Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/bmOQtEo36CDPOEH-mt-6HnSMVPk.roa
File: bmOQtEo36CDPOEH-mt-6HnSMVPk.roa (raw, json)
Hash identifier: iSBW4lg0D5/7qXPtGTNpu7SIjDg5o7kyGL/2YW1ehxI=
Subject key identifier: 6E:63:90:B4:4A:37:E8:20:CF:38:41:FE:9A:DF:BA:1E:74:8C:54:F9
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 050DD61B
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/bmOQtEo36CDPOEH-mt-6HnSMVPk.roa
Signing time: Tue 19 Apr 2022 21:48:14 +0000
ROA not before: Tue 19 Apr 2022 21:48:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8308
IP address blocks: 194.181.92.0/24 maxlen: 24
217.9.160.0/20 maxlen: 20
217.9.160.0/24 maxlen: 24
217.9.165.0/24 maxlen: 24
194.181.19.0/24 maxlen: 24
194.181.20.0/24 maxlen: 24
194.181.21.0/24 maxlen: 24
194.181.22.0/24 maxlen: 24
195.187.0.0/18 maxlen: 18
193.59.0.0/16 maxlen: 16
194.181.255.0/24 maxlen: 24
195.164.0.0/16 maxlen: 16
194.181.1.0/24 maxlen: 24
194.181.4.0/24 maxlen: 24
194.181.0.0/16 maxlen: 16
194.181.5.0/24 maxlen: 24
195.187.101.0/24 maxlen: 24
195.187.128.0/17 maxlen: 17
2001:a10::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84792859 (0x50dd61b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Apr 19 21:48:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e6390b44a37e820cf3841fe9adfba1e748c54f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:57:87:46:d4:52:b9:2f:42:0a:70:86:a8:d4:
48:f5:dd:a7:13:3c:00:8b:dd:51:e5:66:1e:13:22:
0b:09:28:8c:90:a9:e4:9b:22:fb:49:74:a4:85:71:
df:ed:87:4a:74:36:a8:47:5d:9b:c0:39:bd:1e:f6:
3c:bb:92:69:6f:c2:92:ba:3f:ef:77:35:b7:31:8f:
43:a4:48:58:ba:d2:f8:92:99:f6:18:f9:de:db:0a:
16:ae:d5:84:09:b0:15:7d:f3:f6:ea:d3:1f:f8:fd:
99:27:d9:c6:42:a1:a5:c0:2f:9a:cf:10:64:dd:84:
a5:4c:76:e6:a3:a1:32:f6:28:1d:85:f1:d9:e2:e9:
8d:84:74:b9:f9:49:81:68:e3:16:8f:12:31:4a:9f:
91:01:ab:6a:a1:62:4b:fa:9a:96:ae:16:36:1d:d5:
b7:2b:ad:4e:23:d1:46:6e:20:82:4b:31:c4:3f:10:
12:fc:86:48:51:9c:e0:6f:45:13:f5:3f:c3:42:3c:
ec:9a:07:d0:e0:3f:1a:23:37:e8:b4:bf:4a:91:c6:
df:ac:91:d2:83:20:f0:77:55:d5:2e:61:04:71:7e:
36:71:51:39:d1:63:7c:25:f3:95:b5:47:9e:fe:ae:
62:44:bc:50:d5:c2:4c:2e:66:dc:13:60:79:13:81:
17:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:63:90:B4:4A:37:E8:20:CF:38:41:FE:9A:DF:BA:1E:74:8C:54:F9
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/bmOQtEo36CDPOEH-mt-6HnSMVPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.0.0/16
194.181.0.0/16
195.164.0.0/16
195.187.0.0/18
195.187.101.0/24
195.187.128.0/17
217.9.160.0/20
IPv6:
2001:a10::/32
Signature Algorithm: sha256WithRSAEncryption
