Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/MYxg6G_2nr_RPGEj4tTtftWNKQ0.roa
File: MYxg6G_2nr_RPGEj4tTtftWNKQ0.roa (raw, json)
Hash identifier: 8JYyn+iU3FKhKwMKuWd0ipzMY778VB9J2F/hoZX3Z34=
Subject key identifier: 31:8C:60:E8:6F:F6:9E:BF:D1:3C:61:23:E2:D4:ED:7E:D5:8D:29:0D
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 485717DF
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/MYxg6G_2nr_RPGEj4tTtftWNKQ0.roa
Signing time: Sat 01 Jan 2022 03:00:19 +0000
ROA not before: Sat 01 Jan 2022 03:00:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 5.188.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1213667295 (0x485717df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 03:00:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=318c60e86ff69ebfd13c6123e2d4ed7ed58d290d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6f:4e:13:8e:e1:23:c8:b2:5e:2f:66:5f:98:
44:9d:d9:7c:a7:f5:3f:1c:e8:dc:72:76:a5:9c:76:
9e:54:59:66:a4:80:75:ce:5c:de:2c:ae:74:89:b7:
a2:24:42:ca:99:17:83:f4:7e:86:3a:4f:00:3b:10:
53:26:b3:f7:66:59:ab:78:bc:24:84:7c:9d:c7:f3:
c1:a9:e5:e8:b5:23:48:eb:1c:f1:d1:69:1a:2c:e4:
47:98:c7:7a:00:6e:a3:41:53:2d:1a:ac:bd:40:03:
c3:c3:5a:29:ca:b4:44:32:f3:60:cc:74:8d:31:22:
35:5b:0b:73:c9:d9:bb:31:bc:9e:da:6e:4c:b5:1b:
ab:2b:9f:ea:13:1b:de:ce:17:7d:88:95:2f:fb:55:
f1:85:a1:92:23:2f:20:56:71:3d:b1:be:88:32:38:
21:72:2e:46:30:35:8b:29:44:08:5f:e5:c0:44:af:
81:f3:b1:c9:ce:f6:59:0b:35:54:54:2b:ee:ee:d7:
dd:c0:65:34:66:dd:9f:3f:44:59:75:76:46:5b:3d:
11:34:36:c6:94:e6:0f:bb:59:88:c0:62:45:db:b0:
bc:4e:07:bb:15:22:96:43:ec:ee:2a:0d:1d:bd:2e:
8f:c7:84:c9:02:b9:a9:98:89:67:3d:16:22:3f:08:
a4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:8C:60:E8:6F:F6:9E:BF:D1:3C:61:23:E2:D4:ED:7E:D5:8D:29:0D
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/MYxg6G_2nr_RPGEj4tTtftWNKQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.188.217.0/24
Signature Algorithm: sha256WithRSAEncryption
65:da:95:e8:34:cd:96:2e:22:86:a7:96:9d:05:9b:13:94:24:
37:df:97:36:0b:60:76:f1:cb:90:22:03:0f:9d:f5:87:68:1e:
a8:21:57:9b:7d:e7:f7:d7:46:1b:5e:e1:2b:0f:87:23:26:36:
86:f0:b2:75:f6:64:c2:d0:34:a0:e1:75:a9:db:8f:ee:78:70:
58:3e:dc:ce:82:bd:cb:c8:aa:31:3b:d2:fb:82:b4:23:5c:87:
56:a9:f7:90:a6:59:9b:7f:4c:2d:49:b4:d9:fa:56:16:1d:69:
47:22:56:4a:92:24:e3:26:d8:00:7d:b7:0f:af:8f:c2:92:52:
54:9c:59:bb:35:dc:6e:89:84:6e:6e:7c:8d:5d:a4:91:be:ab:
1b:10:86:43:a7:0a:76:39:70:21:5d:57:3d:71:cc:30:c8:f7:
e7:50:65:26:4e:73:99:a3:4d:9b:ac:39:ce:76:8c:38:0c:ac:
9a:04:ed:a3:3d:76:62:0a:3f:2b:d0:00:76:29:5e:d3:3f:aa:
09:86:50:21:64:4d:38:c3:bf:bd:a0:55:1a:58:f0:71:78:6b:
b2:bb:2a:98:0f:f7:52:b6:98:20:18:4b:57:ae:62:e9:d9:db:
63:99:23:9a:86:49:c7:9a:4b:c8:66:34:3b:4c:07:cb:6a:8a:
1b:6a:73:25
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIESFcX3zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YWFhOGEwYTVmZGZkNjk4ZTEwNGJlMzZhMmFlZWM4MTNhZWNhMDcxMB4XDTIyMDEw
MTAzMDAxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzE4YzYwZTg2ZmY2
OWViZmQxM2M2MTIzZTJkNGVkN2VkNThkMjkwZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALtvThOO4SPIsl4vZl+YRJ3ZfKf1Pxzo3HJ2pZx2nlRZZqSA
dc5c3iyudIm3oiRCypkXg/R+hjpPADsQUyaz92ZZq3i8JIR8ncfzwanl6LUjSOsc
8dFpGizkR5jHegBuo0FTLRqsvUADw8NaKcq0RDLzYMx0jTEiNVsLc8nZuzG8ntpu
TLUbqyuf6hMb3s4XfYiVL/tV8YWhkiMvIFZxPbG+iDI4IXIuRjA1iylECF/lwESv
gfOxyc72WQs1VFQr7u7X3cBlNGbdnz9EWXV2Rls9ETQ2xpTmD7tZiMBiRduwvE4H
uxUilkPs7ioNHb0uj8eEyQK5qZiJZz0WIj8IpJ8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQxjGDob/aev9E8YSPi1O1+1Y0pDTAfBgNVHSMEGDAWgBTqqooKX9/WmOEE
vjairuyBOuygcTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZxcUtDbF9mMXBqaEJMNDJvcTdzZ1Ryc29IRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWMvMjkzMmRmLWE0YmQtNGFmNS1hNGQ0LTg5ZDA5MjQwYzQzYi8x
L01ZeGc2R18ybnJfUlBHRWo0dFR0ZnRXTktRMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMv
MjkzMmRmLWE0YmQtNGFmNS1hNGQ0LTg5ZDA5MjQwYzQzYi8xLzZxcUtDbF9mMXBq
aEJMNDJvcTdzZ1Ryc29IRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAW82TANBgkqhkiG9w0BAQsFAAOC
AQEAZdqV6DTNli4ihqeWnQWbE5QkN9+XNgtgdvHLkCIDD531h2geqCFXm33n99dG
G17hKw+HIyY2hvCydfZkwtA0oOF1qduP7nhwWD7czoK9y8iqMTvS+4K0I1yHVqn3
kKZZm39MLUm02fpWFh1pRyJWSpIk4ybYAH23D6+PwpJSVJxZuzXcbomEbm58jV2k
kb6rGxCGQ6cKdjlwIV1XPXHMMMj351BlJk5zmaNNm6w5znaMOAysmgTtoz12Ygo/
K9AAdile0z+qCYZQIWRNOMO/vaBVGljwcXhrsrsqmA/3UraYIBhLV65i6dnbY5kj
moZJx5pLyGY0O0wHy2qKG2pzJQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:56 2023 by rpki-client on console-fra.rpki-client.org