Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/2fbbf5-b0b5-4ca5-9327-6c4f2e027911/1/MR97GgpCeihJsdzo__EsFlLO4hc.roa
File: MR97GgpCeihJsdzo__EsFlLO4hc.roa (raw, json)
Hash identifier: sQqvxk1XvOA/VcmvPo+BN0tempwwgU7vllzNG7QR8ig=
Subject key identifier: 31:1F:7B:1A:0A:42:7A:28:49:B1:DC:E8:FF:F1:2C:16:52:CE:E2:17
Certificate issuer: /CN=e3025c689a52c898fd7279329f36b406cc8fbc17
Certificate serial: 018533B5BB3D330F79AE08DB81EFFA530AD5
Authority key identifier: E3:02:5C:68:9A:52:C8:98:FD:72:79:32:9F:36:B4:06:CC:8F:BC:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4wJcaJpSyJj9cnkynza0BsyPvBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/2fbbf5-b0b5-4ca5-9327-6c4f2e027911/1/MR97GgpCeihJsdzo__EsFlLO4hc.roa
Signing time: Wed 21 Dec 2022 08:03:45 +0000
ROA not before: Wed 21 Dec 2022 08:03:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49022
IP address blocks: 91.243.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:33:b5:bb:3d:33:0f:79:ae:08:db:81:ef:fa:53:0a:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3025c689a52c898fd7279329f36b406cc8fbc17
Validity
Not Before: Dec 21 08:03:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=311f7b1a0a427a2849b1dce8fff12c1652cee217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c2:f0:4a:62:db:8d:9d:1d:97:da:d8:9b:aa:
17:70:31:1f:91:49:d5:ae:2e:00:f1:b3:ad:d2:b3:
12:9c:30:fa:da:8a:90:3d:94:3a:26:b6:73:af:a3:
53:0e:f0:0f:bd:61:23:d0:b2:c2:cb:eb:1e:f2:f5:
96:0b:74:d3:39:b7:50:a3:ff:11:e4:71:61:d0:96:
30:60:72:d3:e5:8f:46:e7:57:92:f3:4f:25:5b:e4:
a9:a9:10:97:56:aa:33:b5:67:ca:b1:37:eb:9f:68:
12:a0:19:b4:3b:5e:ff:62:87:d6:17:8a:fc:6c:67:
f1:18:a7:16:c7:96:e3:c3:49:e4:e8:e0:c4:de:3f:
17:a0:2a:c7:5e:d3:a2:51:f2:ea:70:10:5b:48:b4:
74:3f:0a:87:b2:4d:b6:b1:a5:39:dd:38:02:0d:8a:
6a:39:66:21:c9:ff:7d:af:53:bd:00:a1:00:73:cf:
78:3a:92:00:a2:d6:2e:49:d5:2e:bc:14:9d:a6:22:
e3:d0:76:d9:32:e0:c2:53:71:e1:b3:1c:be:78:ff:
3d:5a:f5:56:a5:16:68:74:32:53:e2:54:95:54:02:
69:40:cf:10:de:e7:ea:af:2a:4f:ad:f9:be:55:3b:
a2:3c:d0:13:7b:f2:00:ef:ff:52:61:c2:32:c3:a6:
49:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:1F:7B:1A:0A:42:7A:28:49:B1:DC:E8:FF:F1:2C:16:52:CE:E2:17
X509v3 Authority Key Identifier:
keyid:E3:02:5C:68:9A:52:C8:98:FD:72:79:32:9F:36:B4:06:CC:8F:BC:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4wJcaJpSyJj9cnkynza0BsyPvBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/2fbbf5-b0b5-4ca5-9327-6c4f2e027911/1/MR97GgpCeihJsdzo__EsFlLO4hc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/2fbbf5-b0b5-4ca5-9327-6c4f2e027911/1/4wJcaJpSyJj9cnkynza0BsyPvBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.243.119.0/24
