Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/18403d-7792-4f9d-9368-bfb6cf0f0835/1/MwkliBYjP_C-PcXa4o16koytCcc.roa
File: MwkliBYjP_C-PcXa4o16koytCcc.roa (raw, json)
Hash identifier: 5iipb1jeXtq74vBBbYgW3WQf6LeDIY0n9SpAvmbpgyI=
Subject key identifier: 33:09:25:88:16:23:3F:F0:BE:3D:C5:DA:E2:8D:7A:92:8C:AD:09:C7
Certificate issuer: /CN=5b1c1e0624039bd1f1a946cb513c93386fab6b19
Certificate serial: 0181FBEA600ED5FB8685EE45E29EA3CA0476
Authority key identifier: 5B:1C:1E:06:24:03:9B:D1:F1:A9:46:CB:51:3C:93:38:6F:AB:6B:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WxweBiQDm9HxqUbLUTyTOG-raxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/18403d-7792-4f9d-9368-bfb6cf0f0835/1/MwkliBYjP_C-PcXa4o16koytCcc.roa
Signing time: Thu 14 Jul 2022 08:54:10 +0000
ROA not before: Thu 14 Jul 2022 08:54:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31545
IP address blocks: 193.16.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:fb:ea:60:0e:d5:fb:86:85:ee:45:e2:9e:a3:ca:04:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b1c1e0624039bd1f1a946cb513c93386fab6b19
Validity
Not Before: Jul 14 08:54:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3309258816233ff0be3dc5dae28d7a928cad09c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:80:d2:f5:32:ca:14:3b:26:91:42:f2:1f:b0:
80:dd:e9:d2:ae:c4:0f:28:09:0b:41:e8:20:be:3f:
21:42:6b:cc:c8:d2:0e:fe:74:c8:7f:1c:4a:7a:1c:
8b:50:ed:cc:bd:e4:31:0c:66:f8:53:7e:86:2d:db:
48:c4:97:1d:6e:2e:ef:9d:30:1f:70:13:51:eb:53:
c1:a1:cd:12:13:d9:72:ab:34:44:42:39:39:ef:54:
e9:e6:6b:cc:2c:65:4f:91:33:7a:23:a5:a4:4b:24:
07:40:38:cf:31:2a:24:51:6e:4c:d3:b9:76:db:21:
c7:18:22:3c:1d:76:6a:3c:cc:b9:df:3d:69:26:15:
5c:8b:31:b4:00:d5:d4:d3:13:d1:82:64:0a:71:fd:
bd:80:04:3f:09:9f:b6:52:b2:a6:bb:0a:eb:18:ae:
d3:c7:55:0e:ac:d6:eb:11:6f:a1:4a:f8:48:b6:35:
c4:30:38:1c:8f:cc:f4:a0:e5:24:c0:68:5c:bf:0f:
5f:56:e3:24:30:77:c7:cd:93:0f:c7:ba:10:f6:6f:
e0:1c:15:9b:bc:4b:58:58:2f:20:50:bc:b5:5c:31:
38:67:0f:53:38:d4:31:52:93:93:95:c9:a2:06:51:
43:7b:56:0f:18:b9:55:15:5a:96:cc:97:7d:d0:f8:
df:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:09:25:88:16:23:3F:F0:BE:3D:C5:DA:E2:8D:7A:92:8C:AD:09:C7
X509v3 Authority Key Identifier:
keyid:5B:1C:1E:06:24:03:9B:D1:F1:A9:46:CB:51:3C:93:38:6F:AB:6B:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WxweBiQDm9HxqUbLUTyTOG-raxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/18403d-7792-4f9d-9368-bfb6cf0f0835/1/MwkliBYjP_C-PcXa4o16koytCcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/18403d-7792-4f9d-9368-bfb6cf0f0835/1/WxweBiQDm9HxqUbLUTyTOG-raxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.109.0/24
