Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/cb8339-cee3-4037-bacc-dc8b52e3ea0a/1/MCCpBws9hTySZl4ctVdAh-Vr6Ds.roa
File: MCCpBws9hTySZl4ctVdAh-Vr6Ds.roa (raw, json)
Hash identifier: GsweTzrK/8hR9SEInMfBH5b4NohGPTpPCKSQPn/Ejmc=
Subject key identifier: 30:20:A9:07:0B:3D:85:3C:92:66:5E:1C:B5:57:40:87:E5:6B:E8:3B
Certificate issuer: /CN=4d5f0cb06a5a47b4ddac7f4d6dfd44aba4d31f2e
Certificate serial: 0A4D5969
Authority key identifier: 4D:5F:0C:B0:6A:5A:47:B4:DD:AC:7F:4D:6D:FD:44:AB:A4:D3:1F:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TV8MsGpaR7TdrH9Nbf1Eq6TTHy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/cb8339-cee3-4037-bacc-dc8b52e3ea0a/1/MCCpBws9hTySZl4ctVdAh-Vr6Ds.roa
Signing time: Sat 01 Jan 2022 11:55:11 +0000
ROA not before: Sat 01 Jan 2022 11:55:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51175
IP address blocks: 185.101.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172841321 (0xa4d5969)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d5f0cb06a5a47b4ddac7f4d6dfd44aba4d31f2e
Validity
Not Before: Jan 1 11:55:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3020a9070b3d853c92665e1cb5574087e56be83b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:7e:85:a6:50:30:38:74:20:6b:db:8d:90:8f:
10:6f:58:a2:be:d7:90:b7:a5:e3:2f:ef:fb:2b:b1:
37:cf:62:d4:dc:b7:43:b8:0f:57:13:70:4d:60:e0:
6b:b5:3e:66:44:a0:c4:a3:e7:4f:fe:88:2b:8a:d7:
a8:41:c1:42:e1:f2:9c:06:38:41:2b:4c:1e:9e:29:
cc:43:a7:08:cd:bb:62:e2:7c:60:96:51:75:98:0f:
18:bc:47:e8:5b:4a:a4:19:9d:7c:94:14:6b:6e:ed:
53:a0:cb:c5:ec:4e:17:6f:4c:df:74:8e:f9:61:da:
34:5e:94:7a:02:f8:39:e3:b8:5c:b4:4b:de:15:64:
52:a1:04:d2:f3:2d:d0:fd:19:5c:6b:dd:5b:ce:11:
14:25:01:5a:02:1d:77:e7:13:26:a5:e8:5a:2a:6b:
a3:d6:d5:22:9c:b0:9c:ff:35:e5:17:b6:1b:6d:e2:
69:ec:ee:78:03:68:6a:80:d6:7b:8c:52:86:e0:5e:
58:f9:9e:51:eb:44:55:22:7a:7e:eb:f9:d3:ed:ce:
fe:33:77:c3:6a:dc:c7:ed:c5:fb:65:f1:37:d2:68:
f2:2d:c5:73:7b:4e:48:10:52:94:c9:cb:34:a6:0f:
0d:9a:98:10:d3:59:dd:de:ca:33:7a:27:bd:77:11:
d4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:20:A9:07:0B:3D:85:3C:92:66:5E:1C:B5:57:40:87:E5:6B:E8:3B
X509v3 Authority Key Identifier:
keyid:4D:5F:0C:B0:6A:5A:47:B4:DD:AC:7F:4D:6D:FD:44:AB:A4:D3:1F:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TV8MsGpaR7TdrH9Nbf1Eq6TTHy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/cb8339-cee3-4037-bacc-dc8b52e3ea0a/1/MCCpBws9hTySZl4ctVdAh-Vr6Ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/cb8339-cee3-4037-bacc-dc8b52e3ea0a/1/TV8MsGpaR7TdrH9Nbf1Eq6TTHy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.190.0/24
