Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/ee354a-8428-4d86-9824-e5fcebdaa7f2/1/mjrkE5lE3z1mbMA6nmq1NDFdE4I.roa
File: mjrkE5lE3z1mbMA6nmq1NDFdE4I.roa (raw, json)
Hash identifier: Yr4pJ4g85MWlpQefYV++MUp/TXRgla99gwvbpACKYRI=
Subject key identifier: 9A:3A:E4:13:99:44:DF:3D:66:6C:C0:3A:9E:6A:B5:34:31:5D:13:82
Certificate issuer: /CN=66d475bb542f61821be39dbc9b68275d6e0087d4
Certificate serial: 06FE6E1E
Authority key identifier: 66:D4:75:BB:54:2F:61:82:1B:E3:9D:BC:9B:68:27:5D:6E:00:87:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtR1u1QvYYIb4528m2gnXW4Ah9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee354a-8428-4d86-9824-e5fcebdaa7f2/1/mjrkE5lE3z1mbMA6nmq1NDFdE4I.roa
Signing time: Sat 01 Jan 2022 09:54:56 +0000
ROA not before: Sat 01 Jan 2022 09:54:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 55002
IP address blocks: 194.37.250.0/23 maxlen: 24
194.39.78.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117337630 (0x6fe6e1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d475bb542f61821be39dbc9b68275d6e0087d4
Validity
Not Before: Jan 1 09:54:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a3ae4139944df3d666cc03a9e6ab534315d1382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7f:dc:f1:af:b3:a6:1a:e2:24:a8:82:99:d6:
50:55:52:19:61:a1:5a:9c:69:4a:ee:16:c0:a2:46:
f6:44:6f:ca:2b:8e:79:69:9d:74:96:1c:3b:8b:c0:
11:2b:21:a5:90:f3:70:c5:40:5d:ff:38:25:e8:5b:
0a:21:fb:82:10:60:69:ab:ea:ec:21:c8:13:2e:2e:
1e:6a:b6:d9:4d:3c:b2:f4:a3:2f:2e:37:70:2e:e7:
82:37:7b:62:99:e0:9b:cb:20:d6:90:7e:7e:8c:9e:
a1:e9:46:e3:86:f8:4d:e5:eb:dc:78:80:2e:ac:3e:
93:95:58:96:ac:7e:b4:da:d4:b7:be:a2:8e:3e:c0:
a9:6e:d7:e6:bb:71:b0:88:98:c2:9e:25:a0:c0:43:
0c:07:8a:df:d2:c8:2c:4f:5d:39:f2:ea:25:a7:46:
44:98:5b:4d:68:1d:a2:73:84:be:be:77:bf:34:d7:
be:70:a1:5f:c8:b6:d2:75:fc:65:83:c2:80:35:81:
ab:cd:78:fa:71:ac:5d:5c:cc:e3:ab:3d:75:3c:e5:
47:39:32:9b:3b:fb:0a:e8:d2:06:2b:38:d9:93:38:
16:ba:0a:a9:d8:93:5d:80:53:b2:16:aa:5d:21:67:
f7:d7:ea:5c:e8:76:9d:26:1b:b1:fe:f9:9b:9d:5f:
4a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:3A:E4:13:99:44:DF:3D:66:6C:C0:3A:9E:6A:B5:34:31:5D:13:82
X509v3 Authority Key Identifier:
keyid:66:D4:75:BB:54:2F:61:82:1B:E3:9D:BC:9B:68:27:5D:6E:00:87:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtR1u1QvYYIb4528m2gnXW4Ah9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee354a-8428-4d86-9824-e5fcebdaa7f2/1/mjrkE5lE3z1mbMA6nmq1NDFdE4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee354a-8428-4d86-9824-e5fcebdaa7f2/1/ZtR1u1QvYYIb4528m2gnXW4Ah9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.37.250.0/23
