Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/MiFqa_7_E8LnHoTR3wr9uE7QWJg.roa
File: MiFqa_7_E8LnHoTR3wr9uE7QWJg.roa (raw, json)
Hash identifier: Q/NgXlzfK7F1nZLP9aSSoiTqPduSQmO5K4fVWHeqJ2g=
Subject key identifier: 32:21:6A:6B:FE:FF:13:C2:E7:1E:84:D1:DF:0A:FD:B8:4E:D0:58:98
Certificate issuer: /CN=d89b44e2c057f01a99261f94bbf6da1bf1865f39
Certificate serial: 018321537E0A8C988E327C955535A5F0E972
Authority key identifier: D8:9B:44:E2:C0:57:F0:1A:99:26:1F:94:BB:F6:DA:1B:F1:86:5F:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JtE4sBX8BqZJh-Uu_baG_GGXzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/MiFqa_7_E8LnHoTR3wr9uE7QWJg.roa
Signing time: Fri 09 Sep 2022 08:17:43 +0000
ROA not before: Fri 09 Sep 2022 08:17:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39582
IP address blocks: 94.142.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:53:7e:0a:8c:98:8e:32:7c:95:55:35:a5:f0:e9:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89b44e2c057f01a99261f94bbf6da1bf1865f39
Validity
Not Before: Sep 9 08:17:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32216a6bfeff13c2e71e84d1df0afdb84ed05898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4d:a6:4b:fb:34:ec:42:0d:8f:78:45:81:1f:
db:42:82:01:60:17:79:2d:f2:85:4a:eb:fd:12:29:
28:c2:6e:e0:3b:e1:61:81:9a:fa:f9:a5:30:2f:b6:
5a:04:36:b4:cb:b7:7a:5d:b4:46:95:5d:db:3c:11:
84:6e:f6:03:2e:50:61:8e:5c:d7:ff:3d:ed:c8:fb:
01:ca:ab:88:be:34:07:ba:94:7b:e6:ca:b8:b5:34:
ab:b7:bb:25:dc:53:1d:d1:55:f0:91:f8:85:10:cd:
7b:08:e9:6f:50:7c:de:cb:cf:1a:4b:d2:c3:fe:e3:
b9:fd:d0:f5:53:51:df:0d:a2:20:83:44:9f:4c:50:
22:37:60:15:15:df:44:85:1e:6c:cd:32:80:7c:f3:
eb:bf:9b:67:88:c6:e5:03:5e:39:36:8c:ed:79:fa:
35:10:e7:c5:02:8e:4d:22:7c:80:70:66:ee:51:12:
71:75:09:1a:27:95:23:8d:ea:61:c7:73:05:d8:6d:
6a:a1:b8:39:ff:ce:0e:a1:7c:77:b5:44:8f:62:95:
d5:00:ab:94:75:7f:b1:b0:01:98:d3:85:e7:1f:51:
37:3c:d1:df:74:06:9e:47:f3:79:9f:07:7f:a6:e9:
7a:43:f4:d0:1e:dc:4d:96:bc:73:ef:d1:ed:68:59:
d6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:21:6A:6B:FE:FF:13:C2:E7:1E:84:D1:DF:0A:FD:B8:4E:D0:58:98
X509v3 Authority Key Identifier:
keyid:D8:9B:44:E2:C0:57:F0:1A:99:26:1F:94:BB:F6:DA:1B:F1:86:5F:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JtE4sBX8BqZJh-Uu_baG_GGXzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/MiFqa_7_E8LnHoTR3wr9uE7QWJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.142.254.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:2f:83:ef:c1:89:37:62:b8:85:1d:11:91:2f:72:75:0b:01:
