Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f0b320-9991-4e71-b3ee-494d91aeb655/1/mc1FXDncycKizd5SxTfj1HAnekE.roa
File: mc1FXDncycKizd5SxTfj1HAnekE.roa (raw, json)
Hash identifier: 2tydJWjxawxF9uGfVypWMo37V7q+BsNFs77D/APY2Nw=
Subject key identifier: 99:CD:45:5C:39:DC:C9:C2:A2:CD:DE:52:C5:37:E3:D4:70:27:7A:41
Certificate issuer: /CN=991fac6855f2296bad159870f9cbed22356613ab
Certificate serial: 01892FDE651F8BFCDCDA3B2861CC4E3BB860
Authority key identifier: 99:1F:AC:68:55:F2:29:6B:AD:15:98:70:F9:CB:ED:22:35:66:13:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mR-saFXyKWutFZhw-cvtIjVmE6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f0b320-9991-4e71-b3ee-494d91aeb655/1/mc1FXDncycKizd5SxTfj1HAnekE.roa
Signing time: Fri 07 Jul 2023 10:20:51 +0000
ROA not before: Fri 07 Jul 2023 10:20:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50559
IP address blocks: 194.5.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2f:de:65:1f:8b:fc:dc:da:3b:28:61:cc:4e:3b:b8:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=991fac6855f2296bad159870f9cbed22356613ab
Validity
Not Before: Jul 7 10:20:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99cd455c39dcc9c2a2cdde52c537e3d470277a41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9c:f4:88:76:6f:4e:c5:0b:68:3b:2b:c6:e4:
5e:3e:8f:5f:d6:a8:c5:b7:d7:0a:51:e6:08:48:17:
86:ac:0d:c7:74:26:18:1c:45:98:65:64:c2:e4:7c:
6c:a5:00:07:18:07:79:2d:c9:5f:4a:23:3b:c1:32:
ec:db:d8:d3:37:03:fb:7c:3d:ed:0a:7b:41:6d:7c:
c4:4a:24:ba:3d:70:fc:d9:e0:6b:49:41:08:27:c3:
88:3c:83:83:15:2f:bb:d4:3e:c1:77:fb:75:fb:44:
77:7b:45:55:dc:86:58:13:a8:3f:6d:58:72:42:f8:
eb:fb:68:51:48:31:ce:b3:04:86:88:38:aa:0a:c2:
4f:3c:ff:15:f4:04:f7:73:95:84:be:f9:43:c0:7b:
e0:72:da:22:f0:92:e0:6a:be:75:a6:4c:8f:85:ab:
09:d9:ed:3b:ca:7d:48:c6:82:f8:7d:85:6b:bf:29:
7a:03:5d:7f:0a:03:0b:95:04:28:29:d9:fb:b5:e0:
0c:77:cd:73:33:41:4e:d4:1b:7d:e5:70:07:15:15:
e5:4a:ed:47:35:1b:dc:e2:bf:92:aa:bb:75:c3:9b:
b0:8d:98:1d:68:8f:1a:0f:8c:0b:ca:14:e7:11:47:
30:59:25:90:1c:4d:ac:53:2a:ff:26:b6:21:b7:ec:
57:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:CD:45:5C:39:DC:C9:C2:A2:CD:DE:52:C5:37:E3:D4:70:27:7A:41
X509v3 Authority Key Identifier:
keyid:99:1F:AC:68:55:F2:29:6B:AD:15:98:70:F9:CB:ED:22:35:66:13:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mR-saFXyKWutFZhw-cvtIjVmE6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f0b320-9991-4e71-b3ee-494d91aeb655/1/mc1FXDncycKizd5SxTfj1HAnekE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f0b320-9991-4e71-b3ee-494d91aeb655/1/mR-saFXyKWutFZhw-cvtIjVmE6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.73.0/24
