Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/MCjnK7A1m7DPd1OJO8Xg_fCecUI.roa
File: MCjnK7A1m7DPd1OJO8Xg_fCecUI.roa (raw, json)
Hash identifier: pUdq80c55B/C0fBuFKpSM0g9QgkbvaxquobuvFbLdus=
Subject key identifier: 30:28:E7:2B:B0:35:9B:B0:CF:77:53:89:3B:C5:E0:FD:F0:9E:71:42
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A64B3BC51C27A7E5C0EE740A180670D
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/MCjnK7A1m7DPd1OJO8Xg_fCecUI.roa
Signing time: Wed 20 Jul 2022 06:56:23 +0000
ROA not before: Wed 20 Jul 2022 06:56:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1901
IP address blocks: 194.152.160.0/19 maxlen: 19
195.230.32.0/19 maxlen: 19
213.240.64.0/18 maxlen: 18
212.60.160.0/19 maxlen: 19
195.64.0.0/19 maxlen: 19
194.96.0.0/16 maxlen: 16
213.157.128.0/19 maxlen: 19
193.80.0.0/15 maxlen: 15
194.166.0.0/16 maxlen: 16
195.170.64.0/19 maxlen: 19
212.16.32.0/19 maxlen: 19
194.118.0.0/16 maxlen: 16
212.124.128.0/19 maxlen: 19
62.116.32.0/19 maxlen: 19
193.154.0.0/16 maxlen: 16
212.88.0.0/19 maxlen: 19
212.197.128.0/18 maxlen: 18
193.83.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:64:b3:bc:51:c2:7a:7e:5c:0e:e7:40:a1:80:67:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 06:56:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3028e72bb0359bb0cf7753893bc5e0fdf09e7142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:64:df:f3:2a:5c:97:14:e4:dd:63:89:d1:bc:
03:1a:6c:9f:4b:8c:13:7d:60:7c:42:0a:c3:3d:26:
ea:c7:e3:96:43:82:3b:28:b7:c8:84:ea:31:ec:0d:
3b:f4:99:24:6e:33:cf:dc:65:2d:68:21:73:fa:c4:
10:65:48:92:2a:b1:86:de:7e:68:6d:68:40:42:3b:
19:ad:96:05:01:d0:b7:86:23:4a:11:3c:6c:2d:48:
f7:ea:9b:bc:ac:32:56:77:2b:bf:a5:47:c3:c1:65:
53:91:b0:19:42:c3:87:8b:6e:1b:82:b3:ce:fb:1d:
60:6e:9d:1e:de:b4:31:df:6d:97:c1:c5:a5:51:fe:
ea:93:97:75:2d:61:4e:e8:0a:36:90:8c:87:db:32:
08:0d:d1:d6:f3:7c:e6:e5:df:72:79:c0:12:fa:b0:
c1:26:32:dc:8f:81:f3:0f:23:74:ee:64:d3:fa:db:
ab:73:9e:a8:3d:9d:45:d0:9b:1c:f4:c5:01:d4:ea:
79:58:66:18:db:ad:f3:f7:d3:99:6e:dd:e1:35:91:
64:78:4f:73:89:c7:42:c8:6a:36:b8:8d:b0:62:25:
97:40:a1:16:81:3b:39:c7:5b:eb:31:b4:2e:3b:bf:
49:07:88:0d:46:82:87:ae:a5:50:2b:94:29:5f:9a:
f1:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:28:E7:2B:B0:35:9B:B0:CF:77:53:89:3B:C5:E0:FD:F0:9E:71:42
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/MCjnK7A1m7DPd1OJO8Xg_fCecUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.116.32.0/19
193.80.0.0/15
193.83.0.0/16
193.154.0.0/16
194.96.0.0/16
194.118.0.0/16
194.152.160.0/19
194.166.0.0/16
195.64.0.0/19
195.170.64.0/19
195.230.32.0/19
212.16.32.0/19
212.60.160.0/19
212.88.0.0/19
212.124.128.0/19
212.197.128.0/18
213.157.128.0/19
213.240.64.0/18
