Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/MJRDzZ0ExHs23v5WcJKN6SXziys.roa
File: MJRDzZ0ExHs23v5WcJKN6SXziys.roa (raw, json)
Hash identifier: /19jXNnNzssUyD1GI03fXBBh+oSTh6aMeGOhwfBz1UU=
Subject key identifier: 30:94:43:CD:9D:04:C4:7B:36:DE:FE:56:70:92:8D:E9:25:F3:8B:2B
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 0184327BCAACA49E608383B136E8510B40E8
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/MJRDzZ0ExHs23v5WcJKN6SXziys.roa
Signing time: Tue 01 Nov 2022 09:18:04 +0000
ROA not before: Tue 01 Nov 2022 09:18:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33915
IP address blocks: 2a07:3502:11a0::/46 maxlen: 46
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:32:7b:ca:ac:a4:9e:60:83:83:b1:36:e8:51:0b:40:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Nov 1 09:18:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=309443cd9d04c47b36defe5670928de925f38b2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0f:a5:04:e3:7d:ba:9b:93:85:bd:13:81:31:
8b:51:c5:83:e9:86:aa:36:54:21:bf:a3:e0:a6:e0:
86:ee:e1:c3:0b:0c:0e:64:24:e0:c5:72:8b:f3:12:
96:5e:c1:d6:aa:73:c2:70:86:86:04:db:70:b1:d7:
e2:f3:38:d2:cc:81:2c:ab:c1:db:5a:24:4e:c8:3b:
e7:f5:d2:26:46:76:d6:7c:61:92:35:fd:4d:79:4d:
ee:65:b3:14:03:8f:bd:7a:2d:fd:f5:bf:82:02:ef:
80:23:d1:cc:60:df:be:60:1d:6d:08:82:ef:60:55:
ac:57:cc:6a:e7:1b:f6:7d:cc:df:90:e9:38:1a:24:
16:ea:8b:d9:40:18:29:10:01:f2:63:72:ab:08:f7:
ae:9d:7b:3e:a1:54:f6:53:b3:31:8b:1a:86:66:8f:
65:da:f3:76:93:da:5e:38:d4:41:34:b3:75:0c:a3:
64:6c:81:20:e6:75:fb:77:60:7f:73:f4:d1:df:24:
1b:04:53:c7:1a:dc:d8:ac:e0:c8:a9:f5:90:9a:31:
0a:5a:7b:18:ec:92:a8:9f:88:ef:f1:83:b8:9f:71:
cc:af:b6:d6:97:f7:9d:b5:ff:74:f1:bc:88:27:af:
54:19:cd:cf:e6:9b:fa:4f:16:0f:13:19:96:ea:d2:
1b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:94:43:CD:9D:04:C4:7B:36:DE:FE:56:70:92:8D:E9:25:F3:8B:2B
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/MJRDzZ0ExHs23v5WcJKN6SXziys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:3502:11a0::/46
Signature Algorithm: sha256WithRSAEncryption
92:ec:15:e9:14:85:8d:27:d0:33:3e:26:cb:0b:16:26:f6:43:
79:60:52:63:ef:79:66:a8:b8:dd:aa:16:90:63:ac:ed:b2:c7:
7d:96:d6:9e:21:c1:84:2c:af:a4:a9:86:e1:70:c4:aa:ab:c4:
11:26:75:39:3d:01:1a:af:4a:b6:d3:bf:88:44:f8:a0:51:d8:
5f:f8:b5:2a:d8:03:f2:20:7b:3e:7c:1e:cf:c4:c1:f4:ad:98:
67:b8:87:6c:f9:c3:78:dd:f1:01:fa:32:0d:91:30:b6:77:03:
46:cf:ad:f2:7b:52:43:39:e4:c7:66:d5:fb:61:0c:73:50:d7:
06:99:d4:b9:ac:63:06:8c:fe:29:af:7d:a4:da:05:59:84:f6:
8f:1e:89:79:04:5f:05:c3:4d:aa:6e:07:c9:c9:e0:4c:a0:03:
0c:66:ea:78:9c:6a:be:3b:71:63:ba:b1:12:80:10:88:d1:98:
34:83:da:8c:fc:68:19:bb:72:77:7b:00:6d:fe:7f:e7:24:aa:
52:ea:ec:1c:f8:25:d0:74:b8:b4:55:25:a7:91:b4:26:3c:a6:
ce:ed:62:ea:54:e9:11:12:d7:eb:5e:21:97:d4:82:ab:1a:3a:
c0:7e:7b:d1:b9:7a:16:5e:9e:82:c9:32:d3:5f:40:68:0f:a7:
a8:78:2b:2a
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYQye8qspJ5gg4OxNuhRC0DoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwNWQyOGQxNjYyNmJjNWRjYWJmMmU5MTU0MzU3ODJiOTZl
MTQwNzEwHhcNMjIxMTAxMDkxODA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMDk0NDNjZDlkMDRjNDdiMzZkZWZlNTY3MDkyOGRlOTI1ZjM4YjJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2A+lBON9upuThb0TgTGLUcWD6Yaq
NlQhv6PgpuCG7uHDCwwOZCTgxXKL8xKWXsHWqnPCcIaGBNtwsdfi8zjSzIEsq8Hb
WiROyDvn9dImRnbWfGGSNf1NeU3uZbMUA4+9ei399b+CAu+AI9HMYN++YB1tCILv
YFWsV8xq5xv2fczfkOk4GiQW6ovZQBgpEAHyY3KrCPeunXs+oVT2U7MxixqGZo9l
2vN2k9peONRBNLN1DKNkbIEg5nX7d2B/c/TR3yQbBFPHGtzYrODIqfWQmjEKWnsY
7JKon4jv8YO4n3HMr7bWl/edtf908byIJ69UGc3P5pv6TxYPExmW6tIbLwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDCUQ82dBMR7Nt7+VnCSjekl84srMB8GA1UdIwQY
MBaAFLBdKNFmJrxdyr8ukVQ1eCuW4UBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEt
YWQ1NzU1MjJiMzY1LzEvTUpSRHpaMEV4SHMyM3Y1V2NKS042U1h6aXlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEtYWQ1NzU1MjJiMzY1
LzEvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcCKgc1AhGg
MA0GCSqGSIb3DQEBCwUAA4IBAQCS7BXpFIWNJ9AzPibLCxYm9kN5YFJj73lmqLjd
qhaQY6ztssd9ltaeIcGELK+kqYbhcMSqq8QRJnU5PQEar0q207+IRPigUdhf+LUq
2APyIHs+fB7PxMH0rZhnuIds+cN43fEB+jINkTC2dwNGz63ye1JDOeTHZtX7YQxz
UNcGmdS5rGMGjP4pr32k2gVZhPaPHol5BF8Fw02qbgfJyeBMoAMMZup4nGq+O3Fj
urESgBCI0Zg0g9qM/GgZu3J3ewBt/n/nJKpS6uwc+CXQdLi0VSWnkbQmPKbO7WLq
VOkREtfrXiGX1IKrGjrAfnvRuXoWXp6CyTLTX0BoD6eoeCsq
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:54 2024 by rpki-client on console-fra.rpki-client.org