d2:00:5b:f8:52:91:77:a4:6d:fb:fe:0c:0f:23:f0:cb:48:ad:
48:67:9c:8f:46:0e:ed:fc:52:6f:e5:76:26:87:7f:86:17:bb:
83:a9:bb:83:fb:d7:37:22:58:fc:8c:f4:05:62:e6:16:64:ef:
fe:48:54:d7:01:b8:3b:06:5f:de:7e:80:d7:75:6a:db:ac:0b:
ce:62:1c:e5:b9:69:84:96:b6:d9:9d:9a:3b:b8:30:4f:5f:18:
1c:d3:8b:ae:85:0b:f9:3a:2b:a0:82:62:29:20:d5:18:c0:e6:
76:49:2f:2b:d5:25:cc:e9:5b:ee:ac:37:7d:05:00:cd:3b:0d:
8a:c6:f4:c8:c4:76:b4:db:0b:9e:2d:fc:a2:fe:11:c5:a0:46:
66:5a:60:0a:44:27:4d:40:fc:c5:c8:5d:ed:36:30:0b:16:55:
0c:4b:10:49:e5:0a:c8:9a:35:d1:3e:52:72:82:d9:d6:1c:13:
8f:8c:bd:30:e9:31:9d:95:a5:90:c6:20:23:12:62:ba:93:7b:
5a:fe:15:58:bd:14:e5:75:28:26:82:db:cd:5c:85:ca:5f:e4:
45:5b:3e:f4:ef:89:ec:6a:ac:f4:f0:55:e8:52:c4:56:d5:a7:
c0:34:c0:b7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYMhU34KjJiOMnyVVTWl8OlyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4OWI0NGUyYzA1N2YwMWE5OTI2MWY5NGJiZjZkYTFiZjE4
NjVmMzkwHhcNMjIwOTA5MDgxNzQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjIxNmE2YmZlZmYxM2MyZTcxZTg0ZDFkZjBhZmRiODRlZDA1ODk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn02mS/s07EINj3hFgR/bQoIBYBd5
LfKFSuv9Eikowm7gO+FhgZr6+aUwL7ZaBDa0y7d6XbRGlV3bPBGEbvYDLlBhjlzX
/z3tyPsByquIvjQHupR75sq4tTSrt7sl3FMd0VXwkfiFEM17COlvUHzey88aS9LD
/uO5/dD1U1HfDaIgg0SfTFAiN2AVFd9EhR5szTKAfPPrv5tniMblA145Noztefo1
EOfFAo5NInyAcGbuURJxdQkaJ5Ujjephx3MF2G1qobg5/84OoXx3tUSPYpXVAKuU
dX+xsAGY04XnH1E3PNHfdAaeR/N5nwd/pul6Q/TQHtxNlrxz79HtaFnWJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDIhamv+/xPC5x6E0d8K/bhO0FiYMB8GA1UdIwQY
MBaAFNibROLAV/AamSYflLv22hvxhl85MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkp0RTRzQlg4QnFaSmgtVXVfYmFHX0dHWHprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8wMGE3MWUtZGVmOC00YTRmLWE0OTkt
YjYwZmJiMTRjMTlkLzEvTWlGcWFfN19FOExuSG9UUjN3cjl1RTdRV0pnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8wMGE3MWUtZGVmOC00YTRmLWE0OTktYjYwZmJiMTRjMTlk
LzEvMkp0RTRzQlg4QnFaSmgtVXVfYmFHX0dHWHprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXo7+MA0G
CSqGSIb3DQEBCwUAA4IBAQAcL4PvwYk3YriFHRGRL3J1CwHSAFv4UpF3pG37/gwP
I/DLSK1IZ5yPRg7t/FJv5XYmh3+GF7uDqbuD+9c3Ilj8jPQFYuYWZO/+SFTXAbg7
Bl/efoDXdWrbrAvOYhzluWmElrbZnZo7uDBPXxgc04uuhQv5OiuggmIpINUYwOZ2
SS8r1SXM6VvurDd9BQDNOw2KxvTIxHa02wueLfyi/hHFoEZmWmAKRCdNQPzFyF3t
NjALFlUMSxBJ5QrImjXRPlJygtnWHBOPjL0w6TGdlaWQxiAjEmK6k3ta/hVYvRTl
dSgmgtvNXIXKX+RFWz7074nsaqz08FXoUsRW1afANMC3
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:57 2024 by rpki-client on console-ams.rpki-client.org