Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/mxyA6mK93tOo9tIoboNjExtz4Vg.roa
File: mxyA6mK93tOo9tIoboNjExtz4Vg.roa (raw, json)
Hash identifier: VMp2WklvPF/LSf2S1ZgOp6vn82qmJua85BhTnS8AXAY=
Subject key identifier: 9B:1C:80:EA:62:BD:DE:D3:A8:F6:D2:28:6E:83:63:13:1B:73:E1:58
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 42F212BA
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/mxyA6mK93tOo9tIoboNjExtz4Vg.roa
Signing time: Mon 31 Jan 2022 13:50:47 +0000
ROA not before: Mon 31 Jan 2022 13:50:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12668
IP address blocks: 188.18.112.0/24 maxlen: 24
188.18.116.0/24 maxlen: 24
188.18.113.0/24 maxlen: 24
188.17.116.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1123160762 (0x42f212ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 31 13:50:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b1c80ea62bdded3a8f6d2286e8363131b73e158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:70:bc:6c:d8:b3:10:be:94:69:b8:ac:ea:05:
46:e1:4e:a6:51:0e:a1:cd:b2:a5:bc:0f:67:de:a7:
63:74:3e:0a:64:e9:55:b6:eb:a4:a8:d5:29:3d:1c:
c1:be:c4:c1:b6:2b:66:02:db:fe:aa:9f:f3:85:6b:
d6:cd:55:1a:ad:39:ab:1f:f6:95:97:c0:93:50:aa:
ea:25:d9:d5:08:71:56:64:9e:90:92:ae:53:b1:86:
cf:f0:42:89:d6:06:8a:78:79:2b:ef:3a:d3:2f:1e:
b4:86:6d:98:83:9e:59:29:7d:c6:aa:04:fa:f6:0e:
fe:ee:f2:a9:50:83:b1:ee:27:e8:ae:d2:9e:8e:41:
47:4c:fa:0e:b1:2e:57:7c:b5:3f:b7:06:55:b3:96:
ae:d2:ab:75:76:49:51:6a:d1:1b:d3:ad:dd:df:50:
af:b9:68:6d:49:a5:dd:d3:f0:9c:1d:54:6b:9f:57:
ee:95:5b:cf:d9:94:ae:e8:51:76:39:9f:17:d9:f9:
8c:d3:51:26:72:36:8c:f6:b9:5c:64:a2:f4:90:d8:
87:0b:3a:a6:43:b5:b2:17:7d:3f:1b:47:3a:76:a6:
42:af:37:52:e8:c4:6e:f4:55:85:c2:84:41:38:8f:
f9:60:4a:b7:96:94:51:87:80:18:69:cc:b1:fb:62:
bb:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:1C:80:EA:62:BD:DE:D3:A8:F6:D2:28:6E:83:63:13:1B:73:E1:58
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/mxyA6mK93tOo9tIoboNjExtz4Vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.17.116.0/23
188.18.112.0/23
188.18.116.0/24
Signature Algorithm: sha256WithRSAEncryption
78:ab:f7:d8:aa:d9:15:fe:8e:ed:ee:cb:dd:8f:97:24:73:ae:
c4:67:f2:b0:29:7c:ba:7e:4a:2e:b3:00:7c:29:7f:ef:39:6f:
c2:aa:e5:15:91:63:95:28:c6:07:d6:1b:08:d7:13:bb:18:16:
c2:07:2c:5f:52:1d:b7:c9:d5:f9:b7:f8:79:fe:d0:fe:0d:15:
68:fc:d6:70:fc:29:c8:6b:9a:59:a4:e7:a6:16:7c:6f:2b:ea:
a1:2f:4c:26:94:aa:4c:e5:d2:89:7b:e4:54:72:49:4a:97:9a:
91:4a:00:39:68:54:f1:0d:92:3f:11:a5:6c:a6:5a:f7:36:26:
eb:2b:3a:9f:1d:f2:28:02:ad:34:69:32:ff:cb:a7:f6:cd:88:
6e:99:c6:3d:9d:b4:f4:47:6f:93:7d:64:15:52:94:f7:01:e1:
ce:45:d0:8c:bb:b6:a8:87:3b:cc:00:85:9f:3f:ed:55:cc:ee:
22:65:e2:b7:5b:63:6b:2c:e0:86:93:38:32:6f:fd:b2:98:2d:
ef:56:6b:ce:e4:8c:da:13:eb:e0:67:4a:0d:a6:c5:b4:48:c4:
d5:98:e7:57:9c:b9:b3:4f:80:3b:28:69:fe:06:6d:dd:39:08:
fa:02:0d:90:54:d6:4d:cf:a6:58:4e:b7:9f:94:09:48:ac:5c:
3c:3b:89:97
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEQvISujANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZWU1MzFiOWFjMjk5MGQ2OWE4YTVjMzAyM2U3MmU2ZDg0MWU2YzA5MB4XDTIyMDEz
MTEzNTA0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWIxYzgwZWE2MmJk
ZGVkM2E4ZjZkMjI4NmU4MzYzMTMxYjczZTE1ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKVwvGzYsxC+lGm4rOoFRuFOplEOoc2ypbwPZ96nY3Q+CmTp
VbbrpKjVKT0cwb7EwbYrZgLb/qqf84Vr1s1VGq05qx/2lZfAk1Cq6iXZ1QhxVmSe
kJKuU7GGz/BCidYGinh5K+860y8etIZtmIOeWSl9xqoE+vYO/u7yqVCDse4n6K7S
no5BR0z6DrEuV3y1P7cGVbOWrtKrdXZJUWrRG9Ot3d9Qr7lobUml3dPwnB1Ua59X
7pVbz9mUruhRdjmfF9n5jNNRJnI2jPa5XGSi9JDYhws6pkO1shd9PxtHOnamQq83
UujEbvRVhcKEQTiP+WBKt5aUUYeAGGnMsftiu7ECAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBSbHIDqYr3e06j20ihug2MTG3PhWDAfBgNVHSMEGDAWgBRe5TG5rCmQ1pqK
XDAj5y5thB5sCTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1h1VXh1YXdwa05hYWlsd3dJLWN1YllRZWJBay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmQvOWExZDQ0LTg2MDktNGU1ZS1iYTk0LTVhODZjMjc1N2MxZS8x
L214eUE2bUs5M3RPbzl0SW9ib05qRXh0ejRWZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQv
OWExZDQ0LTg2MDktNGU1ZS1iYTk0LTVhODZjMjc1N2MxZS8xL1h1VXh1YXdwa05h
YWlsd3dJLWN1YllRZWJBay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAbwRdAMEAbwScAMEALwSdDANBgkq
hkiG9w0BAQsFAAOCAQEAeKv32KrZFf6O7e7L3Y+XJHOuxGfysCl8un5KLrMAfCl/
7zlvwqrlFZFjlSjGB9YbCNcTuxgWwgcsX1Idt8nV+bf4ef7Q/g0VaPzWcPwpyGua
WaTnphZ8byvqoS9MJpSqTOXSiXvkVHJJSpeakUoAOWhU8Q2SPxGlbKZa9zYm6ys6
nx3yKAKtNGky/8un9s2IbpnGPZ209Edvk31kFVKU9wHhzkXQjLu2qIc7zACFnz/t
VczuImXit1tjayzghpM4Mm/9spgt71ZrzuSM2hPr4GdKDabFtEjE1ZjnV5y5s0+A
Oyhp/gZt3TkI+gINkFTWTc+mWE63n5QJSKxcPDuJlw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:26 2024 by rpki-client on console-ams.rpki-client.org