Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/9ff602-b0bd-4c3f-af94-2fc34ad9dd47/1/Mc4C6qMWFexIAkt6WEYcy_MsGZo.roa
File: Mc4C6qMWFexIAkt6WEYcy_MsGZo.roa (raw, json)
Hash identifier: nYf6NlVrdBYr8gLYTt+Wnc4Gf57lmRTXeB0pkX8TesU=
Subject key identifier: 31:CE:02:EA:A3:16:15:EC:48:02:4B:7A:58:46:1C:CB:F3:2C:19:9A
Certificate issuer: /CN=e6502200a6e63f76397adb94dfd834c116809b9f
Certificate serial: 01832289DA4A53528D599B5AF5A60BB8A48C
Authority key identifier: E6:50:22:00:A6:E6:3F:76:39:7A:DB:94:DF:D8:34:C1:16:80:9B:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5lAiAKbmP3Y5etuU39g0wRaAm58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/9ff602-b0bd-4c3f-af94-2fc34ad9dd47/1/Mc4C6qMWFexIAkt6WEYcy_MsGZo.roa
Signing time: Fri 09 Sep 2022 13:56:43 +0000
ROA not before: Fri 09 Sep 2022 13:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48067
IP address blocks: 195.238.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:22:89:da:4a:53:52:8d:59:9b:5a:f5:a6:0b:b8:a4:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6502200a6e63f76397adb94dfd834c116809b9f
Validity
Not Before: Sep 9 13:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31ce02eaa31615ec48024b7a58461ccbf32c199a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b8:4b:11:8a:8b:01:41:da:d2:17:58:e9:90:
a1:5b:50:45:1b:e5:ef:17:5d:51:ed:9c:39:98:93:
03:53:58:f0:0d:bf:62:1e:7e:ce:74:43:94:2e:5b:
22:0f:0a:17:da:b7:6f:74:eb:9d:68:b4:5b:dc:f9:
f5:39:78:1f:dc:ab:63:ef:e2:dc:2f:5e:41:51:9e:
3b:49:6a:5f:65:3a:09:a9:7a:e7:bd:5d:ca:da:af:
79:b1:5d:48:b3:22:50:eb:5a:14:28:23:48:fe:9c:
a4:b4:48:d1:31:2d:c9:f3:b9:35:c4:8e:44:2f:5f:
44:b5:b9:8f:af:f2:6b:06:1d:0e:73:21:7b:d8:60:
fd:82:b7:cc:ef:f6:36:8a:86:6c:40:5c:ea:a5:5f:
5d:15:0a:a0:f5:a6:65:4a:f9:67:78:02:37:17:eb:
71:91:d5:18:0b:52:f8:0f:a5:08:39:a1:48:52:2c:
c5:35:ee:53:57:44:94:31:3e:7a:2d:db:f1:4c:42:
32:b5:e0:06:2d:0f:9b:01:a0:a2:8f:4b:6d:ff:32:
1c:69:13:b8:24:0a:52:f2:80:38:79:1d:d6:a6:8b:
5a:2f:8d:3f:79:8a:d1:06:06:d0:b5:46:43:8b:f0:
d5:a4:b9:ff:16:08:b5:a3:37:bc:75:84:cf:99:82:
61:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:CE:02:EA:A3:16:15:EC:48:02:4B:7A:58:46:1C:CB:F3:2C:19:9A
X509v3 Authority Key Identifier:
keyid:E6:50:22:00:A6:E6:3F:76:39:7A:DB:94:DF:D8:34:C1:16:80:9B:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5lAiAKbmP3Y5etuU39g0wRaAm58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/9ff602-b0bd-4c3f-af94-2fc34ad9dd47/1/Mc4C6qMWFexIAkt6WEYcy_MsGZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/9ff602-b0bd-4c3f-af94-2fc34ad9dd47/1/5lAiAKbmP3Y5etuU39g0wRaAm58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.238.90.0/24
