Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/6c4d22-8ed7-4844-a298-21259dfb6ac0/1/MYQFrz2aJXpG61-1lJGHMdui2yI.roa
File: MYQFrz2aJXpG61-1lJGHMdui2yI.roa (raw, json)
Hash identifier: ibhsUddKpUxsD0B3YFTgxTIjaLQLo8arx7zTlkHUumM=
Subject key identifier: 31:84:05:AF:3D:9A:25:7A:46:EB:5F:B5:94:91:87:31:DB:A2:DB:22
Certificate issuer: /CN=f21d5f37506de4905e173c0f581150817250efe1
Certificate serial: 01B09A13
Authority key identifier: F2:1D:5F:37:50:6D:E4:90:5E:17:3C:0F:58:11:50:81:72:50:EF:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8h1fN1Bt5JBeFzwPWBFQgXJQ7-E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/6c4d22-8ed7-4844-a298-21259dfb6ac0/1/MYQFrz2aJXpG61-1lJGHMdui2yI.roa
Signing time: Mon 28 Mar 2022 12:56:07 +0000
ROA not before: Mon 28 Mar 2022 12:56:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 194.69.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28350995 (0x1b09a13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f21d5f37506de4905e173c0f581150817250efe1
Validity
Not Before: Mar 28 12:56:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=318405af3d9a257a46eb5fb594918731dba2db22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:47:5b:1c:dd:6d:2d:5d:f2:31:45:0d:a2:fb:
8e:f5:dc:b1:36:5f:ba:26:f6:f2:7e:a4:09:2a:c7:
92:fa:43:85:8a:59:33:2d:4d:25:68:2a:54:47:ad:
45:e0:8d:2b:5e:0b:c7:5f:43:ef:ad:7f:5a:b2:da:
8d:a4:b2:22:d3:28:2f:0b:d9:56:b2:0c:ec:29:f8:
73:70:c7:3e:1f:7e:6a:6b:7c:b3:db:37:9e:db:4c:
e1:5d:f4:26:74:83:74:6d:be:4c:02:a1:3a:aa:cb:
c0:2f:ae:4a:c7:58:83:46:70:0b:80:3a:d9:5e:60:
b7:c8:92:94:53:2b:f5:3f:30:34:eb:34:2b:2f:40:
ce:d5:36:79:d2:18:1b:2a:36:f0:3c:b5:1c:e6:e7:
d1:68:bc:91:f1:5b:d1:1e:06:ec:79:b2:88:d2:c2:
92:69:af:42:a9:00:2c:b2:d1:5f:6d:a0:f9:c0:1e:
b8:b1:34:3d:f8:a3:14:2b:ee:17:44:9b:b4:9b:1d:
a2:18:13:e4:50:d6:ab:de:a5:53:1d:ae:fa:2a:f1:
d9:9d:7a:ae:b5:be:d1:65:cf:34:95:6f:60:ca:08:
1f:e1:a1:23:44:0a:04:da:12:d6:04:3e:a7:94:25:
c9:ef:b5:9a:88:f4:03:b6:1b:d3:06:9d:da:7a:1d:
25:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:84:05:AF:3D:9A:25:7A:46:EB:5F:B5:94:91:87:31:DB:A2:DB:22
X509v3 Authority Key Identifier:
keyid:F2:1D:5F:37:50:6D:E4:90:5E:17:3C:0F:58:11:50:81:72:50:EF:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8h1fN1Bt5JBeFzwPWBFQgXJQ7-E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6c4d22-8ed7-4844-a298-21259dfb6ac0/1/MYQFrz2aJXpG61-1lJGHMdui2yI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6c4d22-8ed7-4844-a298-21259dfb6ac0/1/8h1fN1Bt5JBeFzwPWBFQgXJQ7-E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.69.160.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:a0:5c:c2:5a:23:cd:07:8c:c8:d8:43:47:cc:32:5f:8f:c3:
