Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/mcYypEv1fiK2BuiGUbEnvAVkk-8.roa
File: mcYypEv1fiK2BuiGUbEnvAVkk-8.roa (raw, json)
Hash identifier: l7hl1sJr1ZnTnrvA6yt+CJLzCgY/l/ilxSjcHeyTk1A=
Subject key identifier: 99:C6:32:A4:4B:F5:7E:22:B6:06:E8:86:51:B1:27:BC:05:64:93:EF
Certificate issuer: /CN=08d381ce24231061815f32043c652266adbbd865
Certificate serial: 04309F49
Authority key identifier: 08:D3:81:CE:24:23:10:61:81:5F:32:04:3C:65:22:66:AD:BB:D8:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNOBziQjEGGBXzIEPGUiZq272GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/mcYypEv1fiK2BuiGUbEnvAVkk-8.roa
Signing time: Sat 01 Jan 2022 04:51:11 +0000
ROA not before: Sat 01 Jan 2022 04:51:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48173
IP address blocks: 176.117.104.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70295369 (0x4309f49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d381ce24231061815f32043c652266adbbd865
Validity
Not Before: Jan 1 04:51:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99c632a44bf57e22b606e88651b127bc056493ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:68:7b:ba:ee:af:2c:3b:ae:a7:63:1c:7a:ed:
c4:6f:ab:9b:83:a7:c6:5c:e4:65:bd:d3:b1:42:f3:
31:8e:8d:d8:4f:a8:4a:2d:f5:85:6b:94:c9:62:7a:
87:f6:1d:74:ca:a2:73:63:f1:41:61:5b:06:ee:30:
82:9c:e9:ea:57:e4:00:27:42:51:d8:23:60:ce:cc:
81:d4:42:31:6e:d3:4a:c8:8f:90:66:23:cb:02:87:
5e:5a:99:c8:47:81:09:c3:7a:c2:62:70:01:65:89:
ec:64:d2:c9:2c:b4:f6:62:c4:97:87:3f:bc:4c:e5:
6a:98:f4:70:f8:47:c4:ef:2a:09:f3:f8:23:2b:2f:
76:1a:5b:56:3c:11:04:79:82:50:b2:5c:3d:cf:7a:
c2:8f:60:a7:78:53:c4:e2:da:c8:e1:98:1f:c8:47:
c2:d9:e6:21:f1:a4:25:f1:22:0a:ea:67:c1:cc:f9:
01:ec:49:3f:92:64:ea:0d:30:9f:a2:cd:0f:5f:2e:
92:92:26:ee:b3:f4:c6:85:b0:bc:9c:d0:be:c8:ff:
dc:f6:39:f5:02:58:10:8c:c8:70:da:7f:5e:7b:ab:
b5:21:0a:f2:0a:0d:66:9b:ec:20:c7:60:fd:e2:ae:
8c:85:a6:f4:38:e6:ca:d5:96:c9:0d:de:6b:b4:73:
f2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:C6:32:A4:4B:F5:7E:22:B6:06:E8:86:51:B1:27:BC:05:64:93:EF
X509v3 Authority Key Identifier:
keyid:08:D3:81:CE:24:23:10:61:81:5F:32:04:3C:65:22:66:AD:BB:D8:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNOBziQjEGGBXzIEPGUiZq272GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/mcYypEv1fiK2BuiGUbEnvAVkk-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/CNOBziQjEGGBXzIEPGUiZq272GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.104.0/21
Signature Algorithm: sha256WithRSAEncryption
