Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/faa88a-982b-4def-aeb8-9541f6e2a0d0/1/mLhdH0vlPUI7D6Ta_cbnBOqkags.roa
File: mLhdH0vlPUI7D6Ta_cbnBOqkags.roa (raw, json)
Hash identifier: VWmgk2/n5co3e2FUcRcEKGesrlDIFEvCKlvFZnL45gk=
Subject key identifier: 98:B8:5D:1F:4B:E5:3D:42:3B:0F:A4:DA:FD:C6:E7:04:EA:A4:6A:0B
Certificate issuer: /CN=e007b14655697e5abb059447d4dcb338aa74ee78
Certificate serial: 0184ED98560BD48AD887AAEA634CA8130AF8
Authority key identifier: E0:07:B1:46:55:69:7E:5A:BB:05:94:47:D4:DC:B3:38:AA:74:EE:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4AexRlVpflq7BZRH1NyzOKp07ng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/faa88a-982b-4def-aeb8-9541f6e2a0d0/1/mLhdH0vlPUI7D6Ta_cbnBOqkags.roa
Signing time: Wed 07 Dec 2022 17:18:14 +0000
ROA not before: Wed 07 Dec 2022 17:18:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196618
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ed:98:56:0b:d4:8a:d8:87:aa:ea:63:4c:a8:13:0a:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e007b14655697e5abb059447d4dcb338aa74ee78
Validity
Not Before: Dec 7 17:18:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98b85d1f4be53d423b0fa4dafdc6e704eaa46a0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6e:21:19:36:59:71:a5:01:11:44:ff:05:1c:
7b:da:5d:f4:8b:93:c8:3a:86:89:97:a2:c1:3b:83:
29:2d:18:d5:a1:0e:c5:9f:8a:dd:80:f8:92:fe:bf:
30:bc:dd:09:ba:1b:6d:cc:59:31:2f:52:ad:8c:f5:
59:67:02:2d:41:49:05:2f:2b:d0:d5:a1:14:39:e3:
3e:01:77:c2:db:99:04:89:69:37:0a:77:74:70:6a:
14:4a:ef:19:44:ed:9e:d1:ee:32:9e:20:f7:7a:6b:
66:f2:f8:29:2d:cf:26:53:bc:8e:6d:5f:0d:c4:07:
f7:09:30:11:fc:17:3f:93:57:82:b6:39:a1:00:df:
99:ca:21:a5:ed:16:77:f3:e5:77:a7:52:8f:c1:75:
73:be:73:14:ce:0f:df:b0:c1:42:0d:59:55:a8:dd:
f6:72:f1:d9:78:f7:ed:b1:a0:38:21:0b:1d:e6:69:
f8:b1:55:38:94:ba:e2:8e:92:97:1c:2a:45:18:4b:
74:79:c2:6b:2a:d4:62:29:8b:58:78:c1:40:fa:8a:
a4:4b:e0:55:16:66:48:66:c2:f8:46:ed:dd:be:9f:
e3:02:a2:7f:ee:45:18:d7:ce:c0:16:f5:3c:3f:60:
df:37:80:5e:f0:bf:3d:66:65:1b:2e:55:cf:03:43:
6f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:B8:5D:1F:4B:E5:3D:42:3B:0F:A4:DA:FD:C6:E7:04:EA:A4:6A:0B
X509v3 Authority Key Identifier:
keyid:E0:07:B1:46:55:69:7E:5A:BB:05:94:47:D4:DC:B3:38:AA:74:EE:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4AexRlVpflq7BZRH1NyzOKp07ng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/faa88a-982b-4def-aeb8-9541f6e2a0d0/1/mLhdH0vlPUI7D6Ta_cbnBOqkags.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/faa88a-982b-4def-aeb8-9541f6e2a0d0/1/4AexRlVpflq7BZRH1NyzOKp07ng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:71:99:ab:6e:44:be:74:c8:61:89:4d:48:41:98:8c:4e:58:
