Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/cAGex0g5PlEp16mZ8A9FcCN2FPQ.roa
File: cAGex0g5PlEp16mZ8A9FcCN2FPQ.roa (raw, json)
Hash identifier: gD+9yQRJZIGWnSwoCRU0C3Y66EDAX79qDnfbN2qBnzw=
Subject key identifier: 70:01:9E:C7:48:39:3E:51:29:D7:A9:99:F0:0F:45:70:23:76:14:F4
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 04851E44
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/cAGex0g5PlEp16mZ8A9FcCN2FPQ.roa
Signing time: Wed 02 Mar 2022 10:42:14 +0000
ROA not before: Wed 02 Mar 2022 10:42:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199721
IP address blocks: 148.81.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75832900 (0x4851e44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Mar 2 10:42:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70019ec748393e5129d7a999f00f4570237614f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:45:13:82:3c:05:f1:8c:d9:ae:ab:8e:86:dc:
51:44:99:81:7e:75:d0:2b:a8:07:40:6e:7c:fc:57:
99:e5:d4:e9:32:f5:a3:1d:c4:ec:bc:aa:44:0a:05:
31:60:b8:df:fd:a0:3b:bc:11:b7:01:53:a2:83:a3:
27:eb:1f:bf:1a:fa:95:2f:c3:7e:54:c8:e3:f8:8b:
e9:22:db:5b:76:ae:b2:ea:56:79:ee:ca:0d:f4:36:
59:1c:68:6d:19:2c:f6:36:41:15:e8:95:93:6f:b6:
cb:7e:7b:6f:78:b7:7b:ea:c5:2d:07:a4:44:43:17:
f0:fa:5e:95:33:87:d6:ee:cf:ec:f3:19:3c:74:b4:
a4:9d:4f:53:08:22:68:2e:4a:58:61:8e:89:6c:54:
5e:12:e8:40:92:59:dc:0a:cd:1f:fb:ad:43:82:a4:
4a:08:9e:67:a0:30:13:9b:7f:14:0e:76:f0:44:22:
e5:60:63:57:7e:ae:a5:ee:f5:42:a9:42:2c:27:5b:
4f:fe:1b:a6:7d:a7:fb:83:60:10:0c:20:0a:83:cf:
c3:09:28:67:06:dc:ff:20:61:5a:bb:b2:81:de:d0:
0a:77:1f:e5:5e:31:9e:a0:5e:b2:81:82:b6:09:37:
eb:d7:49:3b:e6:9e:90:5d:3f:31:90:b6:75:bd:3b:
d9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:01:9E:C7:48:39:3E:51:29:D7:A9:99:F0:0F:45:70:23:76:14:F4
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/cAGex0g5PlEp16mZ8A9FcCN2FPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.81.110.0/24
Signature Algorithm: sha256WithRSAEncryption
75:45:64:6e:cc:8c:67:86:4f:ac:21:01:b8:e8:75:cc:29:1a:
ab:16:8e:d0:68:a6:b1:4a:5a:1e:00:1b:59:b7:b2:a4:1f:47:
b9:0b:ce:f5:4a:12:80:d4:14:7f:94:d3:31:fd:05:55:47:76:
83:72:62:73:06:a3:a1:e2:ce:44:e0:ed:48:0d:11:ba:b2:55:
68:76:a3:f5:70:84:6c:f5:d8:e6:10:fa:a6:4c:bc:6f:b3:88:
26:99:1a:c1:95:39:b2:81:29:ad:8d:62:5f:30:0d:ea:5a:bf:
4b:22:5b:c3:48:1a:8e:8a:b7:37:e4:1a:3d:6e:86:d4:99:97:
91:a2:00:10:c5:6e:47:8f:62:25:3e:ae:87:ed:cb:6a:92:fa:
19:12:b0:92:08:3f:d7:ae:49:c2:21:29:2d:68:0d:3e:ef:57:
1e:94:51:da:ce:8b:b0:54:13:d0:43:fe:2a:01:ee:d3:65:75:
66:41:a4:3f:27:06:72:29:bc:b0:fb:2d:6f:17:02:75:50:23:
12:03:93:da:db:6c:f9:f4:87:db:5a:e5:bb:e0:f9:5d:4b:92:
cf:05:4f:56:0d:33:3b:97:8d:af:ea:b8:fd:4f:6f:d8:56:b9:
4f:ce:21:f7:28:e8:27:55:8f:df:b7:1f:3e:ac:ec:66:a9:95:
15:f0:1b:30
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBIUeRDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MGM0MDk2MTNmZWEwYTJiNDQyY2UxMTJlOWNiZGI0ODVlMDExODhmMB4XDTIyMDMw
MjEwNDIxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzAwMTllYzc0ODM5
M2U1MTI5ZDdhOTk5ZjAwZjQ1NzAyMzc2MTRmNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANVFE4I8BfGM2a6rjobcUUSZgX510CuoB0BufPxXmeXU6TL1
ox3E7LyqRAoFMWC43/2gO7wRtwFTooOjJ+sfvxr6lS/DflTI4/iL6SLbW3ausupW
ee7KDfQ2WRxobRks9jZBFeiVk2+2y357b3i3e+rFLQekREMX8PpelTOH1u7P7PMZ
PHS0pJ1PUwgiaC5KWGGOiWxUXhLoQJJZ3ArNH/utQ4KkSgieZ6AwE5t/FA528EQi
5WBjV36upe71QqlCLCdbT/4bpn2n+4NgEAwgCoPPwwkoZwbc/yBhWruygd7QCncf
5V4xnqBesoGCtgk369dJO+aekF0/MZC2db072fMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRwAZ7HSDk+USnXqZnwD0VwI3YU9DAfBgNVHSMEGDAWgBQwxAlhP+oKK0Qs
4RLpy9tIXgEYjzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01NUUpZVF9xQ2l0RUxPRVM2Y3ZiU0Y0QkdJOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTEvYjc4ZmI1LWFmY2EtNGRiNy04ODg2LWMwNjcxYmY0Y2YzZS8x
L2NBR2V4MGc1UGxFcDE2bVo4QTlGY0NOMkZQUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTEv
Yjc4ZmI1LWFmY2EtNGRiNy04ODg2LWMwNjcxYmY0Y2YzZS8xL01NUUpZVF9xQ2l0
RUxPRVM2Y3ZiU0Y0QkdJOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJRRbjANBgkqhkiG9w0BAQsFAAOC
AQEAdUVkbsyMZ4ZPrCEBuOh1zCkaqxaO0GimsUpaHgAbWbeypB9HuQvO9UoSgNQU
f5TTMf0FVUd2g3JicwajoeLORODtSA0RurJVaHaj9XCEbPXY5hD6pky8b7OIJpka
wZU5soEprY1iXzAN6lq/SyJbw0gajoq3N+QaPW6G1JmXkaIAEMVuR49iJT6uh+3L
apL6GRKwkgg/165JwiEpLWgNPu9XHpRR2s6LsFQT0EP+KgHu02V1ZkGkPycGcim8
sPstbxcCdVAjEgOT2tts+fSH21rlu+D5XUuSzwVPVg0zO5eNr+q4/U9v2Fa5T84h
9yjoJ1WP37cfPqzsZqmVFfAbMA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org