Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2e95e7-5644-46f2-8fa3-398c045189eb/1/mCGaEWWzCLLtyNoy8i9Pn-eUb1A.roa
File: mCGaEWWzCLLtyNoy8i9Pn-eUb1A.roa (raw, json)
Hash identifier: PUv0GVvSLth8ouG8rACX3My1uTMYHCGOCg+45cfvj7E=
Subject key identifier: 98:21:9A:11:65:B3:08:B2:ED:C8:DA:32:F2:2F:4F:9F:E7:94:6F:50
Certificate issuer: /CN=f541d46893aaa164fe2673990d07aa6c071003c0
Certificate serial: 04AD21A7
Authority key identifier: F5:41:D4:68:93:AA:A1:64:FE:26:73:99:0D:07:AA:6C:07:10:03:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9UHUaJOqoWT-JnOZDQeqbAcQA8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2e95e7-5644-46f2-8fa3-398c045189eb/1/mCGaEWWzCLLtyNoy8i9Pn-eUb1A.roa
Signing time: Tue 08 Mar 2022 08:00:41 +0000
ROA not before: Tue 08 Mar 2022 08:00:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44084
IP address blocks: 217.115.16.0/20 maxlen: 24
2a09:6240::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78455207 (0x4ad21a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f541d46893aaa164fe2673990d07aa6c071003c0
Validity
Not Before: Mar 8 08:00:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98219a1165b308b2edc8da32f22f4f9fe7946f50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:04:0c:4b:51:03:89:ff:a6:11:92:43:99:b5:
5e:0f:a6:30:4b:78:8b:8a:ba:a3:57:5f:dc:29:34:
89:77:bd:3a:cd:64:0d:95:b0:9f:f2:f8:9f:60:ba:
b2:f1:a1:19:0f:df:c9:0a:45:2c:21:9e:c2:ae:3a:
ee:70:25:c0:18:c5:96:f7:00:58:55:0f:94:e3:99:
94:92:a1:6b:39:36:f9:2d:e9:28:0a:77:38:f7:09:
c5:8e:ff:a3:de:31:69:4d:c9:8a:92:6a:0a:1e:d6:
c0:72:00:22:79:68:62:93:ea:58:8c:34:c8:43:76:
ce:36:45:eb:7c:8a:03:3f:a3:23:2c:2f:b9:b4:35:
30:c8:7e:2e:c5:74:59:41:8c:9a:bc:51:44:90:7e:
d0:70:41:8b:60:45:75:7f:db:c9:83:4b:d0:24:8f:
83:fe:13:fe:51:b8:64:46:36:35:78:5a:7a:2f:13:
b7:15:05:96:45:65:e2:48:14:81:1b:9b:bf:52:40:
49:9a:7b:ea:d0:00:6e:94:7e:37:d8:1d:db:33:6f:
f2:5b:1f:79:ad:c0:bb:20:d0:84:41:e4:33:09:7f:
2e:5c:13:29:7e:7a:26:2d:0b:3d:8e:92:df:48:52:
fe:ed:3b:a3:38:ee:ca:72:41:f0:c2:26:d7:32:ec:
5b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:21:9A:11:65:B3:08:B2:ED:C8:DA:32:F2:2F:4F:9F:E7:94:6F:50
X509v3 Authority Key Identifier:
keyid:F5:41:D4:68:93:AA:A1:64:FE:26:73:99:0D:07:AA:6C:07:10:03:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9UHUaJOqoWT-JnOZDQeqbAcQA8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2e95e7-5644-46f2-8fa3-398c045189eb/1/mCGaEWWzCLLtyNoy8i9Pn-eUb1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2e95e7-5644-46f2-8fa3-398c045189eb/1/9UHUaJOqoWT-JnOZDQeqbAcQA8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.115.16.0/20
