Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/MqPKPEGvo_l-wFWgcEk2duLQs78.roa
File: MqPKPEGvo_l-wFWgcEk2duLQs78.roa (raw, json)
Hash identifier: hiI8du2jS8XK0/Zh7+8e9MaBXd03DUEHtXFp4Oeaox8=
Subject key identifier: 32:A3:CA:3C:41:AF:A3:F9:7E:C0:55:A0:70:49:36:76:E2:D0:B3:BF
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 06ACB901
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/MqPKPEGvo_l-wFWgcEk2duLQs78.roa
Signing time: Tue 22 Mar 2022 13:24:42 +0000
ROA not before: Tue 22 Mar 2022 13:24:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 94.137.76.0/24 maxlen: 24
94.137.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111982849 (0x6acb901)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Mar 22 13:24:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32a3ca3c41afa3f97ec055a070493676e2d0b3bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d4:b6:53:6c:2e:99:ca:15:8f:ad:d0:25:e2:
21:b3:09:ad:91:3a:1b:2b:bf:1e:99:09:8f:49:35:
d7:45:6e:51:0b:d6:ea:b4:56:a8:08:41:07:23:52:
ac:83:2b:f5:12:d6:db:7f:74:16:53:fc:15:09:5c:
1b:56:17:91:8b:d4:c5:9d:67:46:53:a1:d4:7d:78:
32:54:09:5a:87:43:66:93:bc:d2:d6:69:b1:a9:5d:
cc:88:74:90:da:35:0f:59:d3:88:36:48:67:49:9f:
cf:24:d4:f9:e6:26:9a:9c:f4:ba:78:3b:25:92:cc:
49:40:32:04:79:96:4d:8b:1b:79:f4:57:a3:33:6d:
a7:68:b8:6b:3e:ef:ef:0f:93:51:fd:d3:ac:d2:8d:
c8:68:fe:46:f9:85:56:af:d4:c9:a9:e3:8b:bc:a8:
6c:92:0e:77:fa:39:ff:ae:88:ff:f1:dd:11:36:af:
41:c2:80:62:d5:16:5b:d9:de:0c:d3:c8:c9:d2:27:
20:f5:c0:bc:29:45:d0:b1:9f:b2:64:75:8a:90:cf:
fb:5e:2d:22:6b:f0:71:59:29:d5:04:3e:73:a2:a6:
95:2d:ae:c9:f3:86:ba:ca:04:ff:6e:23:53:6a:c9:
1b:84:3f:16:f4:a1:de:19:3d:df:41:5b:a1:ed:d4:
40:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A3:CA:3C:41:AF:A3:F9:7E:C0:55:A0:70:49:36:76:E2:D0:B3:BF
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/MqPKPEGvo_l-wFWgcEk2duLQs78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.137.74.0/24
94.137.76.0/24
Signature Algorithm: sha256WithRSAEncryption
62:e1:2d:e7:8d:b9:ed:0b:a2:40:36:4a:e0:ec:cf:d6:2c:85:
bf:aa:a7:5f:4a:61:07:9d:a7:ba:79:3e:ef:75:e2:02:cf:81:
fc:14:43:8d:a9:60:78:3f:31:3e:d5:d4:72:f8:f4:e5:c6:82:
94:52:57:4e:87:fb:53:8d:54:cc:a7:53:5e:13:59:ff:fa:5f:
9b:53:28:3a:34:1c:8f:77:62:c8:fc:a1:de:a4:a8:ed:20:d6:
2c:d7:e5:32:e5:a7:e8:75:61:79:b4:8a:43:6d:21:cd:72:93:
68:ec:ac:b3:32:5f:b9:38:95:7c:ca:a0:39:8e:aa:84:b2:12:
f4:8e:d8:e6:1a:fd:a1:20:89:50:90:92:35:9a:e8:13:20:03:
6a:2d:64:9a:49:36:81:eb:07:68:8d:dd:d6:69:59:63:04:b0:
02:d8:3a:fb:27:97:d7:40:41:43:bc:c2:e7:dd:bc:6e:11:77:
bd:d2:1e:6d:cf:3b:dc:73:b0:40:5a:c8:ef:e3:ae:fa:3a:40:
37:05:ec:8d:87:76:eb:75:59:65:35:ce:6b:59:a4:ea:cf:df:
cd:b9:f3:26:d1:69:6a:1e:44:16:22:d1:ff:0b:aa:1d:af:4e:
2b:35:59:fa:dc:b3:44:fe:ec:69:51:b9:e4:f5:4e:5c:37:f7:
bd:3a:ab:e9
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBqy5ATANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
OWFjMGFjYmZkYjdhMjc0ZWYzNmMxNmY1ODYwYWRhMmEyNDcwNjk3MB4XDTIyMDMy
MjEzMjQ0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzJhM2NhM2M0MWFm
YTNmOTdlYzA1NWEwNzA0OTM2NzZlMmQwYjNiZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANjUtlNsLpnKFY+t0CXiIbMJrZE6Gyu/HpkJj0k110VuUQvW
6rRWqAhBByNSrIMr9RLW2390FlP8FQlcG1YXkYvUxZ1nRlOh1H14MlQJWodDZpO8
0tZpsaldzIh0kNo1D1nTiDZIZ0mfzyTU+eYmmpz0ung7JZLMSUAyBHmWTYsbefRX
ozNtp2i4az7v7w+TUf3TrNKNyGj+RvmFVq/Uyanji7yobJIOd/o5/66I//HdETav
QcKAYtUWW9neDNPIydInIPXAvClF0LGfsmR1ipDP+14tImvwcVkp1QQ+c6KmlS2u
yfOGusoE/24jU2rJG4Q/FvSh3hk930Fboe3UQFECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQyo8o8Qa+j+X7AVaBwSTZ24tCzvzAfBgNVHSMEGDAWgBSJrArL/beidO82
wW9YYK2iokcGlzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lhd0t5XzIzb25Udk5zRnZXR0N0b3FKSEJwYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzEvOTNhNzY4LTI2NzctNDhkNi05MTRjLWQ0ZGJmNzA2NmZkMy8x
L01xUEtQRUd2b19sLXdGV2djRWsyZHVMUXM3OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzEv
OTNhNzY4LTI2NzctNDhkNi05MTRjLWQ0ZGJmNzA2NmZkMy8xL2lhd0t5XzIzb25U
dk5zRnZXR0N0b3FKSEJwYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAF6JSgMEAF6JTDANBgkqhkiG9w0B
AQsFAAOCAQEAYuEt54257QuiQDZK4OzP1iyFv6qnX0phB52nunk+73XiAs+B/BRD
jalgeD8xPtXUcvj05caClFJXTof7U41UzKdTXhNZ//pfm1MoOjQcj3diyPyh3qSo
7SDWLNflMuWn6HVhebSKQ20hzXKTaOysszJfuTiVfMqgOY6qhLIS9I7Y5hr9oSCJ
UJCSNZroEyADai1kmkk2gesHaI3d1mlZYwSwAtg6+yeX10BBQ7zC5928bhF3vdIe
bc873HOwQFrI7+Ou+jpANwXsjYd263VZZTXOa1mk6s/fzbnzJtFpah5EFiLR/wuq
Ha9OKzVZ+tyzRP7saVG55PVOXDf3vTqr6Q==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:57 2023 by rpki-client on console-ams.rpki-client.org