Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/f7195b-dd00-4290-9f78-abd90f329c0c/1/MQVp9xmM8M3I-Xn6gPwUm4ZIbjU.roa
File: MQVp9xmM8M3I-Xn6gPwUm4ZIbjU.roa (raw, json)
Hash identifier: pNrCVhyJjOf15iUJGN231AdqF7lLwyICJ/H3xfLkK0E=
Subject key identifier: 31:05:69:F7:19:8C:F0:CD:C8:F9:79:FA:80:FC:14:9B:86:48:6E:35
Certificate issuer: /CN=e02d792c97dbd4482eb815cc9a4fb9f547af7a09
Certificate serial: 06CFB9B7
Authority key identifier: E0:2D:79:2C:97:DB:D4:48:2E:B8:15:CC:9A:4F:B9:F5:47:AF:7A:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4C15LJfb1EguuBXMmk-59Uevegk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/f7195b-dd00-4290-9f78-abd90f329c0c/1/MQVp9xmM8M3I-Xn6gPwUm4ZIbjU.roa
Signing time: Sat 01 Jan 2022 12:01:06 +0000
ROA not before: Sat 01 Jan 2022 12:01:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210309
IP address blocks: 109.73.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114276791 (0x6cfb9b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e02d792c97dbd4482eb815cc9a4fb9f547af7a09
Validity
Not Before: Jan 1 12:01:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=310569f7198cf0cdc8f979fa80fc149b86486e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:26:49:5d:ec:63:cb:b0:51:af:1a:19:4d:82:
f5:d4:6a:e6:78:c8:65:a8:99:8a:c4:d8:74:da:4d:
16:1e:81:d1:38:6b:71:de:0a:86:3d:f7:67:c7:66:
7c:23:db:8e:3d:a6:24:d2:61:3c:f8:ef:cd:3c:af:
86:d8:49:32:67:a8:9c:c3:d9:26:5f:e6:f3:d8:59:
6f:ac:d5:9f:91:ed:95:2d:81:48:a0:a7:53:a2:89:
b0:d0:88:a9:6c:dc:b0:38:26:1f:84:1b:91:1a:7c:
e2:35:46:94:a8:0f:bd:82:93:93:34:7b:b4:0c:84:
f6:e5:c4:bc:ae:40:46:57:59:ce:7c:c8:ae:46:cb:
39:f4:30:6a:b0:4e:e6:fd:c1:f7:6e:2f:3c:17:c7:
57:78:e9:24:2a:f8:91:3b:5d:30:fc:66:80:24:9c:
ec:5a:e1:61:35:22:1d:7b:18:42:81:22:fa:be:a3:
6d:85:dd:41:06:6f:44:cd:32:b1:7a:ae:72:60:41:
89:2d:52:88:29:f0:ae:97:11:cf:8d:b0:d6:7f:eb:
5e:8b:03:fa:33:c7:ca:95:89:63:5c:79:ab:18:49:
bd:d3:e8:e2:67:13:9c:92:dc:d1:e5:28:6b:8a:12:
b1:71:04:df:96:1e:7e:34:8b:f9:18:01:ab:a8:40:
f9:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:05:69:F7:19:8C:F0:CD:C8:F9:79:FA:80:FC:14:9B:86:48:6E:35
X509v3 Authority Key Identifier:
keyid:E0:2D:79:2C:97:DB:D4:48:2E:B8:15:CC:9A:4F:B9:F5:47:AF:7A:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4C15LJfb1EguuBXMmk-59Uevegk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/f7195b-dd00-4290-9f78-abd90f329c0c/1/MQVp9xmM8M3I-Xn6gPwUm4ZIbjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/f7195b-dd00-4290-9f78-abd90f329c0c/1/4C15LJfb1EguuBXMmk-59Uevegk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.73.136.0/22
Signature Algorithm: sha256WithRSAEncryption
89:b9:45:47:d1:1d:9f:39:40:74:f8:d6:5a:9f:a9:ee:7d:f2:
2b:f6:07:5f:27:7d:a9:b6:a6:1a:de:07:ed:7f:37:37:3e:e4:
26:c2:97:4e:7a:76:fb:af:a9:ea:d3:1c:4f:39:2f:36:c9:cf:
1f:19:4d:a5:66:1b:bb:b0:34:e1:62:8e:ef:f2:93:02:8d:60:
ac:58:40:19:c2:a0:5b:ff:a5:50:13:fe:95:2f:54:92:c7:01:
11:3d:50:31:a4:b7:d6:33:1c:0b:11:d9:5e:66:5d:31:42:f8:
58:75:c3:e9:0b:86:2e:0d:a3:e9:7f:f3:ef:19:54:66:45:c8:
2c:cf:3e:51:4f:10:ba:6d:eb:da:57:a5:cc:e8:98:1e:2e:fe:
88:44:da:8b:d4:3e:9b:ba:16:30:31:0e:c4:e3:5b:50:e5:52:
35:9e:24:24:ab:90:11:d4:f1:74:d0:fc:dc:fe:cc:d7:94:08:
6d:fc:34:6e:ec:fa:84:c1:1d:51:6f:08:28:ed:c8:6f:f9:0d:
7c:77:ff:59:31:d7:88:83:65:aa:b7:01:ca:fc:d1:ed:ea:a6:
3b:fa:da:2f:45:0b:98:18:81:ed:09:d1:bf:d9:35:dc:ef:89:
77:a2:8d:04:7f:cc:a8:b9:c7:dd:8c:a8:09:28:5c:d0:e7:cb:
1e:6b:35:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:14:38 2025 by rpki-client