Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/5908a9-0c0f-40ab-bfd6-69af0a6e989b/1/mfe0KTfzzLTogkf_EZVmWVaTVh4.roa
File: mfe0KTfzzLTogkf_EZVmWVaTVh4.roa (raw, json)
Hash identifier: B7BLgj4R9Bv0MWR8hyoZNNIxV7lHejFPHFkwFICk3tk=
Subject key identifier: 99:F7:B4:29:37:F3:CC:B4:E8:82:47:FF:11:95:66:59:56:93:56:1E
Certificate issuer: /CN=98118687fdd6ff80fb098a9eeef06de377f85d6e
Certificate serial: 0183219FCAFF78EF3872590232B554CAD760
Authority key identifier: 98:11:86:87:FD:D6:FF:80:FB:09:8A:9E:EE:F0:6D:E3:77:F8:5D:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mBGGh_3W_4D7CYqe7vBt43f4XW4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/5908a9-0c0f-40ab-bfd6-69af0a6e989b/1/mfe0KTfzzLTogkf_EZVmWVaTVh4.roa
Signing time: Fri 09 Sep 2022 09:41:03 +0000
ROA not before: Fri 09 Sep 2022 09:41:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2852
IP address blocks: 147.251.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:9f:ca:ff:78:ef:38:72:59:02:32:b5:54:ca:d7:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98118687fdd6ff80fb098a9eeef06de377f85d6e
Validity
Not Before: Sep 9 09:41:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99f7b42937f3ccb4e88247ff119566595693561e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0c:e2:ae:28:a8:3a:c9:0d:96:64:55:52:61:
8e:b9:d8:82:86:17:a6:8e:b5:78:4e:a0:3f:26:82:
70:40:e3:47:50:fc:62:7b:99:de:45:7b:9c:b6:6e:
c8:a6:ab:c0:25:d1:28:39:34:4c:b7:d7:3f:56:aa:
9d:c1:26:48:74:bf:c3:96:bc:f3:56:d5:ad:76:3a:
f7:82:d4:ac:ce:8c:62:0f:9c:aa:35:26:a6:d4:50:
17:ad:dd:09:0a:45:98:ce:80:13:7a:a0:9b:cc:85:
53:80:72:3f:c9:a6:0d:6c:6d:90:11:90:97:83:fe:
26:54:12:0f:1d:fe:1e:ec:70:40:ef:3d:28:59:c0:
ad:ba:0b:c9:f3:34:66:c8:ac:a4:9e:03:ec:d5:32:
9f:62:13:e9:a9:63:70:76:55:0c:f3:44:bd:57:a9:
9b:eb:ed:50:a8:b1:3e:b5:89:af:0f:55:83:7a:1d:
cc:f3:1a:b2:18:01:5b:f1:73:15:bf:5f:8a:4e:37:
16:09:53:13:22:95:a4:b8:b2:36:63:26:c4:95:2f:
fd:45:7c:ae:38:b9:6d:72:43:4e:5e:b0:7d:aa:db:
63:c8:c3:fe:17:3b:f8:c0:eb:21:6a:8b:c6:43:74:
74:aa:67:b5:70:7f:11:34:64:dd:94:83:6f:c5:00:
cb:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:F7:B4:29:37:F3:CC:B4:E8:82:47:FF:11:95:66:59:56:93:56:1E
X509v3 Authority Key Identifier:
keyid:98:11:86:87:FD:D6:FF:80:FB:09:8A:9E:EE:F0:6D:E3:77:F8:5D:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mBGGh_3W_4D7CYqe7vBt43f4XW4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5908a9-0c0f-40ab-bfd6-69af0a6e989b/1/mfe0KTfzzLTogkf_EZVmWVaTVh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5908a9-0c0f-40ab-bfd6-69af0a6e989b/1/mBGGh_3W_4D7CYqe7vBt43f4XW4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.251.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5e:eb:80:79:29:ab:8a:ad:54:c8:85:1d:3b:2b:2c:ed:0b:40:
0a:54:c5:ae:ed:7e:81:5a:91:f6:82:4b:ca:3d:88:60:e3:97:
02:af:6a:6f:c2:f1:b8:38:b6:8a:16:13:eb:be:4e:5b:14:46:
d3:09:32:5d:bf:61:bd:c1:49:dd:10:05:b1:56:13:ed:94:f7:
53:0c:7c:e4:6f:f7:20:fa:9f:72:81:d5:53:cf:b2:2f:27:da:
4e:51:29:f2:48:f9:76:3e:b1:29:4c:4e:29:7a:86:f2:53:6f:
55:9d:c5:a4:0b:00:be:fa:97:10:57:a7:ce:2b:e8:89:ef:8c:
a1:77:ca:b9:10:0e:43:76:ab:44:6d:90:b4:74:ec:c9:83:b5:
71:f1:ed:96:f7:3d:a4:64:5f:a1:6d:0b:8c:1d:bf:ae:37:3c:
d6:dd:3a:98:40:95:84:08:7e:7f:a9:81:7e:c4:90:a7:3c:d4:
93:03:9a:c8:d0:fc:72:02:d1:59:82:50:29:27:b7:c5:6f:c2:
95:91:24:8c:62:a0:f8:82:15:46:a1:8c:a1:c5:38:8e:8e:2d:
8b:bb:8f:e9:fa:ad:53:6e:fc:77:ad:37:fa:53:ae:ea:f2:98:
72:f1:5f:ae:e2:cd:2b:bc:5c:b8:b6:54:42:4a:f5:ec:67:6c:
e4:37:b3:b7
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYMhn8r/eO84clkCMrVUytdgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MTE4Njg3ZmRkNmZmODBmYjA5OGE5ZWVlZjA2ZGUzNzdm
ODVkNmUwHhcNMjIwOTA5MDk0MTAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OWY3YjQyOTM3ZjNjY2I0ZTg4MjQ3ZmYxMTk1NjY1OTU2OTM1NjFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhwziriioOskNlmRVUmGOudiChhem
jrV4TqA/JoJwQONHUPxie5neRXuctm7IpqvAJdEoOTRMt9c/VqqdwSZIdL/Dlrzz
VtWtdjr3gtSszoxiD5yqNSam1FAXrd0JCkWYzoATeqCbzIVTgHI/yaYNbG2QEZCX
g/4mVBIPHf4e7HBA7z0oWcCtugvJ8zRmyKykngPs1TKfYhPpqWNwdlUM80S9V6mb
6+1QqLE+tYmvD1WDeh3M8xqyGAFb8XMVv1+KTjcWCVMTIpWkuLI2YybElS/9RXyu
OLltckNOXrB9qttjyMP+Fzv4wOshaovGQ3R0qme1cH8RNGTdlINvxQDLSQIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFJn3tCk388y06IJH/xGVZllWk1YeMB8GA1UdIwQY
MBaAFJgRhof91v+A+wmKnu7wbeN3+F1uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUJHR2hfM1dfNEQ3Q1lxZTd2QnQ0M2Y0WFc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy81OTA4YTktMGMwZi00MGFiLWJmZDYt
NjlhZjBhNmU5ODliLzEvbWZlMEtUZnp6TFRvZ2tmX0VaVm1XVmFUVmg0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy81OTA4YTktMGMwZi00MGFiLWJmZDYtNjlhZjBhNmU5ODli
LzEvbUJHR2hfM1dfNEQ3Q1lxZTd2QnQ0M2Y0WFc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAk/swDQYJ
KoZIhvcNAQELBQADggEBAF7rgHkpq4qtVMiFHTsrLO0LQApUxa7tfoFakfaCS8o9
iGDjlwKvam/C8bg4tooWE+u+TlsURtMJMl2/Yb3BSd0QBbFWE+2U91MMfORv9yD6
n3KB1VPPsi8n2k5RKfJI+XY+sSlMTil6hvJTb1WdxaQLAL76lxBXp84r6InvjKF3
yrkQDkN2q0RtkLR07MmDtXHx7Zb3PaRkX6FtC4wdv643PNbdOphAlYQIfn+pgX7E
kKc81JMDmsjQ/HIC0VmCUCknt8VvwpWRJIxioPiCFUahjKHFOI6OLYu7j+n6rVNu
/HetN/pTrurymHLxX67izSu8XLi2VEJK9exnbOQ3s7c=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:18 2025 by rpki-client