Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/2ebba5-7a0d-4333-b911-0f88d16e1afe/1/mlVxQei_NxH6YgngNeZ8MJgZfwA.roa
File: mlVxQei_NxH6YgngNeZ8MJgZfwA.roa (raw, json)
Hash identifier: J8l8oSDtz+9SKJuLpmP658RzRX6XLuxQUVWyS9SAl30=
Subject key identifier: 9A:55:71:41:E8:BF:37:11:FA:62:09:E0:35:E6:7C:30:98:19:7F:00
Certificate issuer: /CN=e11aa92850ebfe648ad3d89add8e736ec3675a11
Certificate serial: 0CFAA6
Authority key identifier: E1:1A:A9:28:50:EB:FE:64:8A:D3:D8:9A:DD:8E:73:6E:C3:67:5A:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4RqpKFDr_mSK09ia3Y5zbsNnWhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/2ebba5-7a0d-4333-b911-0f88d16e1afe/1/mlVxQei_NxH6YgngNeZ8MJgZfwA.roa
Signing time: Mon 04 Jul 2022 15:59:10 +0000
ROA not before: Mon 04 Jul 2022 15:59:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197965
IP address blocks: 194.180.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 850598 (0xcfaa6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e11aa92850ebfe648ad3d89add8e736ec3675a11
Validity
Not Before: Jul 4 15:59:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a557141e8bf3711fa6209e035e67c3098197f00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c2:a3:67:e3:5e:88:eb:d6:c1:5f:de:ad:6d:
c1:08:a6:ad:d7:b2:cd:f6:20:de:52:3b:0c:21:3e:
c4:32:38:7e:ea:74:1f:d9:2f:f3:6f:c9:86:b5:70:
fb:33:6e:e3:ba:cd:1c:98:ed:de:25:c3:0a:3c:a1:
90:15:ed:22:c9:ef:e0:13:4a:87:8a:f0:90:b4:d4:
39:5c:3a:8a:7a:39:1e:46:eb:e6:fd:a8:82:0a:7f:
c7:54:00:46:0a:be:26:72:7a:92:32:6c:14:8d:7e:
15:b7:46:c4:46:ee:09:32:5f:bc:b1:cb:19:be:c2:
66:e8:1e:b0:1b:60:4e:6b:fd:04:c0:42:2d:01:7a:
76:f6:ee:57:18:6b:e4:75:0b:2d:80:c9:9c:8f:46:
d7:27:a7:99:20:fa:a7:8a:f5:b0:cc:01:4e:65:63:
cb:92:bd:c2:53:a0:df:d7:ba:5c:de:fd:1f:99:56:
79:4f:eb:b0:63:2e:b5:f8:fc:fc:94:a3:02:cb:74:
0a:2a:d1:ee:d4:fb:d0:a9:b5:0d:00:d3:64:a6:96:
cf:c5:04:7d:cd:95:1b:7e:4b:69:87:6b:c2:d4:be:
4d:b7:a3:0d:67:11:e5:4e:e9:50:eb:a5:03:ac:5e:
ed:65:1b:d4:18:09:c8:b7:aa:74:02:8f:eb:17:12:
eb:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:55:71:41:E8:BF:37:11:FA:62:09:E0:35:E6:7C:30:98:19:7F:00
X509v3 Authority Key Identifier:
keyid:E1:1A:A9:28:50:EB:FE:64:8A:D3:D8:9A:DD:8E:73:6E:C3:67:5A:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4RqpKFDr_mSK09ia3Y5zbsNnWhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/2ebba5-7a0d-4333-b911-0f88d16e1afe/1/mlVxQei_NxH6YgngNeZ8MJgZfwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/2ebba5-7a0d-4333-b911-0f88d16e1afe/1/4RqpKFDr_mSK09ia3Y5zbsNnWhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.136.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:97:70:33:d7:9c:1c:44:ca:34:31:38:95:f0:37:47:2b:3c:
