Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c95480-2e26-4662-a7c4-70c8a4bcab0d/1/MDIrdaYP-YanBlpUxv4EUF5gsy8.roa
File: MDIrdaYP-YanBlpUxv4EUF5gsy8.roa (raw, json)
Hash identifier: pbk/v40Kf6Mxxr6QLHe/xr6g6zgYtcfskUbwwAJJG1Y=
Subject key identifier: 30:32:2B:75:A6:0F:F9:86:A7:06:5A:54:C6:FE:04:50:5E:60:B3:2F
Certificate issuer: /CN=9fd1158f9e34011c32a0102561a331d64dd8aa96
Certificate serial: 01EC8A9F
Authority key identifier: 9F:D1:15:8F:9E:34:01:1C:32:A0:10:25:61:A3:31:D6:4D:D8:AA:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n9EVj540ARwyoBAlYaMx1k3YqpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c95480-2e26-4662-a7c4-70c8a4bcab0d/1/MDIrdaYP-YanBlpUxv4EUF5gsy8.roa
Signing time: Tue 26 Apr 2022 13:11:59 +0000
ROA not before: Tue 26 Apr 2022 13:11:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 217.114.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32279199 (0x1ec8a9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fd1158f9e34011c32a0102561a331d64dd8aa96
Validity
Not Before: Apr 26 13:11:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30322b75a60ff986a7065a54c6fe04505e60b32f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8f:85:a9:8e:9b:a5:3b:5f:81:2b:00:a4:a3:
b8:24:f3:8c:1e:fc:bb:7a:55:c5:bb:c0:34:d1:b4:
88:1b:85:62:c0:1e:8f:a6:40:85:66:e7:50:f0:cb:
d9:30:34:88:2f:06:ee:c7:cc:7a:2e:7e:95:f1:09:
11:62:3e:86:60:bc:6e:cb:f3:a3:a9:41:1d:2e:3b:
a5:89:c8:10:a3:84:44:f5:5b:ed:10:6f:c1:0b:1f:
3e:60:01:8e:24:12:e8:f6:ed:02:4d:c1:90:95:b4:
38:b4:f9:73:86:df:ad:5f:18:fb:df:c3:91:24:03:
52:df:d6:c6:89:c4:97:5e:1f:53:c5:08:25:00:7c:
34:15:f3:6b:cc:4a:03:9b:03:6e:11:8b:0b:32:e0:
4a:38:47:9c:14:07:02:38:d1:5b:48:04:95:8b:82:
04:67:dc:d4:a2:0d:18:ba:62:7b:77:c1:22:a3:f7:
e9:7e:87:ad:91:d3:4b:40:94:0a:07:f2:97:04:40:
b0:4b:bd:26:c9:b7:d1:f6:a4:96:68:02:e1:d3:a6:
9c:42:e1:4b:4c:59:5d:25:7a:bc:b2:72:58:86:f5:
c3:90:5a:f1:57:43:89:0e:d0:c8:cb:44:37:8a:a9:
6a:5c:24:c1:9f:20:67:11:e3:23:a2:be:c2:e4:92:
c8:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:32:2B:75:A6:0F:F9:86:A7:06:5A:54:C6:FE:04:50:5E:60:B3:2F
X509v3 Authority Key Identifier:
keyid:9F:D1:15:8F:9E:34:01:1C:32:A0:10:25:61:A3:31:D6:4D:D8:AA:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n9EVj540ARwyoBAlYaMx1k3YqpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c95480-2e26-4662-a7c4-70c8a4bcab0d/1/MDIrdaYP-YanBlpUxv4EUF5gsy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c95480-2e26-4662-a7c4-70c8a4bcab0d/1/n9EVj540ARwyoBAlYaMx1k3YqpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.114.46.0/24
