Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/186a18-5d7f-43ed-b06a-cea7eb350537/1/MqIAXZr-SM7MT50D7HKCzifWr3M.roa
File: MqIAXZr-SM7MT50D7HKCzifWr3M.roa (raw, json)
Hash identifier: Dw/Y3yQB480Q/jQCtxaEHRx4ZOVsVZ0EG2x3hWCWSLU=
Subject key identifier: 32:A2:00:5D:9A:FE:48:CE:CC:4F:9D:03:EC:72:82:CE:27:D6:AF:73
Certificate issuer: /CN=7ff1b81cfe6abb118e97e0325b662eaf984f2f6a
Certificate serial: 04D1B7
Authority key identifier: 7F:F1:B8:1C:FE:6A:BB:11:8E:97:E0:32:5B:66:2E:AF:98:4F:2F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f_G4HP5quxGOl-AyW2Yur5hPL2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/186a18-5d7f-43ed-b06a-cea7eb350537/1/MqIAXZr-SM7MT50D7HKCzifWr3M.roa
Signing time: Fri 10 Jun 2022 12:19:04 +0000
ROA not before: Fri 10 Jun 2022 12:19:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50737
IP address blocks: 2a03:4740::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 315831 (0x4d1b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ff1b81cfe6abb118e97e0325b662eaf984f2f6a
Validity
Not Before: Jun 10 12:19:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32a2005d9afe48cecc4f9d03ec7282ce27d6af73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2f:84:da:e4:e7:b0:b9:c0:36:80:a5:50:18:
56:aa:f9:69:ee:13:7a:46:69:3c:90:b7:39:10:8b:
80:73:66:be:a0:d1:be:ff:c7:5e:dd:6b:0a:8d:98:
25:e6:73:f0:4e:da:75:0c:4a:ca:6d:cc:57:f2:8b:
73:e1:f9:00:49:4c:43:e1:c6:f0:ab:b8:f8:d9:84:
77:d9:d7:42:81:54:84:58:6a:94:9e:cb:4f:35:02:
6a:fc:5a:eb:84:1d:86:91:12:a8:50:a9:66:11:c9:
de:2f:fa:d4:c9:8e:ca:3b:79:47:44:ee:0b:5e:1c:
d0:fd:d2:12:0b:4c:88:fb:02:bd:1f:37:af:e4:b3:
20:f5:d8:c3:6f:de:15:8f:4e:a3:17:eb:9b:f2:6e:
ff:73:c6:bc:da:90:ee:00:12:f3:76:73:de:45:2a:
be:72:4d:fc:3f:92:de:2c:7c:34:e4:e8:e9:e1:3a:
77:1f:42:19:24:05:d3:2c:2a:b9:1a:df:3a:f9:07:
cd:45:ba:46:c4:c1:09:2e:d4:d4:49:d8:e6:d2:b4:
90:74:86:45:25:d4:43:d9:b5:f3:5d:b2:bd:65:70:
b3:82:7a:d5:9d:ca:6a:5a:23:7a:c1:db:56:03:6d:
b6:36:07:1e:a9:90:b5:da:c4:18:06:7a:78:1e:c4:
b1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A2:00:5D:9A:FE:48:CE:CC:4F:9D:03:EC:72:82:CE:27:D6:AF:73
X509v3 Authority Key Identifier:
keyid:7F:F1:B8:1C:FE:6A:BB:11:8E:97:E0:32:5B:66:2E:AF:98:4F:2F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f_G4HP5quxGOl-AyW2Yur5hPL2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/186a18-5d7f-43ed-b06a-cea7eb350537/1/MqIAXZr-SM7MT50D7HKCzifWr3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/186a18-5d7f-43ed-b06a-cea7eb350537/1/f_G4HP5quxGOl-AyW2Yur5hPL2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:4740::/32