Signature Algorithm: sha256WithRSAEncryption
85:04:35:63:cc:f8:b4:26:73:75:87:b9:95:b4:8f:bd:20:9a:
ae:5b:3d:03:ca:05:a4:35:3b:7b:74:e1:87:41:03:6a:a7:51:
84:24:02:66:d7:01:1d:79:dd:f9:60:b5:e9:25:9f:5a:91:09:
84:63:c4:4b:f8:c4:53:00:3f:c3:e3:8a:95:65:6d:4d:14:2f:
ae:40:a6:38:27:61:d7:2d:6d:4c:01:4d:96:c5:46:97:0b:f9:
78:ea:0d:18:ab:8b:7b:8b:e2:22:e0:0b:f3:ad:8c:5c:45:43:
8b:85:05:0f:3f:eb:01:46:64:e2:c7:15:92:fa:42:e9:c1:a9:
6c:02:14:25:e4:7f:55:88:f2:49:e9:24:31:b9:e6:5b:cd:9e:
6d:12:61:d9:1b:56:78:91:32:15:6f:a7:16:e7:43:97:ec:80:
c9:b7:a6:70:44:ec:dc:97:e5:2f:8f:05:bf:d8:10:fa:b3:6c:
b3:69:03:44:c0:7b:a6:eb:05:74:41:1d:4e:93:9b:cb:e3:cc:
71:cd:2f:3a:60:18:c6:15:93:f1:df:f2:f4:79:50:79:e7:f6:
eb:5a:6e:8e:bc:5f:f5:f4:06:77:fa:b8:17:74:01:3f:eb:82:
60:c3:1f:e2:bb:18:03:b8:fb:1f:d7:4e:35:25:d2:ea:8b:11:
5c:d8:16:57
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECk1ZaTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZDVmMGNiMDZhNWE0N2I0ZGRhYzdmNGQ2ZGZkNDRhYmE0ZDMxZjJlMB4XDTIyMDEw
MTExNTUxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzAyMGE5MDcwYjNk
ODUzYzkyNjY1ZTFjYjU1NzQwODdlNTZiZTgzYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ5+haZQMDh0IGvbjZCPEG9Yor7XkLel4y/v+yuxN89i1Ny3
Q7gPVxNwTWDga7U+ZkSgxKPnT/6IK4rXqEHBQuHynAY4QStMHp4pzEOnCM27YuJ8
YJZRdZgPGLxH6FtKpBmdfJQUa27tU6DLxexOF29M33SO+WHaNF6UegL4OeO4XLRL
3hVkUqEE0vMt0P0ZXGvdW84RFCUBWgIdd+cTJqXoWipro9bVIpywnP815Re2G23i
aezueANoaoDWe4xShuBeWPmeUetEVSJ6fuv50+3O/jN3w2rcx+3F+2XxN9Jo8i3F
c3tOSBBSlMnLNKYPDZqYENNZ3d7KM3onvXcR1KMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQwIKkHCz2FPJJmXhy1V0CH5WvoOzAfBgNVHSMEGDAWgBRNXwywalpHtN2s
f01t/USrpNMfLjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RWOE1zR3BhUjdUZHJIOU5iZjFFcTZUVEh5NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzIvY2I4MzM5LWNlZTMtNDAzNy1iYWNjLWRjOGI1MmUzZWEwYS8x
L01DQ3BCd3M5aFR5U1psNGN0VmRBaC1WcjZEcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzIv
Y2I4MzM5LWNlZTMtNDAzNy1iYWNjLWRjOGI1MmUzZWEwYS8xL1RWOE1zR3BhUjdU
ZHJIOU5iZjFFcTZUVEh5NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALllvjANBgkqhkiG9w0BAQsFAAOC
AQEAhQQ1Y8z4tCZzdYe5lbSPvSCarls9A8oFpDU7e3Thh0EDaqdRhCQCZtcBHXnd
+WC16SWfWpEJhGPES/jEUwA/w+OKlWVtTRQvrkCmOCdh1y1tTAFNlsVGlwv5eOoN
GKuLe4viIuAL862MXEVDi4UFDz/rAUZk4scVkvpC6cGpbAIUJeR/VYjySekkMbnm
W82ebRJh2RtWeJEyFW+nFudDl+yAybemcETs3JflL48Fv9gQ+rNss2kDRMB7pusF
dEEdTpOby+PMcc0vOmAYxhWT8d/y9HlQeef261pujrxf9fQGd/q4F3QBP+uCYMMf
4rsYA7j7H9dONSXS6osRXNgWVw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:00 2023 by rpki-client on console-ams.rpki-client.org