Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/MepKFBQF6Dolp_Mf_NQk-vkW2-o.roa
File: MepKFBQF6Dolp_Mf_NQk-vkW2-o.roa (raw, json)
Hash identifier: kPFxcSiA4DOgLGDOSbjecoaddxDIS8jWMSFt5WKO+C0=
Subject key identifier: 31:EA:4A:14:14:05:E8:3A:25:A7:F3:1F:FC:D4:24:FA:F9:16:DB:EA
Certificate issuer: /CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Certificate serial: 7AF341
Authority key identifier: A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/MepKFBQF6Dolp_Mf_NQk-vkW2-o.roa
Signing time: Wed 16 Feb 2022 14:52:43 +0000
ROA not before: Wed 16 Feb 2022 14:52:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210403
IP address blocks: 78.138.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8057665 (0x7af341)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Validity
Not Before: Feb 16 14:52:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31ea4a141405e83a25a7f31ffcd424faf916dbea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c8:d1:5f:86:ad:c9:57:62:5b:dc:86:a5:84:
27:aa:15:f7:69:fc:49:3e:1e:0b:15:0c:0b:c6:09:
b5:ed:5a:21:6d:50:55:7e:14:c7:76:a0:2a:a8:8f:
50:ce:0c:ca:64:05:0d:ec:ca:cc:fe:15:6c:e2:a9:
06:e8:3f:fe:81:03:3c:b7:d8:f2:f4:19:a0:c4:22:
9f:4c:8a:36:05:d6:ee:a8:1a:57:96:65:ea:3c:1f:
d7:1e:a4:9e:90:89:26:d2:ed:66:11:38:42:df:e3:
49:0d:35:47:db:0b:46:fc:ba:7c:42:21:93:6d:5c:
31:6f:b8:d8:22:33:ed:41:1e:4a:94:56:a6:a8:b1:
9f:8d:4e:38:59:0f:fb:4b:0c:07:b1:8b:cd:2a:1f:
c3:39:b0:1f:98:a2:43:e5:45:6c:1e:bc:e1:8d:38:
8a:6b:4d:49:da:96:a8:bc:69:b1:a0:91:3a:92:68:
79:97:63:ac:a5:72:22:b5:9b:fa:ee:85:c6:29:ed:
15:de:5e:02:6a:ef:62:e7:9d:4a:72:89:88:73:ad:
e8:cc:69:ff:b0:2c:74:3d:d1:a1:d1:b0:fc:e0:dc:
2d:ae:23:94:26:be:4a:d0:02:eb:23:38:37:53:c5:
6b:72:d8:e2:d1:81:00:22:6b:49:da:4f:25:d3:76:
69:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:EA:4A:14:14:05:E8:3A:25:A7:F3:1F:FC:D4:24:FA:F9:16:DB:EA
X509v3 Authority Key Identifier:
keyid:A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/MepKFBQF6Dolp_Mf_NQk-vkW2-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.138.45.0/24
Signature Algorithm: sha256WithRSAEncryption
24:aa:51:19:a9:7b:d4:f1:52:4c:6a:46:10:a1:c9:0d:65:d4:
0a:22:3e:ae:54:cf:f9:f7:ef:74:b7:f6:d4:17:cc:73:08:10:
88:b5:b3:e7:61:ad:fa:1f:c9:8c:a7:98:4f:30:f8:82:7c:75:
b9:cf:0c:e5:5d:2c:71:a8:b8:44:f9:27:e3:80:fa:c5:52:89:
fe:30:4d:29:a6:5e:ad:29:42:9c:3a:59:fc:e0:1e:f3:84:b9:
9a:d2:31:10:85:8c:22:e9:ea:a5:86:be:d7:b4:86:d2:8f:71:
ec:3f:4b:ea:b0:1f:84:39:53:63:07:9f:57:7a:61:60:85:6b:
85:be:47:57:dd:9e:0f:31:42:73:1f:2d:cf:40:85:82:0b:69:
49:f2:ce:22:a6:24:9a:00:38:87:5e:62:b6:99:1f:26:b9:ef:
2e:4a:db:cc:99:61:c9:4b:98:fe:f7:da:9c:c9:b8:28:ea:08:
f6:92:a4:03:1f:d4:30:d3:21:1b:b0:70:13:44:23:ce:d2:44:
7b:e0:e4:02:9f:73:8e:87:73:28:ac:ac:3a:45:13:03:c0:ed:
4f:98:a5:82:e0:55:ce:13:1e:4b:28:59:b6:85:3c:ba:15:97:
3b:4f:3c:92:1e:a9:3d:12:db:7f:ef:7a:bf:20:69:75:6b:99:
ef:c4:91:b1
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDevNBMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGEw
ZDMyMTZjY2NjODYzZWNhMGMzZGQxODk5NDFiMWI5ZWEzN2NhY2QwHhcNMjIwMjE2
MTQ1MjQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygzMWVhNGExNDE0MDVl
ODNhMjVhN2YzMWZmY2Q0MjRmYWY5MTZkYmVhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAx8jRX4atyVdiW9yGpYQnqhX3afxJPh4LFQwLxgm17VohbVBV
fhTHdqAqqI9QzgzKZAUN7MrM/hVs4qkG6D/+gQM8t9jy9BmgxCKfTIo2BdbuqBpX
lmXqPB/XHqSekIkm0u1mEThC3+NJDTVH2wtG/Lp8QiGTbVwxb7jYIjPtQR5KlFam
qLGfjU44WQ/7SwwHsYvNKh/DObAfmKJD5UVsHrzhjTiKa01J2paovGmxoJE6kmh5
l2OspXIitZv67oXGKe0V3l4Cau9i551KcomIc63ozGn/sCx0PdGh0bD84NwtriOU
Jr5K0ALrIzg3U8Vrctji0YEAImtJ2k8l03ZpOwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFDHqShQUBeg6JafzH/zUJPr5FtvqMB8GA1UdIwQYMBaAFKDTIWzMyGPsoMPd
GJlBsbnqN8rNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
b05NaGJNeklZLXlndzkwWW1VR3h1ZW8zeXMwLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iNC9hNWIyZDEtY2JhMC00YTU0LWI0MzgtMGQ0NGMwNGE4NDQ4LzEv
TWVwS0ZCUUY2RG9scF9NZl9OUWstdmtXMi1vLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9h
NWIyZDEtY2JhMC00YTU0LWI0MzgtMGQ0NGMwNGE4NDQ4LzEvb05NaGJNeklZLXln
dzkwWW1VR3h1ZW8zeXMwLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATootMA0GCSqGSIb3DQEBCwUAA4IB
AQAkqlEZqXvU8VJMakYQockNZdQKIj6uVM/59+90t/bUF8xzCBCItbPnYa36H8mM
p5hPMPiCfHW5zwzlXSxxqLhE+SfjgPrFUon+ME0ppl6tKUKcOln84B7zhLma0jEQ
hYwi6eqlhr7XtIbSj3HsP0vqsB+EOVNjB59XemFghWuFvkdX3Z4PMUJzHy3PQIWC
C2lJ8s4ipiSaADiHXmK2mR8mue8uStvMmWHJS5j+99qcybgo6gj2kqQDH9Qw0yEb
sHATRCPO0kR74OQCn3OOh3MorKw6RRMDwO1PmKWC4FXOEx5LKFm2hTy6FZc7TzyS
Hqk9Ett/73q/IGl1a5nvxJGx
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:41 2024 by rpki-client on console-ams.rpki-client.org