Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/d2f992-3a17-4975-9c2c-9ca8ea90e617/1/MUcZoI_ryLuNKCk13nYA3QWDGas.roa
File: MUcZoI_ryLuNKCk13nYA3QWDGas.roa (raw, json)
Hash identifier: 9MkqDbSyN+Td8kSOMic8n9J2/E/UENT2OfBs1lLzUj4=
Subject key identifier: 31:47:19:A0:8F:EB:C8:BB:8D:28:29:35:DE:76:00:DD:05:83:19:AB
Certificate issuer: /CN=5d99e8d5713a5e6382c0d1389d6242816f9d6fb9
Certificate serial: 07E99563
Authority key identifier: 5D:99:E8:D5:71:3A:5E:63:82:C0:D1:38:9D:62:42:81:6F:9D:6F:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XZno1XE6XmOCwNE4nWJCgW-db7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/d2f992-3a17-4975-9c2c-9ca8ea90e617/1/MUcZoI_ryLuNKCk13nYA3QWDGas.roa
Signing time: Sat 01 Jan 2022 14:02:42 +0000
ROA not before: Sat 01 Jan 2022 14:02:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9150
IP address blocks: 185.194.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132748643 (0x7e99563)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d99e8d5713a5e6382c0d1389d6242816f9d6fb9
Validity
Not Before: Jan 1 14:02:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=314719a08febc8bb8d282935de7600dd058319ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d0:05:36:3d:80:2a:77:2d:18:92:a4:40:b2:
a4:a4:be:f0:92:94:2a:ce:73:79:3e:84:86:dd:06:
29:58:b4:ed:0b:61:28:43:82:d9:05:85:b1:6b:97:
ed:b4:5a:60:f3:e4:e0:50:36:c7:c6:d2:96:10:3d:
07:ef:d3:96:b2:2b:0d:ca:b1:41:cd:74:e7:1b:a2:
19:6d:0d:c9:6b:3c:27:c1:ae:87:6d:ca:60:c5:2f:
46:fa:df:28:bb:ef:9e:cd:1f:32:19:e0:b0:18:83:
9f:65:9c:ce:8c:b4:c8:57:e7:a6:f7:15:2d:05:6d:
9c:ae:ec:2f:45:59:8c:36:5e:3e:5b:52:61:11:77:
64:76:b3:51:ec:8b:31:85:de:7c:0a:e6:79:e6:fb:
d8:a3:9d:df:ec:27:36:31:9e:4e:db:96:fd:ec:c9:
08:27:5f:10:d6:37:ac:e4:88:25:fe:5d:be:33:0c:
1d:92:fe:29:43:0c:73:53:09:12:27:c4:00:84:9d:
bf:8d:3a:ea:84:f0:62:e8:1c:e3:fa:37:dd:00:7a:
77:31:c1:aa:eb:ff:52:79:1f:f0:6d:5e:18:27:1d:
39:28:8d:1b:f3:90:f5:7d:e9:d9:e4:ee:f0:ec:b3:
b6:2d:12:02:dc:33:23:e1:3b:d2:1e:14:c4:8b:65:
d6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:47:19:A0:8F:EB:C8:BB:8D:28:29:35:DE:76:00:DD:05:83:19:AB
X509v3 Authority Key Identifier:
keyid:5D:99:E8:D5:71:3A:5E:63:82:C0:D1:38:9D:62:42:81:6F:9D:6F:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZno1XE6XmOCwNE4nWJCgW-db7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/d2f992-3a17-4975-9c2c-9ca8ea90e617/1/MUcZoI_ryLuNKCk13nYA3QWDGas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/d2f992-3a17-4975-9c2c-9ca8ea90e617/1/XZno1XE6XmOCwNE4nWJCgW-db7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.251.0/24