Signature Algorithm: sha256WithRSAEncryption
84:bc:4e:4e:64:7c:4b:d1:09:9c:dc:d5:69:11:c2:1e:9d:b8:
91:16:e8:13:f2:27:6a:f3:04:06:02:cd:5b:90:cc:f2:b7:f1:
66:a0:33:12:44:1b:af:4a:32:7e:20:89:b9:e2:92:88:cc:b6:
39:ef:39:89:10:ad:63:91:bf:f1:c2:d6:d3:6a:96:00:67:65:
b4:de:04:c7:57:e5:58:ae:a3:e2:8f:a4:51:fc:f2:d1:a8:7a:
cd:d3:f4:c2:ee:ef:f6:fb:c2:42:9f:ea:e6:2d:d8:e1:cc:62:
e4:84:bf:89:eb:0d:5a:c7:7d:49:a5:20:e7:ac:53:f4:0d:06:
98:d6:9a:b0:4f:32:07:74:3c:b9:56:04:f3:ae:11:b9:e3:63:
89:74:f5:88:5f:9e:24:35:bb:37:dd:b7:f0:be:4a:a4:e9:06:
f1:19:c9:5f:31:3e:a5:5e:b6:00:d3:52:d0:f9:a9:e0:27:da:
b0:0d:a5:ce:66:18:39:2e:22:43:c0:f3:0b:90:39:65:24:f6:
df:36:a3:39:24:3f:70:52:41:85:bc:c2:a0:30:2f:39:4c:ac:
06:98:1b:de:41:d5:81:09:b5:22:37:c6:45:62:0c:f7:ac:f5:
ca:cf:41:a6:af:b9:09:ca:76:19:b3:3a:d7:a7:eb:d6:6c:36:
bf:ba:ec:d5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUztbs9Mw95rgjbge/6UwrVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzMDI1YzY4OWE1MmM4OThmZDcyNzkzMjlmMzZiNDA2Y2M4
ZmJjMTcwHhcNMjIxMjIxMDgwMzQ1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMTFmN2IxYTBhNDI3YTI4NDliMWRjZThmZmYxMmMxNjUyY2VlMjE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg8LwSmLbjZ0dl9rYm6oXcDEfkUnV
ri4A8bOt0rMSnDD62oqQPZQ6JrZzr6NTDvAPvWEj0LLCy+se8vWWC3TTObdQo/8R
5HFh0JYwYHLT5Y9G51eS808lW+SpqRCXVqoztWfKsTfrn2gSoBm0O17/YofWF4r8
bGfxGKcWx5bjw0nk6ODE3j8XoCrHXtOiUfLqcBBbSLR0PwqHsk22saU53TgCDYpq
OWYhyf99r1O9AKEAc894OpIAotYuSdUuvBSdpiLj0HbZMuDCU3Hhsxy+eP89WvVW
pRZodDJT4lSVVAJpQM8Q3ufqrypPrfm+VTuiPNATe/IA7/9SYcIyw6ZJcwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDEfexoKQnooSbHc6P/xLBZSzuIXMB8GA1UdIwQY
MBaAFOMCXGiaUsiY/XJ5Mp82tAbMj7wXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHdKY2FKcFN5Smo5Y25reW56YTBCc3lQdkJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yZmJiZjUtYjBiNS00Y2E1LTkzMjct
NmM0ZjJlMDI3OTExLzEvTVI5N0dncENlaWhKc2R6b19fRXNGbExPNGhjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yZmJiZjUtYjBiNS00Y2E1LTkzMjctNmM0ZjJlMDI3OTEx
LzEvNHdKY2FKcFN5Smo5Y25reW56YTBCc3lQdkJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/N3MA0G
CSqGSIb3DQEBCwUAA4IBAQCEvE5OZHxL0Qmc3NVpEcIenbiRFugT8idq8wQGAs1b
kMzyt/FmoDMSRBuvSjJ+IIm54pKIzLY57zmJEK1jkb/xwtbTapYAZ2W03gTHV+VY
rqPij6RR/PLRqHrN0/TC7u/2+8JCn+rmLdjhzGLkhL+J6w1ax31JpSDnrFP0DQaY
1pqwTzIHdDy5VgTzrhG542OJdPWIX54kNbs33bfwvkqk6QbxGclfMT6lXrYA01LQ
+angJ9qwDaXOZhg5LiJDwPMLkDllJPbfNqM5JD9wUkGFvMKgMC85TKwGmBveQdWB
CbUiN8ZFYgz3rPXKz0Gmr7kJynYZszrXp+vWbDa/uuzV
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:16 2023 by rpki-client on console-ams.rpki-client.org