Signature Algorithm: sha256WithRSAEncryption
50:8c:4e:00:a0:69:a4:2a:ad:ec:f0:0d:fa:d5:8d:dd:62:07:
54:2a:a8:66:5b:2a:9a:67:72:62:20:50:4f:1d:0c:cb:e0:c1:
d1:13:67:a0:7e:ba:5e:e1:6c:a3:12:0f:4b:27:34:f9:ee:94:
7c:5b:c9:f2:86:a5:3c:56:22:db:3d:cb:91:75:a3:29:3b:34:
3e:6b:e3:33:02:f6:07:40:48:a7:3c:12:80:48:a7:45:60:dd:
5e:e0:c8:e1:8e:a0:6c:20:ee:a3:a0:f5:de:4b:b2:4a:bd:9d:
03:c2:32:ca:21:ea:16:33:fb:6d:48:e9:5d:43:13:8e:5d:3d:
81:ca:db:2d:5d:82:fb:aa:36:72:18:13:16:16:97:4c:ff:c7:
a7:c2:54:1c:77:fc:b1:30:9e:e7:2d:79:9d:6b:67:5f:22:86:
1e:22:d8:5a:2a:c9:f5:7d:d0:e8:e8:ae:11:80:3c:f4:93:85:
60:67:5d:c8:c1:96:06:cf:7d:87:66:c3:bd:3a:64:ac:91:bd:
29:19:09:5a:b9:b1:1d:63:08:1d:9f:2f:06:bf:76:ea:00:fc:
47:89:b7:0e:c2:ef:35:00:3c:bf:0b:3f:93:9f:ed:6e:f2:4e:
6f:72:60:a5:5a:fc:f0:55:17:32:c1:33:b5:f5:ec:4f:70:42:
d9:03:f4:c5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYkv3mUfi/zc2jsoYcxOO7hgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5MWZhYzY4NTVmMjI5NmJhZDE1OTg3MGY5Y2JlZDIyMzU2
NjEzYWIwHhcNMjMwNzA3MTAyMDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OWNkNDU1YzM5ZGNjOWMyYTJjZGRlNTJjNTM3ZTNkNDcwMjc3YTQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2pz0iHZvTsULaDsrxuRePo9f1qjF
t9cKUeYISBeGrA3HdCYYHEWYZWTC5HxspQAHGAd5LclfSiM7wTLs29jTNwP7fD3t
CntBbXzESiS6PXD82eBrSUEIJ8OIPIODFS+71D7Bd/t1+0R3e0VV3IZYE6g/bVhy
Qvjr+2hRSDHOswSGiDiqCsJPPP8V9AT3c5WEvvlDwHvgctoi8JLgar51pkyPhasJ
2e07yn1IxoL4fYVrvyl6A11/CgMLlQQoKdn7teAMd81zM0FO1Bt95XAHFRXlSu1H
NRvc4r+Sqrt1w5uwjZgdaI8aD4wLyhTnEUcwWSWQHE2sUyr/JrYht+xXPwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJnNRVw53MnCos3eUsU349RwJ3pBMB8GA1UdIwQY
MBaAFJkfrGhV8ilrrRWYcPnL7SI1ZhOrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVItc2FGWHlLV3V0Rlpody1jdnRJalZtRTZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9mMGIzMjAtOTk5MS00ZTcxLWIzZWUt
NDk0ZDkxYWViNjU1LzEvbWMxRlhEbmN5Y0tpemQ1U3hUZmoxSEFuZWtFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9mMGIzMjAtOTk5MS00ZTcxLWIzZWUtNDk0ZDkxYWViNjU1
LzEvbVItc2FGWHlLV3V0Rlpody1jdnRJalZtRTZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgVJMA0G
CSqGSIb3DQEBCwUAA4IBAQBQjE4AoGmkKq3s8A361Y3dYgdUKqhmWyqaZ3JiIFBP
HQzL4MHRE2egfrpe4WyjEg9LJzT57pR8W8nyhqU8ViLbPcuRdaMpOzQ+a+MzAvYH
QEinPBKASKdFYN1e4MjhjqBsIO6joPXeS7JKvZ0DwjLKIeoWM/ttSOldQxOOXT2B
ytstXYL7qjZyGBMWFpdM/8enwlQcd/yxMJ7nLXmda2dfIoYeIthaKsn1fdDo6K4R
gDz0k4VgZ13IwZYGz32HZsO9OmSskb0pGQlaubEdYwgdny8Gv3bqAPxHibcOwu81
ADy/Cz+Tn+1u8k5vcmClWvzwVRcywTO19exPcELZA/TF
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:04:43 2025 by rpki-client