Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/mQR-6AgKmuDeXJq6PoskLeCirSg.roa
File: mQR-6AgKmuDeXJq6PoskLeCirSg.roa (raw, json)
Hash identifier: dOyC8PxXlwjDaN4Y5K9KuhfYDOXeiunuHW7LZRjzrko=
Subject key identifier: 99:04:7E:E8:08:0A:9A:E0:DE:5C:9A:BA:3E:8B:24:2D:E0:A2:AD:28
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 01474740
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/mQR-6AgKmuDeXJq6PoskLeCirSg.roa
Signing time: Wed 08 Jun 2022 14:32:02 +0000
ROA not before: Wed 08 Jun 2022 14:32:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 91.232.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21448512 (0x1474740)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Jun 8 14:32:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99047ee8080a9ae0de5c9aba3e8b242de0a2ad28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:bc:a8:45:58:a9:b5:c1:72:e6:b0:95:7b:08:
d7:3c:d8:f8:da:01:3e:1c:51:16:e8:df:85:3a:36:
34:0d:a9:fa:60:43:5e:55:cf:95:71:1a:17:e9:c5:
99:a5:40:75:bc:cb:8b:43:29:1b:7d:ac:09:2f:db:
dd:3a:1a:87:94:89:63:41:d1:b5:39:a0:1a:f9:2a:
f0:bf:77:9b:30:1c:c4:9f:83:a6:32:df:41:af:9e:
ab:1b:fc:9a:75:9d:04:4d:2e:16:c6:a0:dc:8a:6b:
2a:46:d4:8e:94:94:6a:24:2e:21:5d:5c:2e:0c:54:
59:e9:4a:f0:cb:1c:5f:f5:75:f4:b8:48:f7:d2:a4:
2a:9a:3b:07:06:f7:3c:e6:0e:1d:31:d0:57:83:6e:
f5:27:6e:0f:d3:13:8d:36:c5:14:a5:9f:ad:e8:ef:
7a:6f:63:7a:2d:34:b1:63:f0:49:7d:bb:e5:c6:80:
ad:67:c4:43:0d:bf:27:11:b1:2d:7e:76:e9:56:31:
ea:1b:96:8b:e0:f9:b9:0e:46:d7:cb:70:1e:fc:89:
c1:2f:7e:48:93:ea:54:f3:c7:a1:c0:e5:6a:3a:85:
21:7c:55:cb:59:d4:72:49:d4:f7:fb:0d:99:e3:ea:
0a:72:a5:09:8a:b6:c1:29:61:d6:ca:fc:14:0f:42:
bd:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:04:7E:E8:08:0A:9A:E0:DE:5C:9A:BA:3E:8B:24:2D:E0:A2:AD:28
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/mQR-6AgKmuDeXJq6PoskLeCirSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.99.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:84:19:01:03:dc:5f:87:c0:dc:09:74:e5:96:8e:69:d7:01:
03:62:8c:d4:7c:79:00:1a:43:b1:04:25:8b:d4:01:29:bf:e8:
97:99:08:ac:3c:eb:db:06:3b:34:37:6d:7e:9d:40:88:2c:d9:
14:25:18:77:35:71:5c:95:da:84:59:7d:9a:07:5f:01:2b:0a:
54:81:ab:00:24:31:1f:15:e7:92:11:9d:07:77:d7:01:bf:c7:
1a:cc:f7:06:6e:fd:82:f8:84:2a:be:71:c8:93:1e:b1:4d:28:
41:c8:54:4e:6a:4e:cf:53:4d:e6:51:c7:95:13:46:81:a1:a8:
3d:49:0e:90:8e:12:d5:0a:2c:2f:e6:b9:39:dd:fd:c8:57:95:
43:df:c6:14:35:15:d4:e5:5c:1a:cb:03:4f:8d:58:02:be:db:
00:d8:9a:92:c3:df:6a:47:a3:49:f6:60:af:cc:0e:53:3d:c0:
5e:86:e1:d6:9b:22:e0:9e:4d:dc:ae:5c:99:a6:a1:56:ae:19:
9a:19:40:ca:f5:36:10:5e:2c:f3:d9:37:1e:5a:41:aa:e5:a5:
5e:01:88:5d:e7:ef:19:7c:55:38:70:bb:4c:f5:a6:d7:7f:77:
d4:da:10:49:d9:aa:58:83:5e:68:d3:be:98:92:28:45:16:67:
9a:11:20:69
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAUdHQDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MzE2MzE4MjQ3ZDIxMTg0MWY5NjIwYTlhMTEzMDAxMGRkYjQ4NmYyMB4XDTIyMDYw
ODE0MzIwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTkwNDdlZTgwODBh
OWFlMGRlNWM5YWJhM2U4YjI0MmRlMGEyYWQyODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALK8qEVYqbXBcuawlXsI1zzY+NoBPhxRFujfhTo2NA2p+mBD
XlXPlXEaF+nFmaVAdbzLi0MpG32sCS/b3Toah5SJY0HRtTmgGvkq8L93mzAcxJ+D
pjLfQa+eqxv8mnWdBE0uFsag3IprKkbUjpSUaiQuIV1cLgxUWelK8MscX/V19LhI
99KkKpo7Bwb3POYOHTHQV4Nu9SduD9MTjTbFFKWfrejvem9jei00sWPwSX275caA
rWfEQw2/JxGxLX526VYx6huWi+D5uQ5G18twHvyJwS9+SJPqVPPHocDlajqFIXxV
y1nUcknU9/sNmePqCnKlCYq2wSlh1sr8FA9CvcsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSZBH7oCAqa4N5cmro+iyQt4KKtKDAfBgNVHSMEGDAWgBTjFjGCR9IRhB+W
IKmhEwAQ3bSG8jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzR4WXhna2ZTRVlRZmxpQ3BvUk1BRU4yMGh2SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTkvZWU0MmJiLTFlNDktNGMyMS1hNGQ2LWVjMjg3ZTFkMzdlNS8x
L21RUi02QWdLbXVEZVhKcTZQb3NrTGVDaXJTZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkv
ZWU0MmJiLTFlNDktNGMyMS1hNGQ2LWVjMjg3ZTFkMzdlNS8xLzR4WXhna2ZTRVlR
ZmxpQ3BvUk1BRU4yMGh2SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvoYzANBgkqhkiG9w0BAQsFAAOC
AQEALoQZAQPcX4fA3Al05ZaOadcBA2KM1Hx5ABpDsQQli9QBKb/ol5kIrDzr2wY7
NDdtfp1AiCzZFCUYdzVxXJXahFl9mgdfASsKVIGrACQxHxXnkhGdB3fXAb/HGsz3
Bm79gviEKr5xyJMesU0oQchUTmpOz1NN5lHHlRNGgaGoPUkOkI4S1QosL+a5Od39
yFeVQ9/GFDUV1OVcGssDT41YAr7bANiaksPfakejSfZgr8wOUz3AXobh1psi4J5N
3K5cmaahVq4ZmhlAyvU2EF4s89k3HlpBquWlXgGIXefvGXxVOHC7TPWm13931NoQ
SdmqWINeaNO+mJIoRRZnmhEgaQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:51 2023 by rpki-client on console-fra.rpki-client.org