Signature Algorithm: sha256WithRSAEncryption
07:d9:cd:4b:0f:dd:f6:dc:13:53:1d:4b:27:f1:29:33:38:29:
1c:82:92:ca:f9:da:20:31:05:2f:89:68:f9:f2:9d:2c:a2:7c:
c8:74:92:07:9e:5f:4e:19:ba:81:be:db:cc:f7:38:8d:90:ea:
a4:09:22:9c:96:8a:12:c4:16:2b:b3:11:0d:1c:ee:61:d7:2e:
5d:17:3d:1a:68:79:be:5c:51:09:e0:78:0d:be:60:dc:d3:d7:
42:8a:bb:b9:f1:a0:b0:f2:4b:01:31:41:f6:16:7a:ba:33:d7:
93:19:26:59:75:48:cb:07:55:74:06:ab:f6:74:92:09:cb:14:
ee:e6:41:aa:66:99:4e:a9:e9:da:f2:2c:7e:d3:53:f8:e0:41:
5e:3d:6d:60:b6:30:68:e0:77:60:a5:d2:d6:fc:ac:3b:39:e7:
3c:85:8d:44:0c:61:0b:c0:89:0f:d4:39:19:d6:6c:44:33:db:
9e:42:e6:a6:fc:37:a9:1b:3d:e9:6f:ea:2c:74:e4:20:e2:ea:
7f:f5:31:ef:0f:74:83:da:e6:dd:9f:34:5c:94:4a:f6:1f:62:
8c:af:2a:7b:b3:f3:50:07:fc:78:02:10:d7:e1:30:79:f5:ef:
ee:61:da:46:4b:ac:e3:01:8f:ef:71:c5:b3:f9:28:88:0a:e9:
f9:35:12:4a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYMiidpKU1KNWZta9aYLuKSMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2NTAyMjAwYTZlNjNmNzYzOTdhZGI5NGRmZDgzNGMxMTY4
MDliOWYwHhcNMjIwOTA5MTM1NjQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMWNlMDJlYWEzMTYxNWVjNDgwMjRiN2E1ODQ2MWNjYmYzMmMxOTlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAybhLEYqLAUHa0hdY6ZChW1BFG+Xv
F11R7Zw5mJMDU1jwDb9iHn7OdEOULlsiDwoX2rdvdOudaLRb3Pn1OXgf3Ktj7+Lc
L15BUZ47SWpfZToJqXrnvV3K2q95sV1IsyJQ61oUKCNI/pyktEjRMS3J87k1xI5E
L19EtbmPr/JrBh0OcyF72GD9grfM7/Y2ioZsQFzqpV9dFQqg9aZlSvlneAI3F+tx
kdUYC1L4D6UIOaFIUizFNe5TV0SUMT56LdvxTEIyteAGLQ+bAaCij0tt/zIcaRO4
JApS8oA4eR3WpotaL40/eYrRBgbQtUZDi/DVpLn/Fgi1oze8dYTPmYJh7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDHOAuqjFhXsSAJLelhGHMvzLBmaMB8GA1UdIwQY
MBaAFOZQIgCm5j92OXrblN/YNMEWgJufMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWxBaUFLYm1QM1k1ZXR1VTM5ZzB3UmFBbTU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy85ZmY2MDItYjBiZC00YzNmLWFmOTQt
MmZjMzRhZDlkZDQ3LzEvTWM0QzZxTVdGZXhJQWt0NldFWWN5X01zR1pvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy85ZmY2MDItYjBiZC00YzNmLWFmOTQtMmZjMzRhZDlkZDQ3
LzEvNWxBaUFLYm1QM1k1ZXR1VTM5ZzB3UmFBbTU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw+5aMA0G
CSqGSIb3DQEBCwUAA4IBAQAH2c1LD9323BNTHUsn8SkzOCkcgpLK+dogMQUviWj5
8p0sonzIdJIHnl9OGbqBvtvM9ziNkOqkCSKclooSxBYrsxENHO5h1y5dFz0aaHm+
XFEJ4HgNvmDc09dCiru58aCw8ksBMUH2Fnq6M9eTGSZZdUjLB1V0Bqv2dJIJyxTu
5kGqZplOqena8ix+01P44EFePW1gtjBo4HdgpdLW/Kw7Oec8hY1EDGELwIkP1DkZ
1mxEM9ueQuam/DepGz3pb+osdOQg4up/9THvD3SD2ubdnzRclEr2H2KMryp7s/NQ
B/x4AhDX4TB59e/uYdpGS6zjAY/vccWz+SiICun5NRJK
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:09 2024 by rpki-client on console-fra.rpki-client.org