:1b:00:e6:f8:aa:97:
31:86:44:e3:cc:f7:7b:8c:ed:18:36:e0:72:ce:f8:2d:ac:0a:
22:49:0a:03:ff:ae:56:a9:ca:2b:f3:df:c1:bd:0a:be:b9:ba:
41:21:b0:03
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAO4HCzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
OGQzMzUwNDE3MThiMTg4MzBiMWY1OGMxNWQzNTE4NTEwZmU2MTE4MB4XDTIyMDQw
NTA3MzIzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWIxNTQ0Y2E4MmUz
NmJkYWFmYWVlMTkxMDNlM2E0MDNiNzFmODYzMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANiBu3qCtV6HWCXUUvskG3XrsW/qd95EPk4OZ5+AjHAR5J5V
DVtCrgsIxslyS6hDnrNgxCVLK1qij+4DBV+Xlgr9YGiUtCVlbCdQcB1asIuGmgFN
/0k6qGI6cXlbu+wLox0igfJuBMna1VndwXaXVFUP2+q+BJ355HXo5s+yX+XFf4gb
bOmH7DFYX4mLNY5s2pPfZWsXEpM5u65r9HZC7WWMdYJCqu/FrVCKoXsJrXLs8/Co
bBTPcIFgrY7S6nqhthGK0EBVwhzEVkxn++uo1uZzmq75iIVCKV44DlgXlktYCC1R
IfMREqQCIlX0l7cvkmbh/3fpRip6qg7py7HtkikCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSbFUTKguNr2q+u4ZED46QDtx+GMDAfBgNVHSMEGDAWgBTI0zUEFxixiDCx
9YwV01GFEP5hGDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lOTTFCQmNZc1lnd3NmV01GZE5SaFJELVlSZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDEvOGEzNDRlLTBlZDgtNDJiMi1hNzQ0LWE5ZTg0Njg3MTBhMy8x
L214VkV5b0xqYTlxdnJ1R1JBLU9rQTdjZmhqQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDEv
OGEzNDRlLTBlZDgtNDJiMi1hNzQ0LWE5ZTg0Njg3MTBhMy8xL3lOTTFCQmNZc1ln
d3NmV01GZE5SaFJELVlSZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAyX8yAMEArkPIDANBgkqhkiG9w0B
AQsFAAOCAQEAQO1+gBbiFab15JhnX7/dLFiIZcM+OGNAgAv4qJb5zFH6LRf5asKv
BfFHrHuBdQEmc8deFFIsb0ILvhZPWmV11GPsNsatl/OkGl4x78n0YGYDUV7D2U8/
FuijjtBwBLH1FQW/AU/MEtBHJgLR670yh/zd1anGWjf+MCn/ewP0xu3txBsZp/cU
OttfXEnxeijc3pAirCuUG30nxFi4bqqK7PUOvpO86qO0Y3trf+PKVgAHEpvM0Mkb
kAn4T788yq4bBK1NDH3Y09yZhruEehJYmoGPGwDm+KqXMYZE48z3e4ztGDbgcs74
LawKIkkKA/+uVqnKK/Pfwb0Kvrm6QSGwAw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:15 2024 by rpki-client on console-ams.rpki-client.org