Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/293d36-9da2-4405-8de3-4afd8254ae43/1/MpHE6FJK-YiSAH6nR7OW1LjbtS0.roa
File: MpHE6FJK-YiSAH6nR7OW1LjbtS0.roa (raw, json)
Hash identifier: p9T2nmEbFNRDVahn8tbrl+cn9MjGvHkkJFYhH18uC8Q=
Subject key identifier: 32:91:C4:E8:52:4A:F9:88:92:00:7E:A7:47:B3:96:D4:B8:DB:B5:2D
Certificate issuer: /CN=fae16b493d2a12897caf4757bb18a02eec2cde17
Certificate serial: 1BD8485F
Authority key identifier: FA:E1:6B:49:3D:2A:12:89:7C:AF:47:57:BB:18:A0:2E:EC:2C:DE:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-uFrST0qEol8r0dXuxigLuws3hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/293d36-9da2-4405-8de3-4afd8254ae43/1/MpHE6FJK-YiSAH6nR7OW1LjbtS0.roa
Signing time: Thu 31 Mar 2022 08:24:50 +0000
ROA not before: Thu 31 Mar 2022 08:24:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12322
IP address blocks: 83.152.0.0/13 maxlen: 15
88.120.0.0/13 maxlen: 13
213.36.0.0/16 maxlen: 18
91.160.0.0/12 maxlen: 12
82.142.0.0/18 maxlen: 18
83.214.0.0/16 maxlen: 16
212.62.128.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 467159135 (0x1bd8485f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fae16b493d2a12897caf4757bb18a02eec2cde17
Validity
Not Before: Mar 31 08:24:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3291c4e8524af98892007ea747b396d4b8dbb52d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c3:b3:74:7e:c4:c5:37:fd:eb:f1:9e:3b:57:
39:be:80:83:fa:6c:27:aa:3e:33:76:c0:30:e8:53:
a3:65:05:41:3e:ff:18:97:93:af:cc:77:ef:e8:f4:
48:d2:67:80:7e:7d:6a:31:f0:f3:86:a1:67:26:70:
35:f2:a9:d7:ae:c4:fe:29:fe:5d:b9:0f:47:63:66:
c3:fd:9a:46:54:90:39:a7:98:d0:e4:a2:a8:5e:4c:
8f:41:b8:52:51:55:65:21:0e:78:4d:d2:7d:4d:a2:
f1:19:68:a3:d1:b2:13:d8:51:4e:55:22:a2:e6:50:
cb:20:d9:c2:0a:3c:4f:b4:c3:c1:6c:59:3f:fb:8e:
42:33:9d:85:af:b7:bf:c2:e0:4a:92:21:79:83:f9:
6a:a4:80:e4:5a:8f:ab:d0:0f:54:bc:5f:17:8d:de:
87:b1:0b:f1:6f:9b:fe:da:93:a2:38:14:6d:eb:9b:
08:60:28:01:db:b6:09:a8:86:22:58:1a:8c:fb:5c:
31:84:d6:1b:5a:f9:44:60:92:de:9b:54:06:06:80:
34:cb:fb:2e:c3:9f:ba:ec:83:4e:e2:d1:50:e2:00:
16:fc:d6:f3:7c:6f:20:de:7a:3e:8c:22:6a:5d:62:
8c:5f:ec:c7:2e:6d:ae:47:76:69:de:00:38:0b:e4:
c2:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:91:C4:E8:52:4A:F9:88:92:00:7E:A7:47:B3:96:D4:B8:DB:B5:2D
X509v3 Authority Key Identifier:
keyid:FA:E1:6B:49:3D:2A:12:89:7C:AF:47:57:BB:18:A0:2E:EC:2C:DE:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-uFrST0qEol8r0dXuxigLuws3hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/293d36-9da2-4405-8de3-4afd8254ae43/1/MpHE6FJK-YiSAH6nR7OW1LjbtS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/293d36-9da2-4405-8de3-4afd8254ae43/1/1-uFrST0qEol8r0dXuxigLuws3hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.142.0.0/18