57:50:21:f0:36:e4:8e:bc:f0:ea:c4:b0:cf:16:d9:e5:63:b0:
b4:75:ba:87:34:ff:69:ec:b8:3b:35:f6:bc:3a:88:60:e1:f7:
15:0a:8a:7e:ea:7e:36:bd:30:30:12:22:d9:2d:25:fd:b2:08:
af:4d:59:a4:c2:ae:58:4e:fe:15:09:27:89:a6:b3:d9:77:77:
ac:a4:b6:79:1d:25:8d:f6:dd:cf:cd:d9:bb:3a:16:0f:4b:6e:
76:06:01:dc:34:74:0d:e8:4c:c1:81:cf:17:73:45:87:a0:f3:
21:14:17:06:89:f6:17:64:d7:fd:19:f6:4e:6e:23:40:d8:cb:
8a:12:bc:b6:4d:67:e5:64:9c:e9:ca:42:5e:96:fd:c5:01:8a:
c0:2f:3d:f5:eb:f3:a8:22:56:90:68:e9:51:b5:ce:72:f5:05:
ca:2d:82:42:92:d4:e5:d2:56:a4:7d:a8:5c:b4:41:9a:3a:60:
c2:2d:af:b0:98:e1:44:6c:29:26:69:14:fd:d0:ed:27:ff:47:
44:e1:1a:71:d6:2e:b3:c5:7e:81:86:b7:47:5d:c9:56:6f:a8:
32:71:37:b2:6e:10:be:a7:dd:c8:4b:02:76:20:33:c8:20:7c:
62:44:88:a7:44:b8:b8:ce:d5:43:7e:e0:78:11:43:2f:11:c5:
58:b9:25:35
-----BEGIN CERTIFICATE-----
MIIFHzCCBAegAwIBAgIEBQ3WGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MGM0MDk2MTNmZWEwYTJiNDQyY2UxMTJlOWNiZGI0ODVlMDExODhmMB4XDTIyMDQx
OTIxNDgxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmU2MzkwYjQ0YTM3
ZTgyMGNmMzg0MWZlOWFkZmJhMWU3NDhjNTRmOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKVXh0bUUrkvQgpwhqjUSPXdpxM8AIvdUeVmHhMiCwkojJCp
5Jsi+0l0pIVx3+2HSnQ2qEddm8A5vR72PLuSaW/Ckro/73c1tzGPQ6RIWLrS+JKZ
9hj53tsKFq7VhAmwFX3z9urTH/j9mSfZxkKhpcAvms8QZN2EpUx25qOhMvYoHYXx
2eLpjYR0uflJgWjjFo8SMUqfkQGraqFiS/qalq4WNh3VtyutTiPRRm4ggksxxD8Q
EvyGSFGc4G9FE/U/w0I87JoH0OA/GiM36LS/SpHG36yR0oMg8HdV1S5hBHF+NnFR
OdFjfCXzlbVHnv6uYkS8UNXCTC5m3BNgeROBF7MCAwEAAaOCAjkwggI1MB0GA1Ud
DgQWBBRuY5C0SjfoIM84Qf6a37oedIxU+TAfBgNVHSMEGDAWgBQwxAlhP+oKK0Qs
4RLpy9tIXgEYjzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01NUUpZVF9xQ2l0RUxPRVM2Y3ZiU0Y0QkdJOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTEvYjc4ZmI1LWFmY2EtNGRiNy04ODg2LWMwNjcxYmY0Y2YzZS8x
L2JtT1F0RW8zNkNEUE9FSC1tdC02SG5TTVZQay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTEv
Yjc4ZmI1LWFmY2EtNGRiNy04ODg2LWMwNjcxYmY0Y2YzZS8xL01NUUpZVF9xQ2l0
RUxPRVM2Y3ZiU0Y0QkdJOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBP
BggrBgEFBQcBBwEB/wRAMD4wLQQCAAEwJwMDAME7AwMAwrUDAwDDpAMEBsO7AAME
AMO7ZQMEB8O7gAMEBNkJoDANBAIAAjAHAwUAIAEKEDANBgkqhkiG9w0BAQsFAAOC
AQEAV1Ah8Dbkjrzw6sSwzxbZ5WOwtHW6hzT/aey4OzX2vDqIYOH3FQqKfup+Nr0w
MBIi2S0l/bIIr01ZpMKuWE7+FQkniaaz2Xd3rKS2eR0ljfbdz83ZuzoWD0tudgYB
3DR0DehMwYHPF3NFh6DzIRQXBon2F2TX/Rn2Tm4jQNjLihK8tk1n5WSc6cpCXpb9
xQGKwC899evzqCJWkGjpUbXOcvUFyi2CQpLU5dJWpH2oXLRBmjpgwi2vsJjhRGwp
JmkU/dDtJ/9HROEacdYus8V+gYa3R13JVm+oMnE3sm4QvqfdyEsCdiAzyCB8YkSI
p0S4uM7VQ37geBFDLxHFWLklNQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org