6f:ff:9f:b2:2a:45:0d:82:fb:9d:ff:95:78:c3:33:15:c3:c8:
8d:53:5e:8c:d7:7d:d3:6f:1d:10:41:0e:d9:f5:13:f5:2e:e2:
6d:16:bf:a2:9a:12:20:7a:45:43:40:32:af:4f:07:a7:37:9c:
45:36:d7:2c:e2:c5:a4:54:87:3d:48:d0:78:82:17:95:95:43:
90:8a:ee:f9:bf:60:09:f1:46:cc:82:58:c7:99:ac:08:37:cc:
b2:ec:51:36:1d:b7:01:f6:87:a4:c3:85:18:4a:7d:d3:7c:f4:
ef:bf:a2:33:ad:a0:ff:66:f6:0c:1a:ec:cf:2f:b9:d5:95:0a:
a6:40:ef:d5:5c:eb:7d:8a:83:52:f7:4b:5e:69:68:71:d4:31:
a9:56:94:63:6b:6e:15:ef:07:f5:0b:bd:1b:48:f8:66:74:9f:
64:76:21:62:ad:64:b4:ed:65:e8:b0:9a:1e:97:68:c5:9b:0a:
b2:9f:16:8b:d2:70:0b:5b:40:4b:51:bb:94:d5:5e:83:56:73:
b4:f0:12:48:bb:b0:93:d3:d6:a9:2c:54:f7:ff:31:24:8d:ce:
0b:4f:4c:65:84:43:d8:87:8d:78:f5:0b:02:e1:ba:88:9f:1e:
41:d6:0e:e2:d0:a3:b6:7d:e0:b0:a2:1f:9d:5e:ad:3f:86:36:
31:d9:71:4c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBDCfSTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
OGQzODFjZTI0MjMxMDYxODE1ZjMyMDQzYzY1MjI2NmFkYmJkODY1MB4XDTIyMDEw
MTA0NTExMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTljNjMyYTQ0YmY1
N2UyMmI2MDZlODg2NTFiMTI3YmMwNTY0OTNlZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOZoe7ruryw7rqdjHHrtxG+rm4OnxlzkZb3TsULzMY6N2E+o
Si31hWuUyWJ6h/YddMqic2PxQWFbBu4wgpzp6lfkACdCUdgjYM7MgdRCMW7TSsiP
kGYjywKHXlqZyEeBCcN6wmJwAWWJ7GTSySy09mLEl4c/vEzlapj0cPhHxO8qCfP4
IysvdhpbVjwRBHmCULJcPc96wo9gp3hTxOLayOGYH8hHwtnmIfGkJfEiCupnwcz5
AexJP5Jk6g0wn6LND18ukpIm7rP0xoWwvJzQvsj/3PY59QJYEIzIcNp/XnurtSEK
8goNZpvsIMdg/eKujIWm9DjmytWWyQ3ea7Rz8o0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSZxjKkS/V+IrYG6IZRsSe8BWST7zAfBgNVHSMEGDAWgBQI04HOJCMQYYFf
MgQ8ZSJmrbvYZTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0NOT0J6aVFqRUdHQlh6SUVQR1VpWnEyNzJHVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWEvNWI3ZWY4LWU3MWYtNDI5ZS1hYWRmLTZjYjc4ZTk1YWI0NC8x
L21jWXlwRXYxZmlLMkJ1aUdVYkVudkFWa2stOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWEv
NWI3ZWY4LWU3MWYtNDI5ZS1hYWRmLTZjYjc4ZTk1YWI0NC8xL0NOT0J6aVFqRUdH
Qlh6SUVQR1VpWnEyNzJHVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA7B1aDANBgkqhkiG9w0BAQsFAAOC
AQEAb/+fsipFDYL7nf+VeMMzFcPIjVNejNd9028dEEEO2fUT9S7ibRa/opoSIHpF
Q0Ayr08HpzecRTbXLOLFpFSHPUjQeIIXlZVDkIru+b9gCfFGzIJYx5msCDfMsuxR
Nh23AfaHpMOFGEp903z077+iM62g/2b2DBrszy+51ZUKpkDv1VzrfYqDUvdLXmlo
cdQxqVaUY2tuFe8H9Qu9G0j4ZnSfZHYhYq1ktO1l6LCaHpdoxZsKsp8Wi9JwC1tA
S1G7lNVeg1ZztPASSLuwk9PWqSxU9/8xJI3OC09MZYRD2IeNePULAuG6iJ8eQdYO
4tCjtn3gsKIfnV6tP4Y2MdlxTA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:49 2023 by rpki-client on console-fra.rpki-client.org