Signature Algorithm: sha256WithRSAEncryption
7a:1f:2f:ef:5b:d0:89:ec:8f:c3:62:dd:c2:74:4d:03:51:f5:
42:a3:b1:ee:95:ef:9a:1a:1f:a9:fe:b0:25:a3:03:0b:e8:f0:
b6:8f:97:c6:cb:36:28:6f:d4:ba:ad:a0:54:23:ff:15:b1:e2:
eb:1f:14:74:d8:c4:a5:1c:63:c6:58:9a:62:59:12:fa:65:07:
62:7e:fa:54:8c:d5:e0:26:a7:98:91:ab:d1:07:fc:12:01:0f:
df:d0:21:04:bd:35:45:8d:1f:ea:ce:f8:da:42:eb:7c:61:4d:
43:21:48:6c:35:92:18:c5:ce:d6:e7:fa:71:12:0d:b1:10:af:
2e:51:d3:bb:f4:83:d1:3d:ad:30:09:08:1d:b4:40:9a:b8:57:
d4:72:2e:9f:ed:3b:d7:32:7b:cb:59:33:ce:f3:57:24:05:65:
44:79:fa:e1:24:c2:45:86:d0:fd:14:89:23:c8:e4:02:71:67:
6a:5e:ff:b1:67:fc:29:f5:cc:42:35:f6:2e:13:ee:41:b1:06:
f0:af:68:5d:59:bd:3a:98:ae:f7:db:5c:8f:39:5f:6e:48:79:
17:91:27:fa:9f:aa:b1:1f:3b:7b:fe:39:03:b5:08:b8:94:4a:
11:3a:58:3c:ff:2b:ed:85:0e:27:e4:23:8a:e4:57:76:55:81:
e7:24:29:69
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAYIaZLO8UcJ6flwO50ChgGcNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MGM1ODlhNGYyMmE5Y2EyZmY5OWI0YzQ4ZjhiZGY0OTI4
NzE3MjUwHhcNMjIwNzIwMDY1NjIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMDI4ZTcyYmIwMzU5YmIwY2Y3NzUzODkzYmM1ZTBmZGYwOWU3MTQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhGTf8ypclxTk3WOJ0bwDGmyfS4wT
fWB8QgrDPSbqx+OWQ4I7KLfIhOox7A079JkkbjPP3GUtaCFz+sQQZUiSKrGG3n5o
bWhAQjsZrZYFAdC3hiNKETxsLUj36pu8rDJWdyu/pUfDwWVTkbAZQsOHi24bgrPO
+x1gbp0e3rQx322XwcWlUf7qk5d1LWFO6Ao2kIyH2zIIDdHW83zm5d9yecAS+rDB
JjLcj4HzDyN07mTT+turc56oPZ1F0Jsc9MUB1Op5WGYY263z99OZbt3hNZFkeE9z
icdCyGo2uI2wYiWXQKEWgTs5x1vrMbQuO79JB4gNRoKHrqVQK5QpX5rxTQIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFDAo5yuwNZuwz3dTiTvF4P3wnnFCMB8GA1UdIwQY
MBaAFIcMWJpPIqnKL/mbTEj4vfSShxclMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHd4WW1rOGlxY292LVp0TVNQaTk5SktIRnlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mNTA1YjUtMGU0Ni00YjNmLWJmMWIt
ODQ5ZDNhNmI5YzJkLzEvTUNqbks3QTFtN0RQZDFPSk84WGdfZkNlY1VJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC9mNTA1YjUtMGU0Ni00YjNmLWJmMWItODQ5ZDNhNmI5YzJk
LzEvaHd4WW1rOGlxY292LVp0TVNQaTk5SktIRnlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBsBAIAATBmAwQFPnQgAwMB
wVADAwDBUwMDAMGaAwMAwmADAwDCdgMEBcKYoAMDAMKmAwQFw0AAAwQFw6pAAwQF
w+YgAwQF1BAgAwQF1DygAwQF1FgAAwQF1HyAAwQG1MWAAwQF1Z2AAwQG1fBAMA0G
CSqGSIb3DQEBCwUAA4IBAQB6Hy/vW9CJ7I/DYt3CdE0DUfVCo7Hule+aGh+p/rAl
owML6PC2j5fGyzYob9S6raBUI/8VseLrHxR02MSlHGPGWJpiWRL6ZQdifvpUjNXg
JqeYkavRB/wSAQ/f0CEEvTVFjR/qzvjaQut8YU1DIUhsNZIYxc7W5/pxEg2xEK8u
UdO79IPRPa0wCQgdtECauFfUci6f7TvXMnvLWTPO81ckBWVEefrhJMJFhtD9FIkj
yOQCcWdqXv+xZ/wp9cxCNfYuE+5BsQbwr2hdWb06mK7321yPOV9uSHkXkSf6n6qx
Hzt7/jkDtQi4lEoROlg8/yvthQ4n5COK5Fd2VYHnJClp
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:38 2024 by rpki-client on console-fra.rpki-client.org