Signature Algorithm: sha256WithRSAEncryption
26:63:60:40:2e:3f:4f:c1:76:a7:c1:5f:a4:4a:e2:24:f9:a6:
44:19:2f:f7:84:ee:9a:b7:cd:83:09:9a:85:ad:8d:6b:e9:8d:
71:9e:e7:0a:05:a9:5b:66:e5:81:f6:50:51:26:42:80:b1:74:
2f:b1:17:58:b4:c3:21:94:0f:67:83:90:b8:49:6e:67:e4:38:
46:8e:2c:08:e8:1c:1e:4e:64:bc:16:d0:44:97:1e:b6:d3:12:
0e:90:ab:8c:31:ac:a1:ac:67:bf:68:4d:b4:03:9c:e7:e2:c8:
0d:b4:1e:11:00:11:6a:d7:ca:98:ba:b8:7d:fa:25:8f:32:0f:
e2:24:e2:b5:96:e7:f6:ae:9d:08:c5:df:c0:75:2d:15:c0:65:
63:19:12:00:24:e8:26:dc:cb:38:f1:98:e7:fd:c0:25:e8:94:
b1:13:52:fc:4d:a6:83:7a:65:02:fa:24:d3:96:38:31:0c:0f:
d0:a3:0f:89:50:8d:36:14:83:c5:e0:b6:f0:7e:4a:fa:9b:70:
0c:3e:d2:78:e9:16:20:f8:6c:78:6d:64:ba:7c:26:80:28:10:
f7:3d:bd:ca:2e:c5:30:62:7e:a1:69:a6:d6:2e:8f:70:6e:39:
8c:2a:b1:24:b3:ea:6f:d7:de:89:ae:60:91:7d:82:7c:e6:b7:
47:c2:40:2a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB+mVYzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZDk5ZThkNTcxM2E1ZTYzODJjMGQxMzg5ZDYyNDI4MTZmOWQ2ZmI5MB4XDTIyMDEw
MTE0MDI0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzE0NzE5YTA4ZmVi
YzhiYjhkMjgyOTM1ZGU3NjAwZGQwNTgzMTlhYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMzQBTY9gCp3LRiSpECypKS+8JKUKs5zeT6Eht0GKVi07Qth
KEOC2QWFsWuX7bRaYPPk4FA2x8bSlhA9B+/TlrIrDcqxQc105xuiGW0NyWs8J8Gu
h23KYMUvRvrfKLvvns0fMhngsBiDn2Wczoy0yFfnpvcVLQVtnK7sL0VZjDZePltS
YRF3ZHazUeyLMYXefArmeeb72KOd3+wnNjGeTtuW/ezJCCdfENY3rOSIJf5dvjMM
HZL+KUMMc1MJEifEAISdv4066oTwYugc4/o33QB6dzHBquv/Unkf8G1eGCcdOSiN
G/OQ9X3p2eTu8Oyzti0SAtwzI+E70h4UxItl1ksCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQxRxmgj+vIu40oKTXedgDdBYMZqzAfBgNVHSMEGDAWgBRdmejVcTpeY4LA
0TidYkKBb51vuTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1habm8xWEU2WG1PQ3dORTRuV0pDZ1ctZGI3ay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTcvZDJmOTkyLTNhMTctNDk3NS05YzJjLTljYThlYTkwZTYxNy8x
L01VY1pvSV9yeUx1TktDazEzbllBM1FXREdhcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTcv
ZDJmOTkyLTNhMTctNDk3NS05YzJjLTljYThlYTkwZTYxNy8xL1habm8xWEU2WG1P
Q3dORTRuV0pDZ1ctZGI3ay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnC+zANBgkqhkiG9w0BAQsFAAOC
AQEAJmNgQC4/T8F2p8FfpEriJPmmRBkv94TumrfNgwmaha2Na+mNcZ7nCgWpW2bl
gfZQUSZCgLF0L7EXWLTDIZQPZ4OQuEluZ+Q4Ro4sCOgcHk5kvBbQRJcettMSDpCr
jDGsoaxnv2hNtAOc5+LIDbQeEQARatfKmLq4ffoljzIP4iTitZbn9q6dCMXfwHUt
FcBlYxkSACToJtzLOPGY5/3AJeiUsRNS/E2mg3plAvok05Y4MQwP0KMPiVCNNhSD
xeC28H5K+ptwDD7SeOkWIPhseG1kunwmgCgQ9z29yi7FMGJ+oWmm1i6PcG45jCqx
JLPqb9feia5gkX2CfOa3R8JAKg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:04 2024 by rpki-client on console-fra.rpki-client.org