Signature Algorithm: sha256WithRSAEncryption
07:f2:68:67:f1:fc:f7:d9:48:b9:41:b4:c3:f7:d2:fa:30:ac:
e4:b1:fb:67:60:67:00:5b:c4:ff:ef:51:5b:64:b0:91:c9:0b:
8a:74:26:c6:4d:ab:db:59:d9:22:58:d7:ee:57:85:5e:0f:2a:
ae:4e:4c:c0:b1:06:92:f3:6f:e8:d9:74:64:8a:b1:c3:01:73:
29:75:ef:b1:57:dc:7c:57:d3:33:ac:ae:32:62:66:2e:18:db:
35:7b:7d:2f:7d:6c:55:a0:d7:db:be:23:e3:d5:40:c7:8c:63:
90:6f:c3:33:3d:ce:62:6c:7d:ba:9d:85:83:52:e1:4f:24:ea:
1d:4d:8f:b1:6f:b8:b0:41:39:0f:80:bb:25:48:e8:00:79:36:
91:2a:69:58:3a:8f:28:53:3f:b9:b7:ee:0d:ac:98:6e:df:99:
c7:fa:96:29:74:d2:0b:6a:a9:1f:81:6a:d4:d6:71:ae:67:45:
2d:ca:88:8b:6e:ae:43:20:1b:31:c5:78:68:95:46:64:d7:2e:
6d:05:4e:5e:cb:ee:d7:2f:8b:7e:8e:fa:12:a4:96:55:aa:a8:
43:f6:76:ba:aa:97:42:d3:0f:32:64:2b:33:b3:ca:fa:49:cc:
01:e2:37:e2:de:a1:da:1b:e0:6c:f5:ee:f6:ee:df:43:a0:d5:
02:a5:87:dd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYH76mAO1fuGhe5F4p6jygR2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViMWMxZTA2MjQwMzliZDFmMWE5NDZjYjUxM2M5MzM4NmZh
YjZiMTkwHhcNMjIwNzE0MDg1NDEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMzA5MjU4ODE2MjMzZmYwYmUzZGM1ZGFlMjhkN2E5MjhjYWQwOWM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk4DS9TLKFDsmkULyH7CA3enSrsQP
KAkLQeggvj8hQmvMyNIO/nTIfxxKehyLUO3MveQxDGb4U36GLdtIxJcdbi7vnTAf
cBNR61PBoc0SE9lyqzREQjk571Tp5mvMLGVPkTN6I6WkSyQHQDjPMSokUW5M07l2
2yHHGCI8HXZqPMy53z1pJhVcizG0ANXU0xPRgmQKcf29gAQ/CZ+2UrKmuwrrGK7T
x1UOrNbrEW+hSvhItjXEMDgcj8z0oOUkwGhcvw9fVuMkMHfHzZMPx7oQ9m/gHBWb
vEtYWC8gULy1XDE4Zw9TONQxUpOTlcmiBlFDe1YPGLlVFVqWzJd90PjfWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDMJJYgWIz/wvj3F2uKNepKMrQnHMB8GA1UdIwQY
MBaAFFscHgYkA5vR8alGy1E8kzhvq2sZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3h3ZUJpUURtOUh4cVViTFVUeVRPRy1yYXhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8xODQwM2QtNzc5Mi00ZjlkLTkzNjgt
YmZiNmNmMGYwODM1LzEvTXdrbGlCWWpQX0MtUGNYYTRvMTZrb3l0Q2NjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS8xODQwM2QtNzc5Mi00ZjlkLTkzNjgtYmZiNmNmMGYwODM1
LzEvV3h3ZUJpUURtOUh4cVViTFVUeVRPRy1yYXhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRBtMA0G
CSqGSIb3DQEBCwUAA4IBAQAH8mhn8fz32Ui5QbTD99L6MKzksftnYGcAW8T/71Fb
ZLCRyQuKdCbGTavbWdkiWNfuV4VeDyquTkzAsQaS82/o2XRkirHDAXMpde+xV9x8
V9MzrK4yYmYuGNs1e30vfWxVoNfbviPj1UDHjGOQb8MzPc5ibH26nYWDUuFPJOod
TY+xb7iwQTkPgLslSOgAeTaRKmlYOo8oUz+5t+4NrJhu35nH+pYpdNILaqkfgWrU
1nGuZ0UtyoiLbq5DIBsxxXholUZk1y5tBU5ey+7XL4t+jvoSpJZVqqhD9na6qpdC
0w8yZCszs8r6ScwB4jfi3qHaG+Bs9e727t9DoNUCpYfd
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:50 2024 by rpki-client on console-fra.rpki-client.org