Signature Algorithm: sha256WithRSAEncryption
90:0d:49:2f:e0:fb:95:bb:fe:8b:4c:18:74:84:b4:8d:9d:a9:
f4:0b:7e:26:2a:31:d0:a5:7b:fc:bc:d5:f6:a5:8d:6f:8a:e7:
d9:5a:d8:15:f7:6f:f6:6d:c2:df:2a:18:f5:f0:8f:79:04:54:
82:f7:fc:f1:92:d6:a3:50:dc:57:b4:d7:ff:62:15:16:ab:e1:
b6:e8:97:b9:bc:99:5e:f7:07:90:e0:1d:d4:43:b9:df:35:03:
28:c8:dc:19:a4:ed:26:cf:9d:41:d0:17:3e:05:5d:bb:3e:d5:
17:57:20:b2:f2:43:d3:0c:b1:8e:06:0f:9d:bd:46:cc:0b:77:
5f:73:4f:69:bc:6b:4e:80:00:21:da:95:3b:12:6e:a6:e3:c3:
34:69:f4:c8:4c:7e:01:66:5f:bb:04:79:d4:60:45:9b:19:94:
1d:c0:1c:23:ed:53:2b:ba:cb:04:89:a7:f5:3a:b7:ca:82:b6:
e4:e7:b7:4c:9e:c3:3e:55:c4:fa:34:db:a3:c8:0f:79:e1:ef:
37:82:90:f5:d9:11:9c:91:58:36:43:e0:f7:f0:eb:d6:d8:c6:
93:23:30:63:4b:27:4e:5b:67:ba:92:81:e0:cd:2d:e4:74:f5:
5c:cc:14:2d:59:c2:43:3c:ef:a9:9e:b7:04:fe:c7:92:48:26:
68:c6:b7:44
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAeyKnzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZmQxMTU4ZjllMzQwMTFjMzJhMDEwMjU2MWEzMzFkNjRkZDhhYTk2MB4XDTIyMDQy
NjEzMTE1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzAzMjJiNzVhNjBm
Zjk4NmE3MDY1YTU0YzZmZTA0NTA1ZTYwYjMyZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMGPhamOm6U7X4ErAKSjuCTzjB78u3pVxbvANNG0iBuFYsAe
j6ZAhWbnUPDL2TA0iC8G7sfMei5+lfEJEWI+hmC8bsvzo6lBHS47pYnIEKOERPVb
7RBvwQsfPmABjiQS6PbtAk3BkJW0OLT5c4bfrV8Y+9/DkSQDUt/WxonEl14fU8UI
JQB8NBXza8xKA5sDbhGLCzLgSjhHnBQHAjjRW0gElYuCBGfc1KINGLpie3fBIqP3
6X6HrZHTS0CUCgfylwRAsEu9Jsm30faklmgC4dOmnELhS0xZXSV6vLJyWIb1w5Ba
8VdDiQ7QyMtEN4qpalwkwZ8gZxHjI6K+wuSSyJMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQwMit1pg/5hqcGWlTG/gRQXmCzLzAfBgNVHSMEGDAWgBSf0RWPnjQBHDKg
ECVhozHWTdiqljAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L245RVZqNTQwQVJ3eW9CQWxZYU14MWszWXFwWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDQvYzk1NDgwLTJlMjYtNDY2Mi1hN2M0LTcwYzhhNGJjYWIwZC8x
L01ESXJkYVlQLVlhbkJscFV4djRFVUY1Z3N5OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDQv
Yzk1NDgwLTJlMjYtNDY2Mi1hN2M0LTcwYzhhNGJjYWIwZC8xL245RVZqNTQwQVJ3
eW9CQWxZYU14MWszWXFwWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANlyLjANBgkqhkiG9w0BAQsFAAOC
AQEAkA1JL+D7lbv+i0wYdIS0jZ2p9At+Jiox0KV7/LzV9qWNb4rn2VrYFfdv9m3C
3yoY9fCPeQRUgvf88ZLWo1DcV7TX/2IVFqvhtuiXubyZXvcHkOAd1EO53zUDKMjc
GaTtJs+dQdAXPgVduz7VF1cgsvJD0wyxjgYPnb1GzAt3X3NPabxrToAAIdqVOxJu
puPDNGn0yEx+AWZfuwR51GBFmxmUHcAcI+1TK7rLBImn9Tq3yoK25Oe3TJ7DPlXE
+jTbo8gPeeHvN4KQ9dkRnJFYNkPg9/Dr1tjGkyMwY0snTltnupKB4M0t5HT1XMwU
LVnCQzzvqZ63BP7HkkgmaMa3RA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:32 2023 by rpki-client on console-fra.rpki-client.org