Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/ecd1bb-fbda-4dd9-9ef9-3ac7d9623291/1/MVyry6wcnhudNori7r7Vs4ekMzs.roa
File: MVyry6wcnhudNori7r7Vs4ekMzs.roa (raw, json)
Hash identifier: YLyMoZVUpliICeb6mk4wi7GxIyN84QnobyanCDLU8Us=
Subject key identifier: 31:5C:AB:CB:AC:1C:9E:1B:9D:36:8A:E2:EE:BE:D5:B3:87:A4:33:3B
Certificate issuer: /CN=ee4c3fc0122d831fbea8abb20a4e9b65c54039b2
Certificate serial: 0A69BC6E
Authority key identifier: EE:4C:3F:C0:12:2D:83:1F:BE:A8:AB:B2:0A:4E:9B:65:C5:40:39:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7kw_wBItgx--qKuyCk6bZcVAObI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/ecd1bb-fbda-4dd9-9ef9-3ac7d9623291/1/MVyry6wcnhudNori7r7Vs4ekMzs.roa
Signing time: Sat 01 Jan 2022 04:01:56 +0000
ROA not before: Sat 01 Jan 2022 04:01:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2119
IP address blocks: 138.14.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174701678 (0xa69bc6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee4c3fc0122d831fbea8abb20a4e9b65c54039b2
Validity
Not Before: Jan 1 04:01:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=315cabcbac1c9e1b9d368ae2eebed5b387a4333b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ec:81:c7:b7:8d:98:f5:36:3b:d9:7a:85:71:
b2:b2:38:15:48:70:62:17:7e:c3:91:4b:91:99:d1:
52:52:92:d8:f3:ad:58:3e:cf:0e:5c:bf:1f:20:34:
d0:8a:5b:62:3b:6f:b3:33:1f:5b:7b:fa:8b:4c:65:
6a:9e:b2:2c:78:a5:1d:d3:20:cd:7c:b3:19:66:a6:
8c:a1:3d:26:89:f6:53:5b:d9:6b:1d:07:45:85:67:
cf:4d:9d:fe:aa:a4:95:a4:cd:41:51:f8:f1:9a:e3:
00:9a:c7:a3:1d:39:5e:1c:52:ce:d2:20:95:4c:b6:
38:0a:89:c5:fb:96:85:08:f3:d8:4f:69:c0:9f:31:
f4:37:fb:79:5c:23:13:b6:43:21:ac:98:80:6a:59:
75:10:46:14:df:02:52:76:8c:49:96:1f:bd:26:63:
40:c5:6a:ad:42:84:e9:fd:82:e1:3f:44:4e:e3:62:
ed:40:54:6b:03:f6:f9:a6:ac:29:c2:35:53:18:39:
2a:f4:e3:ce:f9:61:28:45:09:5b:4d:26:82:cc:de:
c9:94:31:1d:3f:e6:72:1c:58:bf:c2:fa:f6:2d:c7:
9d:87:aa:83:3a:7e:93:fb:92:d5:54:4f:3c:70:3c:
78:71:19:ce:23:a1:a5:1b:85:f1:47:12:08:d7:0a:
97:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:5C:AB:CB:AC:1C:9E:1B:9D:36:8A:E2:EE:BE:D5:B3:87:A4:33:3B
X509v3 Authority Key Identifier:
keyid:EE:4C:3F:C0:12:2D:83:1F:BE:A8:AB:B2:0A:4E:9B:65:C5:40:39:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7kw_wBItgx--qKuyCk6bZcVAObI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/ecd1bb-fbda-4dd9-9ef9-3ac7d9623291/1/MVyry6wcnhudNori7r7Vs4ekMzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/ecd1bb-fbda-4dd9-9ef9-3ac7d9623291/1/7kw_wBItgx--qKuyCk6bZcVAObI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.14.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7f:27:d3:f1:6c:9a:31:9d:80:3b:c8:8d:2a:07:0b:44:2f:aa:
