Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/6f9604-480c-4837-aff2-d5c1aa5ae398/1/mSvZQRb6KXyWkLJCLvIOwUIvdz0.roa
File: mSvZQRb6KXyWkLJCLvIOwUIvdz0.roa (raw, json)
Hash identifier: +j85Ethdu2YsVu2/afHnd0HzbH78IwQI9s9JdvFotic=
Subject key identifier: 99:2B:D9:41:16:FA:29:7C:96:90:B2:42:2E:F2:0E:C1:42:2F:77:3D
Certificate issuer: /CN=f8753e2f7230ddb7bc0e64e358af97c318d88b6a
Certificate serial: 044523DC
Authority key identifier: F8:75:3E:2F:72:30:DD:B7:BC:0E:64:E3:58:AF:97:C3:18:D8:8B:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HU-L3Iw3be8DmTjWK-XwxjYi2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/6f9604-480c-4837-aff2-d5c1aa5ae398/1/mSvZQRb6KXyWkLJCLvIOwUIvdz0.roa
Signing time: Sat 01 Jan 2022 08:54:45 +0000
ROA not before: Sat 01 Jan 2022 08:54:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42491
IP address blocks: 193.72.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71640028 (0x44523dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8753e2f7230ddb7bc0e64e358af97c318d88b6a
Validity
Not Before: Jan 1 08:54:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=992bd94116fa297c9690b2422ef20ec1422f773d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:a0:2c:e9:7f:34:c1:07:93:24:52:43:4f:7b:
a1:14:fd:46:f7:a9:ce:d0:f1:c3:e3:f5:32:e0:b1:
26:b1:0a:9d:47:f7:f7:ef:7f:b6:59:46:77:e4:f2:
fa:00:79:60:9f:d4:62:bc:0a:7e:74:56:ca:aa:a8:
ce:84:59:0c:8c:77:86:0b:1e:d8:e6:4c:c5:9e:69:
6f:7f:bc:61:4a:28:ee:6c:78:e8:9a:16:c9:21:8e:
45:65:af:cb:66:6c:5a:64:6c:4e:f7:14:4c:c0:13:
ac:b6:63:d7:19:0a:c0:9c:54:fd:08:dc:27:01:ef:
ce:43:2f:f9:ba:8e:8a:fc:46:e4:2c:98:32:cc:1f:
98:ed:68:41:95:ea:00:ae:76:15:5e:12:83:e2:b7:
d9:f8:11:15:37:3d:48:06:ef:45:d3:bb:03:d7:be:
82:94:c7:bf:06:59:5d:52:62:24:16:97:9f:79:57:
b2:8e:78:2c:e9:e0:bb:5a:ee:9d:3c:ea:78:f3:0d:
8f:40:18:3c:32:02:80:35:99:34:31:4f:4b:6b:25:
95:ba:88:4f:53:ec:98:ee:ce:87:52:a4:d4:eb:84:
02:5a:7e:56:d2:f4:90:e7:0c:b2:d3:da:df:ad:b0:
4b:f8:b1:1f:7e:37:57:f0:3a:fe:eb:91:52:3d:cb:
52:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:2B:D9:41:16:FA:29:7C:96:90:B2:42:2E:F2:0E:C1:42:2F:77:3D
X509v3 Authority Key Identifier:
keyid:F8:75:3E:2F:72:30:DD:B7:BC:0E:64:E3:58:AF:97:C3:18:D8:8B:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HU-L3Iw3be8DmTjWK-XwxjYi2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/6f9604-480c-4837-aff2-d5c1aa5ae398/1/mSvZQRb6KXyWkLJCLvIOwUIvdz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/6f9604-480c-4837-aff2-d5c1aa5ae398/1/1-HU-L3Iw3be8DmTjWK-XwxjYi2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.72.166.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:62:f0:41:9e:32:c6:8a:57:a6:ae:e9:8c:c5:2c:97:c6:09:
cd:59:f4:46:90:55:a1:66:f5:76:a4:2d:a4:ca:26:35:c9:7e:
10:5b:8c:45:08:c3:8c:6c:a1:17:0c:4d:05:19:11:15:05:a8:
bb:7c:f5:6f:d8:10:aa:a0:08:21:ba:08:63:24:50:ef:44:de:
6e:88:80:bc:43:3a:50:bb:16:49:56:59:53:24:0f:ae:c9:fa:
44:e0:83:8e:2a:88:14:e3:30:7a:ab:12:aa:70:ee:bb:da:df:
1b:0a:61:2b:1e:34:2b:7f:37:23:27:2c:d8:af:b7:71:f8:6a:
56:4c:ff:ff:e8:98:e8:07:4f:a2:25:0e:aa:ac:59:e9:d0:7c:
6c:d0:b1:ec:59:50:76:ff:1f:cd:fe:b6:8a:7b:4a:c5:43:d3:
7e:2b:90:bc:52:9e:37:a9:ed:36:23:5f:c2:0e:45:e2:10:94:
38:19:38:a1:fd:ac:55:70:c6:68:d9:80:a2:06:37:a5:ec:0a:
e4:51:84:8d:67:88:09:d8:e1:00:89:a2:0d:76:81:cc:c3:54:
ad:61:22:b0:96:1f:8a:12:bd:b6:cc:81:14:8e:32:6e:bd:ec:
c8:14:c2:ae:ec:e8:b2:42:5a:61:27:e4:31:e4:e0:1a:71:67:
78:13:e3:5f
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEBEUj3DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ODc1M2UyZjcyMzBkZGI3YmMwZTY0ZTM1OGFmOTdjMzE4ZDg4YjZhMB4XDTIyMDEw
MTA4NTQ0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTkyYmQ5NDExNmZh
Mjk3Yzk2OTBiMjQyMmVmMjBlYzE0MjJmNzczZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOegLOl/NMEHkyRSQ097oRT9RvepztDxw+P1MuCxJrEKnUf3
9+9/tllGd+Ty+gB5YJ/UYrwKfnRWyqqozoRZDIx3hgse2OZMxZ5pb3+8YUoo7mx4
6JoWySGORWWvy2ZsWmRsTvcUTMATrLZj1xkKwJxU/QjcJwHvzkMv+bqOivxG5CyY
MswfmO1oQZXqAK52FV4Sg+K32fgRFTc9SAbvRdO7A9e+gpTHvwZZXVJiJBaXn3lX
so54LOngu1runTzqePMNj0AYPDICgDWZNDFPS2sllbqIT1PsmO7Oh1Kk1OuEAlp+
VtL0kOcMstPa362wS/ixH343V/A6/uuRUj3LUmsCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBSZK9lBFvopfJaQskIu8g7BQi93PTAfBgNVHSMEGDAWgBT4dT4vcjDdt7wO
ZONYr5fDGNiLajAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtSFUtTDNJdzNiZThEbVRqV0stWHd4allpMm8uY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzhjLzZmOTYwNC00ODBjLTQ4MzctYWZmMi1kNWMxYWE1YWUzOTgv
MS9tU3ZaUVJiNktYeVdrTEpDTHZJT3dVSXZkejAucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhj
LzZmOTYwNC00ODBjLTQ4MzctYWZmMi1kNWMxYWE1YWUzOTgvMS8xLUhVLUwzSXcz
YmU4RG1UaldLLVh3eGpZaTJvLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwUimMA0GCSqGSIb3DQEBCwUA
A4IBAQAeYvBBnjLGilemrumMxSyXxgnNWfRGkFWhZvV2pC2kyiY1yX4QW4xFCMOM
bKEXDE0FGREVBai7fPVv2BCqoAghughjJFDvRN5uiIC8QzpQuxZJVllTJA+uyfpE
4IOOKogU4zB6qxKqcO672t8bCmErHjQrfzcjJyzYr7dx+GpWTP//6JjoB0+iJQ6q
rFnp0Hxs0LHsWVB2/x/N/raKe0rFQ9N+K5C8Up43qe02I1/CDkXiEJQ4GTih/axV
cMZo2YCiBjel7ArkUYSNZ4gJ2OEAiaINdoHMw1StYSKwlh+KEr22zIEUjjJuvezI
FMKu7OiyQlphJ+Qx5OAacWd4E+Nf
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:57 2023 by rpki-client on console-ams.rpki-client.org