Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/MbSa5cOYfvDSloeIZfMppUkFPoE.roa
File: MbSa5cOYfvDSloeIZfMppUkFPoE.roa (raw, json)
Hash identifier: yCbysr1KeGq4WgjyPEZxJhbB6g8bVXELJQdLYbNjh7A=
Subject key identifier: 31:B4:9A:E5:C3:98:7E:F0:D2:96:87:88:65:F3:29:A5:49:05:3E:81
Certificate issuer: /CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Certificate serial: 0180297D
Authority key identifier: 1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/MbSa5cOYfvDSloeIZfMppUkFPoE.roa
Signing time: Sat 01 Jan 2022 15:57:47 +0000
ROA not before: Sat 01 Jan 2022 15:57:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 194.113.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25176445 (0x180297d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Validity
Not Before: Jan 1 15:57:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31b49ae5c3987ef0d296878865f329a549053e81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ee:0a:2c:ef:ff:75:cb:d0:b7:d4:fb:55:3f:
5c:f0:c7:1d:fc:66:fa:59:bb:b3:d7:9a:21:06:61:
e1:f3:03:65:2f:5d:0c:bd:69:20:a8:4b:c5:27:0e:
b9:8d:83:f6:f7:e4:74:65:1b:30:f6:07:02:1f:3c:
49:6b:99:b0:e1:45:c7:68:b8:28:17:26:f9:54:8d:
37:5d:fb:a8:7b:5e:f1:54:03:82:39:4f:30:1d:4b:
40:86:4a:a3:6f:18:89:b8:fc:43:a5:2a:0a:5a:e8:
50:55:6d:1b:54:c7:52:4b:86:5e:9b:21:69:34:5a:
68:7d:15:20:c7:c4:19:73:24:f7:6d:f1:9c:81:bb:
94:ad:13:3e:2c:2b:5f:1d:6f:8f:72:49:32:c8:db:
48:1a:ba:86:02:01:21:a6:ae:97:12:22:57:df:9e:
4b:c7:3c:bc:3a:c1:f6:f3:68:05:41:30:0f:5c:58:
51:11:0a:45:f4:ef:c6:f7:78:22:a0:5b:b7:96:31:
6c:86:55:5f:a6:f0:dd:0c:b1:7c:a0:e0:26:ab:cd:
04:35:aa:87:95:3f:22:89:12:af:b8:7c:84:55:27:
e2:62:1d:8b:1b:d2:06:e7:d2:72:02:2e:df:cf:25:
e0:10:fa:0b:62:1a:02:3f:3b:96:c3:97:4a:d8:6a:
a7:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:B4:9A:E5:C3:98:7E:F0:D2:96:87:88:65:F3:29:A5:49:05:3E:81
X509v3 Authority Key Identifier:
keyid:1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/MbSa5cOYfvDSloeIZfMppUkFPoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.238.0/24
Signature Algorithm: sha256WithRSAEncryption
80:af:3f:fc:53:05:fe:dc:7b:20:00:81:c6:fb:04:60:1b:44:
75:6b:68:3d:54:a1:86:a6:ae:6c:3d:38:62:47:e9:00:dd:8f:
5e:ac:48:d7:06:1e:20:b4:ef:30:80:2f:2d:c0:1f:6c:4c:e7:
00:8c:35:16:ff:9d:6a:be:92:2d:8f:d5:86:44:8f:fb:0b:d1:
ea:2c:af:73:05:90:85:13:5e:4d:1b:89:81:26:cd:85:8d:a3:
a1:a2:fe:9c:b5:5e:d3:11:8d:32:bc:fb:29:98:8e:87:3b:da:
11:b0:03:8b:0e:7d:b8:6a:a2:26:50:03:cd:19:2e:c2:24:02:
75:8c:03:77:92:83:9a:32:55:27:1e:33:aa:f7:0c:43:3d:74:
65:41:be:26:00:4e:a0:8c:c1:b1:1b:b2:8d:04:36:5e:2e:83:
34:21:4e:d4:4a:76:e3:d2:3c:86:7b:88:d7:45:98:3b:2c:9e:
af:5f:27:c2:98:f9:11:3c:8d:5f:d7:20:ff:5b:65:2f:0b:a9:
eb:1c:da:ec:f7:ab:70:de:63:ce:2e:a3:68:d7:6f:42:db:37:
0a:25:e5:96:6f:05:0a:5c:e2:35:5f:38:b0:00:a6:80:dd:bf:
dd:a5:e2:9f:e4:83:45:12:00:4e:7f:1f:19:86:5a:3b:ce:f5:
92:05:70:2e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAYApfTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZTlmZGM3ZmIzOWViYmJlZDRlZTU0ZjcwM2QzYWM2MTUzZGRlZTY5MB4XDTIyMDEw
MTE1NTc0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzFiNDlhZTVjMzk4
N2VmMGQyOTY4Nzg4NjVmMzI5YTU0OTA1M2U4MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMruCizv/3XL0LfU+1U/XPDHHfxm+lm7s9eaIQZh4fMDZS9d
DL1pIKhLxScOuY2D9vfkdGUbMPYHAh88SWuZsOFFx2i4KBcm+VSNN137qHte8VQD
gjlPMB1LQIZKo28Yibj8Q6UqClroUFVtG1THUkuGXpshaTRaaH0VIMfEGXMk923x
nIG7lK0TPiwrXx1vj3JJMsjbSBq6hgIBIaaulxIiV9+eS8c8vDrB9vNoBUEwD1xY
UREKRfTvxvd4IqBbt5YxbIZVX6bw3QyxfKDgJqvNBDWqh5U/IokSr7h8hFUn4mId
ixvSBufScgIu388l4BD6C2IaAj87lsOXSthqpzMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQxtJrlw5h+8NKWh4hl8ymlSQU+gTAfBgNVHSMEGDAWgBQen9x/s567vtTu
VPcD06xhU93uaTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hwX2NmN09ldTc3VTdsVDNBOU9zWVZQZDdtay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTkvNDBmZGQxLTEwOTItNGY2OS1iNjQ4LTY5MWZmNWI0NGIwMS8x
L01iU2E1Y09ZZnZEU2xvZUlaZk1wcFVrRlBvRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTkv
NDBmZGQxLTEwOTItNGY2OS1iNjQ4LTY5MWZmNWI0NGIwMS8xL0hwX2NmN09ldTc3
VTdsVDNBOU9zWVZQZDdtay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMJx7jANBgkqhkiG9w0BAQsFAAOC
AQEAgK8//FMF/tx7IACBxvsEYBtEdWtoPVShhqaubD04YkfpAN2PXqxI1wYeILTv
MIAvLcAfbEznAIw1Fv+dar6SLY/VhkSP+wvR6iyvcwWQhRNeTRuJgSbNhY2joaL+
nLVe0xGNMrz7KZiOhzvaEbADiw59uGqiJlADzRkuwiQCdYwDd5KDmjJVJx4zqvcM
Qz10ZUG+JgBOoIzBsRuyjQQ2Xi6DNCFO1Ep249I8hnuI10WYOyyer18nwpj5ETyN
X9cg/1tlLwup6xza7PercN5jzi6jaNdvQts3CiXllm8FClziNV84sACmgN2/3aXi
n+SDRRIATn8fGYZaO871kgVwLg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:45 2024 by rpki-client on console-fra.rpki-client.org