f7:dd:4a:6f:23:41:0d:5c:d7:a6:32:3c:54:5b:6e:1e:22:a2:
85:b8:e5:b0:29:70:01:e7:d3:7d:a8:57:27:37:08:bf:46:87:
7f:55:10:b0:1d:6b:d9:6e:3e:48:1a:4c:08:a2:a0:53:d7:49:
15:e6:c2:eb:61:21:1d:bd:ee:a1:e4:3e:4b:1d:ff:53:7e:1e:
53:15:52:28:24:ea:33:77:29:b1:c2:bf:65:f4:fa:b7:c1:9b:
1c:ca:a7:55:da:fc:73:70:02:33:4d:2a:99:8c:99:1a:b8:9d:
d7:a0:dc:be:ad:4c:d7:96:20:5b:25:24:6b:b3:11:7c:69:06:
e3:2d:de:d0:7f:21:9b:a6:89:44:74:af:76:d1:b8:d9:06:bd:
13:76:7f:b8:96:64:89:ec:11:e2:2f:2a:97:d6:15:b7:5b:d0:
8c:d6:9e:04:12:06:9d:66:c2:74:ae:8e:bb:5c:7a:46:15:7b:
7c:76:1e:d3:ec:e2:b1:45:91:82:73:40:71:58:4a:f9:2f:87:
11:3e:64:a6:3b:cc:5a:2a:ef:cf:0a:50:c3:d6:a2:3c:10:ae:
9e:1b:37:6a:87:54:fa:20:53:f9:6b:66:c7:d8:f8:58:d5:73:
4e:fe:46:26
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIECmm8bjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ZTRjM2ZjMDEyMmQ4MzFmYmVhOGFiYjIwYTRlOWI2NWM1NDAzOWIyMB4XDTIyMDEw
MTA0MDE1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzE1Y2FiY2JhYzFj
OWUxYjlkMzY4YWUyZWViZWQ1YjM4N2E0MzMzYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMvsgce3jZj1NjvZeoVxsrI4FUhwYhd+w5FLkZnRUlKS2POt
WD7PDly/HyA00IpbYjtvszMfW3v6i0xlap6yLHilHdMgzXyzGWamjKE9Jon2U1vZ
ax0HRYVnz02d/qqklaTNQVH48ZrjAJrHox05XhxSztIglUy2OAqJxfuWhQjz2E9p
wJ8x9Df7eVwjE7ZDIayYgGpZdRBGFN8CUnaMSZYfvSZjQMVqrUKE6f2C4T9ETuNi
7UBUawP2+aasKcI1Uxg5KvTjzvlhKEUJW00mgszeyZQxHT/mchxYv8L69i3HnYeq
gzp+k/uS1VRPPHA8eHEZziOhpRuF8UcSCNcKlw8CAwEAAaOCAggwggIEMB0GA1Ud
DgQWBBQxXKvLrByeG502iuLuvtWzh6QzOzAfBgNVHSMEGDAWgBTuTD/AEi2DH76o
q7IKTptlxUA5sjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
Lzdrd193Qkl0Z3gtLXFLdXlDazZiWmNWQU9iSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWQvZWNkMWJiLWZiZGEtNGRkOS05ZWY5LTNhYzdkOTYyMzI5MS8x
L01WeXJ5Nndjbmh1ZE5vcmk3cjdWczRla016cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWQv
ZWNkMWJiLWZiZGEtNGRkOS05ZWY5LTNhYzdkOTYyMzI5MS8xLzdrd193Qkl0Z3gt
LXFLdXlDazZiWmNWQU9iSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAIoOMA0GCSqGSIb3DQEBCwUAA4IB
AQB/J9PxbJoxnYA7yI0qBwtEL6r33UpvI0ENXNemMjxUW24eIqKFuOWwKXAB59N9
qFcnNwi/Rod/VRCwHWvZbj5IGkwIoqBT10kV5sLrYSEdve6h5D5LHf9Tfh5TFVIo
JOozdymxwr9l9Pq3wZscyqdV2vxzcAIzTSqZjJkauJ3XoNy+rUzXliBbJSRrsxF8
aQbjLd7QfyGbpolEdK920bjZBr0Tdn+4lmSJ7BHiLyqX1hW3W9CM1p4EEgadZsJ0
ro67XHpGFXt8dh7T7OKxRZGCc0BxWEr5L4cRPmSmO8xaKu/PClDD1qI8EK6eGzdq
h1T6IFP5a2bH2PhY1XNO/kYm
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:51 2023 by rpki-client on console-ams.rpki-client.org