Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/MnyksB8Z4awvRG91MzwZOtiID_c.roa
File: MnyksB8Z4awvRG91MzwZOtiID_c.roa (raw, json)
Hash identifier: r6jSKi/BW3mHqUz3BTxaidGGY2cqAnaXf+RfRrbJMEk=
Subject key identifier: 32:7C:A4:B0:1F:19:E1:AC:2F:44:6F:75:33:3C:19:3A:D8:88:0F:F7
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 01849EA8D78CBC1FF0DD6302DADD31226D59
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/MnyksB8Z4awvRG91MzwZOtiID_c.roa
Signing time: Tue 22 Nov 2022 09:26:16 +0000
ROA not before: Tue 22 Nov 2022 09:26:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 996
IP address blocks: 148.222.240.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9e:a8:d7:8c:bc:1f:f0:dd:63:02:da:dd:31:22:6d:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Nov 22 09:26:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=327ca4b01f19e1ac2f446f75333c193ad8880ff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:11:6b:e3:07:c1:d7:92:22:9d:e1:6d:d4:d7:
8f:86:21:fe:9f:25:c5:92:b8:ec:bb:dd:67:d1:74:
cc:10:67:cb:ee:da:03:05:41:73:18:57:8d:e5:92:
42:bb:4e:f8:e4:44:16:98:e4:ab:2a:8e:71:2f:f3:
82:11:e3:22:24:db:56:da:7a:0e:29:94:62:60:27:
b2:e6:1e:a9:15:4a:9d:64:08:59:84:76:d2:fd:c0:
95:0c:9b:f1:6b:99:de:03:86:dd:a6:91:54:de:54:
57:20:7b:2e:13:a0:63:3a:99:be:5d:87:4e:5f:0b:
78:ca:c1:7a:bb:d5:36:07:87:0c:6b:ce:c6:be:4d:
70:16:fd:78:f4:78:a1:bd:a3:8c:7e:ab:b3:28:63:
83:ac:25:50:e6:58:f5:1c:72:99:ed:d2:7b:0f:9f:
ce:a2:cd:63:1d:a4:fe:2b:60:47:b7:6e:96:d7:84:
5b:37:1f:2e:9c:32:b6:25:c7:b7:9f:f0:38:9a:7f:
50:d8:21:be:40:40:8e:a2:bf:0b:fc:ae:38:3b:8b:
92:9c:bb:6c:55:c7:84:ce:b8:5a:20:9e:a5:84:a0:
10:b6:e1:6d:51:ec:5c:17:46:de:eb:a0:d4:f9:2b:
73:bd:9b:ce:05:e5:0b:93:36:fd:ba:22:46:b7:45:
e3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:7C:A4:B0:1F:19:E1:AC:2F:44:6F:75:33:3C:19:3A:D8:88:0F:F7
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/MnyksB8Z4awvRG91MzwZOtiID_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.222.240.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:92:69:a2:39:97:f2:e9:f6:e9:19:f6:4f:0d:a2:12:8b:7d:
f6:fc:a9:ca:cf:87:bb:90:f5:ec:ac:ef:9f:f4:84:ce:51:fd:
8c:76:7f:24:8e:e2:a0:aa:ba:15:2d:c9:ee:4a:28:0f:0d:95:
37:1d:1a:6e:f6:eb:c2:2b:4d:af:58:fe:16:7f:72:76:f4:e1:
fb:62:30:71:65:18:aa:a0:5b:c2:7e:ed:38:96:32:fd:47:be:
80:30:62:23:d7:7c:a7:71:8d:50:0d:81:6f:5d:c9:7c:7d:bf:
2b:64:29:52:2a:d2:99:a7:b6:99:56:17:8f:55:ec:48:9b:72:
4b:75:05:0e:ce:33:df:fd:4b:42:cc:61:45:c5:45:28:40:23:
7a:3b:a5:15:cc:a0:ae:30:fd:e0:14:cd:fe:dc:86:df:53:3b:
1e:ff:ba:15:76:09:70:d9:ca:0b:46:88:1e:e5:1c:bb:1c:da:
6a:bb:cb:f7:95:e7:ff:ef:07:cd:25:82:36:5f:18:9d:0a:01:
b3:28:98:4c:93:d5:9b:ca:ea:c3:91:3f:9f:a8:c3:4d:7f:f4:
06:fb:63:2b:7f:88:a8:9f:55:1b:14:c0:f5:b8:ca:ea:27:64:
24:0f:64:ca:8f:11:ab:26:54:b8:14:f9:1d:1e:e7:73:cb:31:
28:ff:6b:4e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSeqNeMvB/w3WMC2t0xIm1ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4MTAxNzcyMjQ4OTk2Yjg3ZDkwODQwYzJkMjdkNjI1NDk0
NTgxNzMwHhcNMjIxMTIyMDkyNjE2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjdjYTRiMDFmMTllMWFjMmY0NDZmNzUzMzNjMTkzYWQ4ODgwZmY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgxFr4wfB15IineFt1NePhiH+nyXF
krjsu91n0XTMEGfL7toDBUFzGFeN5ZJCu0745EQWmOSrKo5xL/OCEeMiJNtW2noO
KZRiYCey5h6pFUqdZAhZhHbS/cCVDJvxa5neA4bdppFU3lRXIHsuE6BjOpm+XYdO
Xwt4ysF6u9U2B4cMa87Gvk1wFv149HihvaOMfquzKGODrCVQ5lj1HHKZ7dJ7D5/O
os1jHaT+K2BHt26W14RbNx8unDK2Jce3n/A4mn9Q2CG+QECOor8L/K44O4uSnLts
VceEzrhaIJ6lhKAQtuFtUexcF0be66DU+StzvZvOBeULkzb9uiJGt0Xj7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDJ8pLAfGeGsL0RvdTM8GTrYiA/3MB8GA1UdIwQY
MBaAFBgQF3IkiZa4fZCEDC0n1iVJRYFzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQt
M2NjODVhZDNjMTkwLzEvTW55a3NCOFo0YXd2Ukc5MU16d1pPdGlJRF9jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQtM2NjODVhZDNjMTkw
LzEvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQClN7wMA0G
CSqGSIb3DQEBCwUAA4IBAQCikmmiOZfy6fbpGfZPDaISi332/KnKz4e7kPXsrO+f
9ITOUf2Mdn8kjuKgqroVLcnuSigPDZU3HRpu9uvCK02vWP4Wf3J29OH7YjBxZRiq
oFvCfu04ljL9R76AMGIj13yncY1QDYFvXcl8fb8rZClSKtKZp7aZVhePVexIm3JL
dQUOzjPf/UtCzGFFxUUoQCN6O6UVzKCuMP3gFM3+3IbfUzse/7oVdglw2coLRoge
5Ry7HNpqu8v3lef/7wfNJYI2XxidCgGzKJhMk9WbyurDkT+fqMNNf/QG+2Mrf4io
n1UbFMD1uMrqJ2QkD2TKjxGrJlS4FPkdHudzyzEo/2tO
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org