Signature Algorithm: sha256WithRSAEncryption
a7:78:8a:86:99:77:b7:0f:00:56:ed:1f:e4:60:b9:40:57:92:
70:76:02:f6:80:9b:f9:6c:eb:27:8f:a4:1b:36:91:96:a9:1b:
f7:be:d6:87:d2:af:29:75:4f:dc:32:4e:d8:4f:11:b2:c2:2b:
da:10:04:fe:d3:a4:01:b3:ee:04:60:13:9c:78:c0:19:76:2e:
84:1a:f6:54:15:98:c4:9a:0b:67:88:17:40:da:2e:c8:63:07:
d0:03:a1:da:21:9e:42:cd:97:88:ce:ef:6f:cb:2e:d1:aa:e5:
92:73:e3:81:26:f0:17:8e:88:5b:f8:07:ee:bf:a2:29:0b:e8:
72:3b:7e:f7:a3:4f:98:a3:39:d0:3e:60:a3:a6:c3:8d:e6:ee:
15:f4:f0:ab:d4:92:ad:5c:64:c1:04:4f:5b:d9:10:75:d7:08:
88:b4:92:c2:fd:a4:e5:4c:ed:49:4d:93:57:cd:ba:da:bd:39:
7e:d2:12:18:5a:a9:8d:83:cb:fc:9c:33:3d:31:72:51:20:5b:
9f:73:42:9f:6d:2f:e4:5d:16:ae:2e:1a:13:ea:79:ef:44:64:
cd:c4:1b:1e:ce:42:35:67:5c:73:7e:a5:f6:08:56:01:b5:c4:
d6:34:17:f4:b6:03:8b:67:49:7a:b3:e7:09:6c:2b:ad:1e:23:
cb:8f:89:13
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIDBNG3MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDdm
ZjFiODFjZmU2YWJiMTE4ZTk3ZTAzMjViNjYyZWFmOTg0ZjJmNmEwHhcNMjIwNjEw
MTIxOTA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygzMmEyMDA1ZDlhZmU0
OGNlY2M0ZjlkMDNlYzcyODJjZTI3ZDZhZjczMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAxS+E2uTnsLnANoClUBhWqvlp7hN6Rmk8kLc5EIuAc2a+oNG+
/8de3WsKjZgl5nPwTtp1DErKbcxX8otz4fkASUxD4cbwq7j42YR32ddCgVSEWGqU
nstPNQJq/FrrhB2GkRKoUKlmEcneL/rUyY7KO3lHRO4LXhzQ/dISC0yI+wK9Hzev
5LMg9djDb94Vj06jF+ub8m7/c8a82pDuABLzdnPeRSq+ck38P5LeLHw05Ojp4Tp3
H0IZJAXTLCq5Gt86+QfNRbpGxMEJLtTUSdjm0rSQdIZFJdRD2bXzXbK9ZXCzgnrV
ncpqWiN6wdtWA222NgceqZC12sQYBnp4HsSxPQIDAQABo4ICCjCCAgYwHQYDVR0O
BBYEFDKiAF2a/kjOzE+dA+xygs4n1q9zMB8GA1UdIwQYMBaAFH/xuBz+arsRjpfg
MltmLq+YTy9qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Zl9HNEhQNXF1eEdPbC1BeVcyWXVyNWhQTDJvLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC83NS8xODZhMTgtNWQ3Zi00M2VkLWIwNmEtY2VhN2ViMzUwNTM3LzEv
TXFJQVhaci1TTTdNVDUwRDdIS0N6aWZXcjNNLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS8x
ODZhMTgtNWQ3Zi00M2VkLWIwNmEtY2VhN2ViMzUwNTM3LzEvZl9HNEhQNXF1eEdP
bC1BeVcyWXVyNWhQTDJvLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAG
CCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgNHQDANBgkqhkiG9w0BAQsFAAOC
AQEAp3iKhpl3tw8AVu0f5GC5QFeScHYC9oCb+WzrJ4+kGzaRlqkb977Wh9KvKXVP
3DJO2E8RssIr2hAE/tOkAbPuBGATnHjAGXYuhBr2VBWYxJoLZ4gXQNouyGMH0AOh
2iGeQs2XiM7vb8su0arlknPjgSbwF46IW/gH7r+iKQvocjt+96NPmKM50D5go6bD
jebuFfTwq9SSrVxkwQRPW9kQddcIiLSSwv2k5UztSU2TV8262r05ftISGFqpjYPL
/JwzPTFyUSBbn3NCn20v5F0Wri4aE+p570RkzcQbHs5CNWdcc36l9ghWAbXE1jQX
9LYDi2dJerPnCWwrrR4jy4+JEw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:12 2024 by rpki-client on console-ams.rpki-client.org