Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d2b0aa-2636-4eec-a1e3-714d1958b77b/1/MSQO7ZFyjXWvbCyfI8-ZwMyGa-Y.roa
File: MSQO7ZFyjXWvbCyfI8-ZwMyGa-Y.roa (raw, json)
Hash identifier: 0UThZOugOLMYQz7SEIuGW2fAbtjFF2Rqzp5lke26NJE=
Subject key identifier: 31:24:0E:ED:91:72:8D:75:AF:6C:2C:9F:23:CF:99:C0:CC:86:6B:E6
Certificate issuer: /CN=57711f20883a62bc06391ba7b2582ce72b3fe91c
Certificate serial: 02C4DA5D
Authority key identifier: 57:71:1F:20:88:3A:62:BC:06:39:1B:A7:B2:58:2C:E7:2B:3F:E9:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V3EfIIg6YrwGORunslgs5ys_6Rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d2b0aa-2636-4eec-a1e3-714d1958b77b/1/MSQO7ZFyjXWvbCyfI8-ZwMyGa-Y.roa
Signing time: Sat 01 Jan 2022 05:53:06 +0000
ROA not before: Sat 01 Jan 2022 05:53:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205718
IP address blocks: 185.210.20.0/22 maxlen: 22
2a09:dd40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46455389 (0x2c4da5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57711f20883a62bc06391ba7b2582ce72b3fe91c
Validity
Not Before: Jan 1 05:53:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31240eed91728d75af6c2c9f23cf99c0cc866be6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2e:9b:e6:53:97:5a:49:02:5b:f6:52:9f:75:
67:e8:3d:17:b6:b7:97:f4:18:9d:4a:a9:c3:be:d3:
26:7b:9a:49:d5:bd:d4:9b:c9:14:e2:2d:24:15:df:
16:56:1e:ca:60:51:82:49:56:9c:66:d7:fa:eb:5f:
9c:6a:fa:78:9c:82:3e:a7:63:a3:d9:63:04:01:30:
f4:e6:dc:36:e3:bf:8e:65:c3:ff:69:d7:8c:b5:a9:
3b:3a:63:e5:27:eb:ed:98:b2:a7:c2:26:9c:51:c0:
51:3b:03:0f:38:f8:22:61:d3:a4:1d:8d:b7:5c:f6:
fc:55:61:e7:5d:71:7d:ba:24:49:48:c2:c6:0d:e0:
a7:bd:c3:d8:fc:c3:ce:9c:4c:fd:09:b2:4a:98:b7:
92:cb:82:1f:c4:e1:1b:b0:80:d8:e6:a9:e6:d8:77:
74:bc:78:e5:10:35:e5:96:02:dd:51:2c:8c:7e:e2:
2e:63:a6:84:40:7b:44:a5:b7:29:36:47:71:98:ae:
92:31:21:bb:4e:b5:db:f2:c0:ad:40:fc:ae:9c:bf:
8f:14:61:5e:ce:04:5a:26:6f:76:77:7a:68:14:c8:
05:49:d5:f1:ff:2d:7b:37:ea:12:21:53:2c:13:7d:
5c:8f:65:09:b9:73:99:4e:1c:c0:6d:c1:2a:e3:02:
1a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:24:0E:ED:91:72:8D:75:AF:6C:2C:9F:23:CF:99:C0:CC:86:6B:E6
X509v3 Authority Key Identifier:
keyid:57:71:1F:20:88:3A:62:BC:06:39:1B:A7:B2:58:2C:E7:2B:3F:E9:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V3EfIIg6YrwGORunslgs5ys_6Rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d2b0aa-2636-4eec-a1e3-714d1958b77b/1/MSQO7ZFyjXWvbCyfI8-ZwMyGa-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d2b0aa-2636-4eec-a1e3-714d1958b77b/1/V3EfIIg6YrwGORunslgs5ys_6Rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.20.0/22