83.152.0.0/13
83.214.0.0/16
88.120.0.0/13
91.160.0.0/12
212.62.128.0/18
213.36.0.0/16
Signature Algorithm: sha256WithRSAEncryption
62:a2:c0:db:08:44:9f:84:fd:35:4b:4b:9b:49:72:54:fe:bc:
bf:4c:c8:64:e7:5c:1a:f4:7d:ad:30:f8:46:86:06:f0:a8:53:
e6:3e:65:1c:0b:1e:5c:fd:75:39:ff:c2:26:2b:17:46:de:4a:
fe:6e:93:4a:45:24:c6:28:e8:a8:2a:e1:f1:f6:f5:77:22:38:
6c:d5:b1:02:c3:8b:fd:cf:63:90:05:a0:f7:ae:9e:d1:30:5f:
c3:c2:68:16:be:fc:20:cb:48:1d:48:88:1b:8e:1b:22:ac:12:
54:94:00:e1:c4:a0:cd:4d:ef:15:4d:c3:e3:63:fe:47:e2:9c:
f0:15:5a:d9:24:b5:52:27:6d:3a:53:89:ea:c7:68:b0:08:84:
d6:07:bf:fa:a4:69:3e:fa:f3:c7:65:12:6f:1f:da:2c:22:e7:
c9:5c:f6:52:4e:f6:f9:53:a8:29:dc:fa:72:dc:7d:5d:87:96:
17:6f:ee:31:43:16:d8:20:9e:79:17:30:9c:91:11:1b:43:b3:
e0:b4:0c:72:92:4b:fb:18:3d:22:fe:5c:94:da:e3:f5:33:d5:
5e:f5:d5:7a:da:95:89:bc:32:60:e1:e0:b0:2b:73:a8:eb:bc:
85:76:63:92:4f:94:64:84:61:58:91:07:33:b1:8f:72:d8:a3:
58:8f:12:2d
-----BEGIN CERTIFICATE-----
MIIFEDCCA/igAwIBAgIEG9hIXzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YWUxNmI0OTNkMmExMjg5N2NhZjQ3NTdiYjE4YTAyZWVjMmNkZTE3MB4XDTIyMDMz
MTA4MjQ1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzI5MWM0ZTg1MjRh
Zjk4ODkyMDA3ZWE3NDdiMzk2ZDRiOGRiYjUyZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK3Ds3R+xMU3/evxnjtXOb6Ag/psJ6o+M3bAMOhTo2UFQT7/
GJeTr8x37+j0SNJngH59ajHw84ahZyZwNfKp167E/in+XbkPR2Nmw/2aRlSQOaeY
0OSiqF5Mj0G4UlFVZSEOeE3SfU2i8Rloo9GyE9hRTlUiouZQyyDZwgo8T7TDwWxZ
P/uOQjOdha+3v8LgSpIheYP5aqSA5FqPq9APVLxfF43eh7EL8W+b/tqTojgUbeub
CGAoAdu2CaiGIlgajPtcMYTWG1r5RGCS3ptUBgaANMv7LsOfuuyDTuLRUOIAFvzW
83xvIN56Powial1ijF/sxy5trkd2ad4AOAvkwg8CAwEAAaOCAiowggImMB0GA1Ud
DgQWBBQykcToUkr5iJIAfqdHs5bUuNu1LTAfBgNVHSMEGDAWgBT64WtJPSoSiXyv
R1e7GKAu7CzeFzAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtdUZyU1QwcUVvbDhyMGRYdXhpZ0x1d3MzaGMuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxUL2UzLzI5M2QzNi05ZGEyLTQ0MDUtOGRlMy00YWZkODI1NGFlNDMv
MS9NcEhFNkZKSy1ZaVNBSDZuUjdPVzFMamJ0UzAucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Uz
LzI5M2QzNi05ZGEyLTQ0MDUtOGRlMy00YWZkODI1NGFlNDMvMS8xLXVGclNUMHFF
b2w4cjBkWHV4aWdMdXdzM2hjLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MD4GCCsGAQUFBwEHAQH/BC8wLTArBAIAATAlAwQGUo4AAwMDU5gDAwBT1gMDA1h4
AwMEW6ADBAbUPoADAwDVJDANBgkqhkiG9w0BAQsFAAOCAQEAYqLA2whEn4T9NUtL
m0lyVP68v0zIZOdcGvR9rTD4RoYG8KhT5j5lHAseXP11Of/CJisXRt5K/m6TSkUk
xijoqCrh8fb1dyI4bNWxAsOL/c9jkAWg966e0TBfw8JoFr78IMtIHUiIG44bIqwS
VJQA4cSgzU3vFU3D42P+R+Kc8BVa2SS1UidtOlOJ6sdosAiE1ge/+qRpPvrzx2US
bx/aLCLnyVz2Uk72+VOoKdz6ctx9XYeWF2/uMUMW2CCeeRcwnJERG0Oz4LQMcpJL
+xg9Iv5clNrj9TPVXvXVetqVibwyYOHgsCtzqOu8hXZjkk+UZIRhWJEHM7GPctij
WI8SLQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:16 2024 by rpki-client on console-fra.rpki-client.org