a5:8f:a1:5e:ab:5a:1d:f0:bd:7d:9e:4d:43:ff:79:db:f5:8d:
16:06:d7:a5:ff:e7:b4:8a:ad:56:b7:8f:a2:04:01:ff:1a:ca:
82:95:48:53:ae:0f:91:ff:de:ac:75:9a:48:d2:3d:a8:f9:74:
d4:bb:21:d8:af:a2:bc:0c:f3:bd:ca:42:58:31:b0:1a:12:72:
8d:ab:ee:4b:32:29:69:de:5a:cd:63:97:45:95:73:9b:79:8e:
d5:3e:24:68:39:05:99:76:8b:05:31:6d:75:59:50:f9:48:72:
b4:4b:68:74:b9:44:b4:65:3a:62:da:54:dd:6a:97:51:64:20:
9c:35:75:43:ba:ef:0b:40:cb:91:88:92:e4:51:9c:de:7a:9d:
0e:a6:e5:fa:2b:fe:ca:d7:6d:af:c0:62:11:c9:db:11:b2:96:
3e:e0:3d:26:8b:14:b5:c6:73:29:df:1a:56:ac:d1:11:d2:d7:
8c:c7:55:c5:bc:7d:cd:ca:de:e2:a2:02:ac:ca:98:9c:da:23:
65:e0:a1:29:3b:0f:75:84:59:9b:15:dd:e5:8e:ea:89:76:1a:
c9:3e:24:a0:39:b8:bf:2e:e5:18:90:a2:d3:39:31:cf:14:a3:
f5:89:b9:9e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAbCaEzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
MjFkNWYzNzUwNmRlNDkwNWUxNzNjMGY1ODExNTA4MTcyNTBlZmUxMB4XDTIyMDMy
ODEyNTYwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzE4NDA1YWYzZDlh
MjU3YTQ2ZWI1ZmI1OTQ5MTg3MzFkYmEyZGIyMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL1HWxzdbS1d8jFFDaL7jvXcsTZfuib28n6kCSrHkvpDhYpZ
My1NJWgqVEetReCNK14Lx19D761/WrLajaSyItMoLwvZVrIM7Cn4c3DHPh9+amt8
s9s3nttM4V30JnSDdG2+TAKhOqrLwC+uSsdYg0ZwC4A62V5gt8iSlFMr9T8wNOs0
Ky9AztU2edIYGyo28Dy1HObn0Wi8kfFb0R4G7HmyiNLCkmmvQqkALLLRX22g+cAe
uLE0PfijFCvuF0SbtJsdohgT5FDWq96lUx2u+irx2Z16rrW+0WXPNJVvYMoIH+Gh
I0QKBNoS1gQ+p5Qlye+1moj0A7Yb0wad2nodJTMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQxhAWvPZolekbrX7WUkYcx26LbIjAfBgNVHSMEGDAWgBTyHV83UG3kkF4X
PA9YEVCBclDv4TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzhoMWZOMUJ0NUpCZUZ6d1BXQkZRZ1hKUTctRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTUvNmM0ZDIyLThlZDctNDg0NC1hMjk4LTIxMjU5ZGZiNmFjMC8x
L01ZUUZyejJhSlhwRzYxLTFsSkdITWR1aTJ5SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTUv
NmM0ZDIyLThlZDctNDg0NC1hMjk4LTIxMjU5ZGZiNmFjMC8xLzhoMWZOMUJ0NUpC
ZUZ6d1BXQkZRZ1hKUTctRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMJFoDANBgkqhkiG9w0BAQsFAAOC
AQEAo6BcwlojzQeMyNhDR8wyX4/DpY+hXqtaHfC9fZ5NQ/952/WNFgbXpf/ntIqt
VrePogQB/xrKgpVIU64Pkf/erHWaSNI9qPl01Lsh2K+ivAzzvcpCWDGwGhJyjavu
SzIpad5azWOXRZVzm3mO1T4kaDkFmXaLBTFtdVlQ+UhytEtodLlEtGU6YtpU3WqX
UWQgnDV1Q7rvC0DLkYiS5FGc3nqdDqbl+iv+ytdtr8BiEcnbEbKWPuA9JosUtcZz
Kd8aVqzREdLXjMdVxbx9zcre4qICrMqYnNojZeChKTsPdYRZmxXd5Y7qiXYayT4k
oDm4vy7lGJCi0zkxzxSj9Ym5ng==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-ams.rpki-client.org