IPv6:
2a09:dd40::/32
Signature Algorithm: sha256WithRSAEncryption
85:20:ba:2f:7d:93:fd:3d:3a:c4:77:9b:fe:42:cc:ec:26:c0:
08:85:f6:21:2d:48:04:b2:f1:11:94:34:51:7a:3b:d1:cd:2b:
0b:3b:dc:b0:f6:c9:3d:46:21:69:ae:10:de:03:6e:ae:ba:de:
d8:b8:d2:95:06:1b:ac:43:f4:9a:06:bc:29:a9:eb:66:b7:5e:
c8:5a:5c:6c:58:58:58:57:8b:be:e8:e6:27:0d:11:f4:a0:13:
86:a5:fc:c4:b0:63:8c:b2:49:43:76:9b:7f:e8:b0:c3:4c:f4:
64:3d:4f:87:e2:e4:45:7c:32:56:f9:f5:19:58:88:9e:95:75:
bd:b5:cc:0b:fa:6f:45:ca:bf:47:5d:09:96:eb:ca:3c:7b:ef:
16:0b:fd:e6:ad:d2:94:7f:77:ff:bd:1f:81:c3:9e:01:4f:89:
6d:78:54:aa:6f:e0:e7:3c:51:25:7f:45:58:97:96:3e:a6:39:
7a:3b:7d:8c:a2:05:52:df:9f:df:ee:02:45:7c:aa:65:53:84:
78:fa:45:79:74:41:76:17:db:80:4c:14:30:16:15:4f:66:ae:
a8:96:8c:86:4b:bd:eb:4d:2f:9b:e5:fd:60:af:88:45:0f:13:
1f:74:53:93:11:7e:e6:e9:a7:42:f0:98:eb:c8:12:fc:33:4b:
73:67:ea:d7
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEAsTaXTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NzcxMWYyMDg4M2E2MmJjMDYzOTFiYTdiMjU4MmNlNzJiM2ZlOTFjMB4XDTIyMDEw
MTA1NTMwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzEyNDBlZWQ5MTcy
OGQ3NWFmNmMyYzlmMjNjZjk5YzBjYzg2NmJlNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK8um+ZTl1pJAlv2Up91Z+g9F7a3l/QYnUqpw77TJnuaSdW9
1JvJFOItJBXfFlYeymBRgklWnGbX+utfnGr6eJyCPqdjo9ljBAEw9ObcNuO/jmXD
/2nXjLWpOzpj5Sfr7Ziyp8ImnFHAUTsDDzj4ImHTpB2Nt1z2/FVh511xfbokSUjC
xg3gp73D2PzDzpxM/QmySpi3ksuCH8ThG7CA2Oap5th3dLx45RA15ZYC3VEsjH7i
LmOmhEB7RKW3KTZHcZiukjEhu0612/LArUD8rpy/jxRhXs4EWiZvdnd6aBTIBUnV
8f8tezfqEiFTLBN9XI9lCblzmU4cwG3BKuMCGlkCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQxJA7tkXKNda9sLJ8jz5nAzIZr5jAfBgNVHSMEGDAWgBRXcR8giDpivAY5
G6eyWCznKz/pHDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1YzRWZJSWc2WXJ3R09SdW5zbGdzNXlzXzZSdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvZDJiMGFhLTI2MzYtNGVlYy1hMWUzLTcxNGQxOTU4Yjc3Yi8x
L01TUU83WkZ5alhXdmJDeWZJOC1ad015R2EtWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
ZDJiMGFhLTI2MzYtNGVlYy1hMWUzLTcxNGQxOTU4Yjc3Yi8xL1YzRWZJSWc2WXJ3
R09SdW5zbGdzNXlzXzZSdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArnSFDANBAIAAjAHAwUAKgndQDAN
BgkqhkiG9w0BAQsFAAOCAQEAhSC6L32T/T06xHeb/kLM7CbACIX2IS1IBLLxEZQ0
UXo70c0rCzvcsPbJPUYhaa4Q3gNurrre2LjSlQYbrEP0mga8KanrZrdeyFpcbFhY
WFeLvujmJw0R9KAThqX8xLBjjLJJQ3abf+iww0z0ZD1Ph+LkRXwyVvn1GViInpV1
vbXMC/pvRcq/R10JluvKPHvvFgv95q3SlH93/70fgcOeAU+JbXhUqm/g5zxRJX9F
WJeWPqY5ejt9jKIFUt+f3+4CRXyqZVOEePpFeXRBdhfbgEwUMBYVT2auqJaMhku9
600vm+X9YK+IRQ8TH3RTkxF+5umnQvCY68gS/DNLc2fq1w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:53 2024 by rpki-client on console-ams.rpki-client.org