194.39.78.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:cf:f1:78:9f:da:36:21:d2:7e:0b:20:1f:9f:81:8a:0d:41:
ed:da:84:09:2a:78:f4:d5:9a:0a:61:6a:8e:2c:ea:47:91:87:
18:da:b4:41:06:7d:65:44:17:17:2c:f8:63:42:d4:39:8d:d5:
f5:bc:74:28:e1:3a:36:12:d5:b1:56:8e:71:7a:9f:c7:f3:3d:
5a:10:6f:62:93:16:eb:e7:37:8d:a8:e7:31:20:50:47:4f:3a:
92:f1:13:66:b7:92:3c:9a:6b:34:00:0f:98:45:a5:6a:65:6d:
0c:f0:67:83:d6:a5:a5:89:e9:21:71:65:72:e4:a3:46:12:aa:
9c:e7:85:ae:11:1b:40:8a:4d:99:bc:d9:79:06:b0:ec:dd:91:
32:63:c1:bd:43:bf:de:77:45:2b:ba:48:5c:3f:eb:73:13:c9:
c6:88:d9:55:51:8e:30:14:c0:67:3d:59:98:6e:f5:f4:22:51:
c6:68:6a:8c:e0:41:69:1b:a1:d8:e2:93:42:e2:ae:a8:44:a0:
f3:fb:c4:7a:1d:98:ec:8f:ac:5d:df:b1:0a:79:89:a1:4a:95:
80:38:45:d5:80:a9:d4:5f:92:ea:65:80:ab:5b:57:a1:04:7d:
72:26:7c:30:f2:91:8a:c7:ae:c8:23:33:eb:ad:b9:f5:93:a3:
e5:e5:10:ec
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBv5uHjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NmQ0NzViYjU0MmY2MTgyMWJlMzlkYmM5YjY4Mjc1ZDZlMDA4N2Q0MB4XDTIyMDEw
MTA5NTQ1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWEzYWU0MTM5OTQ0
ZGYzZDY2NmNjMDNhOWU2YWI1MzQzMTVkMTM4MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKN/3PGvs6Ya4iSogpnWUFVSGWGhWpxpSu4WwKJG9kRvyiuO
eWmddJYcO4vAESshpZDzcMVAXf84JehbCiH7ghBgaavq7CHIEy4uHmq22U08svSj
Ly43cC7ngjd7Ypngm8sg1pB+foyeoelG44b4TeXr3HiALqw+k5VYlqx+tNrUt76i
jj7AqW7X5rtxsIiYwp4loMBDDAeK39LILE9dOfLqJadGRJhbTWgdonOEvr53vzTX
vnChX8i20nX8ZYPCgDWBq814+nGsXVzM46s9dTzlRzkymzv7CujSBis42ZM4FroK
qdiTXYBTshaqXSFn99fqXOh2nSYbsf75m51fShsCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSaOuQTmUTfPWZswDqearU0MV0TgjAfBgNVHSMEGDAWgBRm1HW7VC9hghvj
nbybaCddbgCH1DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1p0UjF1MVF2WVlJYjQ1MjhtMmduWFc0QWg5US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGMvZWUzNTRhLTg0MjgtNGQ4Ni05ODI0LWU1ZmNlYmRhYTdmMi8x
L21qcmtFNWxFM3oxbWJNQTZubXExTkRGZEU0SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGMv
ZWUzNTRhLTg0MjgtNGQ4Ni05ODI0LWU1ZmNlYmRhYTdmMi8xL1p0UjF1MVF2WVlJ
YjQ1MjhtMmduWFc0QWg5US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAcIl+gMEAcInTjANBgkqhkiG9w0B
AQsFAAOCAQEAf8/xeJ/aNiHSfgsgH5+Big1B7dqECSp49NWaCmFqjizqR5GHGNq0
QQZ9ZUQXFyz4Y0LUOY3V9bx0KOE6NhLVsVaOcXqfx/M9WhBvYpMW6+c3jajnMSBQ
R086kvETZreSPJprNAAPmEWlamVtDPBng9alpYnpIXFlcuSjRhKqnOeFrhEbQIpN
mbzZeQaw7N2RMmPBvUO/3ndFK7pIXD/rcxPJxojZVVGOMBTAZz1ZmG719CJRxmhq
jOBBaRuh2OKTQuKuqESg8/vEeh2Y7I+sXd+xCnmJoUqVgDhF1YCp1F+S6mWAq1tX
oQR9ciZ8MPKRiseuyCMz66259ZOj5eUQ7A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:50 2024 by rpki-client on console-ams.rpki-client.org