IPv6:
2a09:6240::/29
Signature Algorithm: sha256WithRSAEncryption
12:b4:cc:98:2d:50:ee:1d:65:17:73:be:d1:1e:55:0a:05:17:
8b:2b:d3:dd:b1:54:f3:d7:da:2b:ec:7c:01:20:e1:45:3e:9e:
d2:80:80:fd:4a:37:aa:c0:e8:4a:78:10:93:8b:75:ac:c9:f6:
da:04:5a:f4:c6:aa:7c:b9:4b:7b:a6:ce:15:c0:66:67:87:ca:
f8:f3:fe:b3:cb:3c:ba:ab:17:41:66:d2:c4:63:79:96:5d:ac:
8d:f2:b3:e3:a7:3a:d7:6f:5a:38:25:11:9f:f2:b4:7f:63:b1:
de:e0:36:ee:0b:1a:13:95:8c:29:74:bc:54:55:2e:72:59:d6:
19:79:fa:5f:a5:ac:79:98:d9:bb:5f:31:bc:6e:4a:b9:cd:18:
b3:f3:e1:8b:77:4c:c6:72:0b:79:aa:b0:a2:1f:fc:84:b1:7b:
bb:17:cc:e8:64:31:ab:5c:16:ab:84:9c:2c:5b:ab:19:09:e1:
8b:b5:7a:3e:44:0c:44:c6:55:9b:71:35:13:b9:a2:c9:57:31:
fb:9d:cc:5d:45:89:f6:0e:73:2c:b9:2b:b5:bb:4f:c3:6b:d0:
cc:80:b2:03:42:dc:54:05:d4:31:08:74:2b:11:ba:fe:55:f0:
00:88:64:88:49:a5:f7:cd:ab:15:55:bd:31:9c:c4:57:22:c6:
ad:92:7a:78
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBK0hpzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
NTQxZDQ2ODkzYWFhMTY0ZmUyNjczOTkwZDA3YWE2YzA3MTAwM2MwMB4XDTIyMDMw
ODA4MDA0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTgyMTlhMTE2NWIz
MDhiMmVkYzhkYTMyZjIyZjRmOWZlNzk0NmY1MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIgEDEtRA4n/phGSQ5m1Xg+mMEt4i4q6o1df3Ck0iXe9Os1k
DZWwn/L4n2C6svGhGQ/fyQpFLCGewq467nAlwBjFlvcAWFUPlOOZlJKhazk2+S3p
KAp3OPcJxY7/o94xaU3JipJqCh7WwHIAInloYpPqWIw0yEN2zjZF63yKAz+jIywv
ubQ1MMh+LsV0WUGMmrxRRJB+0HBBi2BFdX/byYNL0CSPg/4T/lG4ZEY2NXhaei8T
txUFlkVl4kgUgRubv1JASZp76tAAbpR+N9gd2zNv8lsfea3AuyDQhEHkMwl/LlwT
KX56Ji0LPY6S30hS/u07ozjuynJB8MIm1zLsW8ECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSYIZoRZbMIsu3I2jLyL0+f55RvUDAfBgNVHSMEGDAWgBT1QdRok6qhZP4m
c5kNB6psBxADwDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzlVSFVhSk9xb1dULUpuT1pEUWVxYkFjUUE4QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGEvMmU5NWU3LTU2NDQtNDZmMi04ZmEzLTM5OGMwNDUxODllYi8x
L21DR2FFV1d6Q0xMdHlOb3k4aTlQbi1lVWIxQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGEv
MmU5NWU3LTU2NDQtNDZmMi04ZmEzLTM5OGMwNDUxODllYi8xLzlVSFVhSk9xb1dU
LUpuT1pEUWVxYkFjUUE4QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEBNlzEDANBAIAAjAHAwUDKgliQDAN
BgkqhkiG9w0BAQsFAAOCAQEAErTMmC1Q7h1lF3O+0R5VCgUXiyvT3bFU89faK+x8
ASDhRT6e0oCA/Uo3qsDoSngQk4t1rMn22gRa9MaqfLlLe6bOFcBmZ4fK+PP+s8s8
uqsXQWbSxGN5ll2sjfKz46c6129aOCURn/K0f2Ox3uA27gsaE5WMKXS8VFUuclnW
GXn6X6WseZjZu18xvG5Kuc0Ys/Phi3dMxnILeaqwoh/8hLF7uxfM6GQxq1wWq4Sc
LFurGQnhi7V6PkQMRMZVm3E1E7miyVcx+53MXUWJ9g5zLLkrtbtPw2vQzICyA0Lc
VAXUMQh0KxG6/lXwAIhkiEml982rFVW9MZzEVyLGrZJ6eA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:27 2023 by rpki-client on console-fra.rpki-client.org