fa:6b:1d:92:d0:95:1a:a8:25:1c:15:ad:0c:77:32:4b:0e:19:
e4:54:a4:26:aa:17:de:cd:12:0e:e1:d8:3c:63:5b:5d:a6:cd:
f1:11:62:5b:6d:16:c2:0e:65:c3:3e:7e:f8:3e:7d:91:d7:0a:
e2:29:e5:0c:73:6a:3d:13:f5:bb:e0:14:13:c9:13:76:6b:0e:
6d:d7:c6:03:1e:b6:a3:1a:f4:bf:84:c2:51:59:9f:7e:aa:d2:
2b:5f:e5:07:7b:ee:b4:54:9a:84:68:41:6c:af:cf:4a:e0:44:
9e:22:fe:01:27:a6:be:61:c4:b0:3f:dc:02:fe:68:49:59:91:
32:2e:47:7d:12:ae:30:38:96:f3:e3:e0:2c:33:14:1f:d9:4f:
ac:8a:89:76:a3:39:65:1f:59:3e:00:f0:b1:99:ce:f6:05:c0:
c3:f3:05:29:cb:7c:07:d7:c7:a2:ba:0d:c4:4d:1d:87:e2:14:
62:fd:e3:d3:4f:04:93:cb:10:b5:9a:40:ac:0b:de:da:20:1f:
84:39:46:c6:d4:1a:94:95:9c:40:32:cb:ab:2f:04:28:89:c2:
15:47:14:68:d8:4e:0c:7e:56:55:ee:55:9f:64:2a:91:aa:8c:
36:bf:98:d2
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDDPqmMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGUx
MWFhOTI4NTBlYmZlNjQ4YWQzZDg5YWRkOGU3MzZlYzM2NzVhMTEwHhcNMjIwNzA0
MTU1OTEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg5YTU1NzE0MWU4YmYz
NzExZmE2MjA5ZTAzNWU2N2MzMDk4MTk3ZjAwMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAn8KjZ+NeiOvWwV/erW3BCKat17LN9iDeUjsMIT7EMjh+6nQf
2S/zb8mGtXD7M27jus0cmO3eJcMKPKGQFe0iye/gE0qHivCQtNQ5XDqKejkeRuvm
/aiCCn/HVABGCr4mcnqSMmwUjX4Vt0bERu4JMl+8scsZvsJm6B6wG2BOa/0EwEIt
AXp29u5XGGvkdQstgMmcj0bXJ6eZIPqnivWwzAFOZWPLkr3CU6Df17pc3v0fmVZ5
T+uwYy61+Pz8lKMCy3QKKtHu1PvQqbUNANNkppbPxQR9zZUbfktph2vC1L5Nt6MN
ZxHlTulQ66UDrF7tZRvUGAnIt6p0Ao/rFxLr4QIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFJpVcUHovzcR+mIJ4DXmfDCYGX8AMB8GA1UdIwQYMBaAFOEaqShQ6/5kitPY
mt2Oc27DZ1oRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
NFJxcEtGRHJfbVNLMDlpYTNZNXpic05uV2hFLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZS8yZWJiYTUtN2EwZC00MzMzLWI5MTEtMGY4OGQxNmUxYWZlLzEv
bWxWeFFlaV9OeEg2WWduZ05lWjhNSmdaZndBLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS8y
ZWJiYTUtN2EwZC00MzMzLWI5MTEtMGY4OGQxNmUxYWZlLzEvNFJxcEtGRHJfbVNL
MDlpYTNZNXpic05uV2hFLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwrSIMA0GCSqGSIb3DQEBCwUAA4IB
AQCdl3Az15wcRMo0MTiV8DdHKzz6ax2S0JUaqCUcFa0MdzJLDhnkVKQmqhfezRIO
4dg8Y1tdps3xEWJbbRbCDmXDPn74Pn2R1wriKeUMc2o9E/W74BQTyRN2aw5t18YD
HrajGvS/hMJRWZ9+qtIrX+UHe+60VJqEaEFsr89K4ESeIv4BJ6a+YcSwP9wC/mhJ
WZEyLkd9Eq4wOJbz4+AsMxQf2U+siol2ozllH1k+APCxmc72BcDD8wUpy3wH18ei
ug3ETR2H4hRi/ePTTwSTyxC1mkCsC97aIB+EOUbG1BqUlZxAMsurLwQoicIVRxRo
2E4MflZV7lWfZCqRqow2v5jS
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:09 2023 by rpki-client on console-fra.rpki-client.org