Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/MqOtrn8AVzdRLwL4d4YHKIqAgzw.roa
File: MqOtrn8AVzdRLwL4d4YHKIqAgzw.roa (raw, json)
Hash identifier: godZkUgf+f2JwKgqIPVP6pFpMvo3PZSmnq5Qmc9FB1M=
Subject key identifier: 32:A3:AD:AE:7F:00:57:37:51:2F:02:F8:77:86:07:28:8A:80:83:3C
Certificate issuer: /CN=c6d11b64ffe18efa42f43a6c765639dee38d027e
Certificate serial: 01856FC2788C03904DD12A0ED0B9A3699666
Authority key identifier: C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/MqOtrn8AVzdRLwL4d4YHKIqAgzw.roa
Signing time: Sun 01 Jan 2023 23:54:53 +0000
ROA not before: Sun 01 Jan 2023 23:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 193.135.254.0/24 maxlen: 24
193.73.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:78:8c:03:90:4d:d1:2a:0e:d0:b9:a3:69:96:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6d11b64ffe18efa42f43a6c765639dee38d027e
Validity
Not Before: Jan 1 23:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32a3adae7f005737512f02f8778607288a80833c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:68:0d:50:45:af:53:01:58:a6:c1:79:cc:f5:
f0:8e:87:e6:b3:58:97:18:dd:85:0c:e3:d8:5f:4e:
82:d0:68:96:73:29:37:33:2b:7d:12:20:d3:25:f7:
8e:80:99:b9:92:18:ba:1a:49:98:a0:93:1c:e2:f1:
1b:f8:fc:3d:f5:8a:84:cf:18:ed:f7:f5:64:96:fa:
9f:6a:0f:77:ab:7b:7a:04:3a:65:c2:7b:41:3c:fd:
09:55:a5:f1:b4:14:35:77:08:72:c7:38:84:c5:fd:
63:e0:8f:6a:ed:f4:bc:17:f7:fc:16:1c:6c:58:75:
a4:fe:a2:45:68:c7:af:e0:0f:79:c9:70:d1:2f:71:
90:31:2a:66:a1:64:37:e4:ad:86:4c:11:1b:a7:b5:
de:32:12:9d:4a:0a:3b:be:42:b5:66:ee:5b:24:de:
6b:3f:20:47:30:bc:b6:16:01:32:06:47:4d:17:3b:
e2:93:6e:a6:96:e2:3b:e0:1c:47:b9:e2:a8:d8:e6:
87:b1:3d:ba:ff:c5:dc:6c:cf:ce:0d:16:04:59:9f:
a9:27:b2:c4:f4:72:74:48:a5:8d:bb:13:a1:b9:c1:
b7:f5:c2:56:09:20:09:08:15:e7:53:3e:20:2b:3a:
8e:63:63:bc:3d:3d:02:47:5e:7e:e6:3b:f6:0f:57:
62:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A3:AD:AE:7F:00:57:37:51:2F:02:F8:77:86:07:28:8A:80:83:3C
X509v3 Authority Key Identifier:
keyid:C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/MqOtrn8AVzdRLwL4d4YHKIqAgzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.73.113.0/24
193.135.254.0/24
Signature Algorithm: sha256WithRSAEncryption
da:a3:81:6b:67:d9:ae:08:8a:9f:e0:eb:69:6f:3f:5f:6d:26:
b3:d6:b1:1d:4e:03:e7:4a:a0:42:c5:cf:bd:7d:c9:46:74:91:
ab:1e:d3:13:e4:26:53:66:8b:d6:e5:1c:a1:a1:12:4d:bd:8c:
22:4d:79:5f:f7:38:8d:5a:97:7e:89:9e:e5:f9:fd:8c:17:61:
06:ff:68:a1:52:4f:13:88:ba:de:58:99:93:32:18:ed:6c:a5:
0c:8a:64:10:2b:a9:65:fa:b6:69:99:09:29:34:0e:b6:c7:78:
84:5d:56:d9:e4:fc:8c:10:5f:50:81:b1:62:1f:63:4d:1a:36:
e4:80:6a:4d:de:f7:bf:24:5b:5e:2c:ee:9a:2a:bf:d8:fe:18:
67:2e:a9:25:1a:0c:28:15:07:d5:a9:ec:8f:ee:8e:ec:00:c8:
cb:43:74:28:c9:d6:b9:37:89:eb:64:c0:04:26:92:0c:1e:87:
71:9c:98:a7:05:ac:97:33:2c:fc:50:55:36:6b:bb:8e:53:4c:
ac:04:cf:cc:bf:f9:0b:e9:13:7f:42:a0:69:ed:37:2a:d1:06:
8b:8f:25:72:1d:4a:67:e2:17:fe:55:18:b3:e7:f6:a7:37:96:
9b:74:f4:4c:80:08:ec:9f:54:1e:cc:fd:b0:16:81:b6:98:02:
19:92:b6:64
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVvwniMA5BN0SoO0LmjaZZmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2ZDExYjY0ZmZlMThlZmE0MmY0M2E2Yzc2NTYzOWRlZTM4
ZDAyN2UwHhcNMjMwMTAxMjM1NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMmEzYWRhZTdmMDA1NzM3NTEyZjAyZjg3Nzg2MDcyODhhODA4MzNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp2gNUEWvUwFYpsF5zPXwjofms1iX
GN2FDOPYX06C0GiWcyk3Myt9EiDTJfeOgJm5khi6GkmYoJMc4vEb+Pw99YqEzxjt
9/Vklvqfag93q3t6BDplwntBPP0JVaXxtBQ1dwhyxziExf1j4I9q7fS8F/f8Fhxs
WHWk/qJFaMev4A95yXDRL3GQMSpmoWQ35K2GTBEbp7XeMhKdSgo7vkK1Zu5bJN5r
PyBHMLy2FgEyBkdNFzvik26mluI74BxHueKo2OaHsT26/8XcbM/ODRYEWZ+pJ7LE
9HJ0SKWNuxOhucG39cJWCSAJCBXnUz4gKzqOY2O8PT0CR15+5jv2D1diMQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFDKjra5/AFc3US8C+HeGByiKgIM8MB8GA1UdIwQY
MBaAFMbRG2T/4Y76QvQ6bHZWOd7jjQJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHRFYlpQX2hqdnBDOURwc2RsWTUzdU9OQW40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy80Y2FjNmItOGUwNS00NDhhLTgzZjct
NjgzNTg1MjE1OGQ4LzEvTXFPdHJuOEFWemRSTHdMNGQ0WUhLSXFBZ3p3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy80Y2FjNmItOGUwNS00NDhhLTgzZjctNjgzNTg1MjE1OGQ4
LzEveHRFYlpQX2hqdnBDOURwc2RsWTUzdU9OQW40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwUlxAwQA
wYf+MA0GCSqGSIb3DQEBCwUAA4IBAQDao4FrZ9muCIqf4Otpbz9fbSaz1rEdTgPn
SqBCxc+9fclGdJGrHtMT5CZTZovW5RyhoRJNvYwiTXlf9ziNWpd+iZ7l+f2MF2EG
/2ihUk8TiLreWJmTMhjtbKUMimQQK6ll+rZpmQkpNA62x3iEXVbZ5PyMEF9QgbFi
H2NNGjbkgGpN3ve/JFteLO6aKr/Y/hhnLqklGgwoFQfVqeyP7o7sAMjLQ3Qoyda5
N4nrZMAEJpIMHodxnJinBayXMyz8UFU2a7uOU0ysBM/Mv/kL6RN/QqBp7Tcq0QaL
jyVyHUpn4hf+VRiz5/anN5abdPRMgAjsn1QezP2wFoG2mAIZkrZk
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:47 2025 by rpki-client