b2:5b:69:bc:6f:92:b6:fb:d7:15:06:5a:ab:5b:38:17:13:ff:
77:22:4f:c5:dd:d7:50:23:89:6b:d3:ec:56:5c:c0:2c:eb:fd:
44:d2:1f:8b:1a:3c:6d:54:0c:2c:fa:74:a7:6b:40:f9:1e:4b:
79:02:40:83:d9:eb:75:c2:22:2b:2f:3f:35:cc:e9:5c:33:a8:
f8:84:fe:da:0f:6b:aa:06:44:94:eb:52:f7:3d:9e:44:5a:c4:
f9:9f:af:17:95:53:d8:11:b0:4b:97:6c:9d:48:84:a5:5b:c6:
62:7d:ac:b5:b6:77:c7:48:b5:4c:a5:cb:9a:1f:f7:cb:2e:45:
32:81:5e:c0:c3:bd:3a:ff:00:c5:49:f8:2c:b2:89:68:75:fe:
da:7d:73:27:a5:f2:6d:de:61:e0:7c:20:9b:17:a1:d0:86:4c:
02:57:cf:4d:8f:19:f1:d3:a0:ce:26:e9:c5:78:45:6c:ac:39:
a8:06:c2:f1:24:eb:47:28:ae:2c:88:ca:76:e8:e1:66:67:4b:
d2:b8:43:b2:55:0e:37:7e:4c:ef:66:45:86:30:4c:0a:90:2f:
8a:53:68:5a:a1:46:68:28:ef:c7:72:d7:18:a4:73:8c:90:b8:
da:0b:61:28
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTtmFYL1IrYh6rqY0yoEwr4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwMDdiMTQ2NTU2OTdlNWFiYjA1OTQ0N2Q0ZGNiMzM4YWE3
NGVlNzgwHhcNMjIxMjA3MTcxODE0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OGI4NWQxZjRiZTUzZDQyM2IwZmE0ZGFmZGM2ZTcwNGVhYTQ2YTBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoW4hGTZZcaUBEUT/BRx72l30i5PI
OoaJl6LBO4MpLRjVoQ7Fn4rdgPiS/r8wvN0JuhttzFkxL1KtjPVZZwItQUkFLyvQ
1aEUOeM+AXfC25kEiWk3Cnd0cGoUSu8ZRO2e0e4yniD3emtm8vgpLc8mU7yObV8N
xAf3CTAR/Bc/k1eCtjmhAN+ZyiGl7RZ38+V3p1KPwXVzvnMUzg/fsMFCDVlVqN32
cvHZePftsaA4IQsd5mn4sVU4lLrijpKXHCpFGEt0ecJrKtRiKYtYeMFA+oqkS+BV
FmZIZsL4Ru3dvp/jAqJ/7kUY187AFvU8P2DfN4Be8L89ZmUbLlXPA0NvVQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJi4XR9L5T1COw+k2v3G5wTqpGoLMB8GA1UdIwQY
MBaAFOAHsUZVaX5auwWUR9TcsziqdO54MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEFleFJsVnBmbHE3QlpSSDFOeXpPS3AwN25nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy9mYWE4OGEtOTgyYi00ZGVmLWFlYjgt
OTU0MWY2ZTJhMGQwLzEvbUxoZEgwdmxQVUk3RDZUYV9jYm5CT3FrYWdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy9mYWE4OGEtOTgyYi00ZGVmLWFlYjgtOTU0MWY2ZTJhMGQw
LzEvNEFleFJsVnBmbHE3QlpSSDFOeXpPS3AwN25nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwmiBMA0G
CSqGSIb3DQEBCwUAA4IBAQC9cZmrbkS+dMhhiU1IQZiMTliyW2m8b5K2+9cVBlqr
WzgXE/93Ik/F3ddQI4lr0+xWXMAs6/1E0h+LGjxtVAws+nSna0D5Hkt5AkCD2et1
wiIrLz81zOlcM6j4hP7aD2uqBkSU61L3PZ5EWsT5n68XlVPYEbBLl2ydSISlW8Zi
fay1tnfHSLVMpcuaH/fLLkUygV7Aw706/wDFSfgssolodf7afXMnpfJt3mHgfCCb
F6HQhkwCV89Njxnx06DOJunFeEVsrDmoBsLxJOtHKK4siMp26OFmZ0vSuEOyVQ43
fkzvZkWGMEwKkC+KU2haoUZoKO/HctcYpHOMkLjaC2Eo
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:37 2023 by rpki-client on console-ams.rpki-client.org