Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/_mou30BxAMQ_mag2QpXXATMIq2g.roa
File: _mou30BxAMQ_mag2QpXXATMIq2g.roa (raw, json)
Hash identifier: c01ySytR3Ojt0BzAXYVMJYIuV9UwUzsL+I92zWjepRg=
Subject key identifier: FE:6A:2E:DF:40:71:00:C4:3F:99:A8:36:42:95:D7:01:33:08:AB:68
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 01829708F1E8E2A2F5B1B019CD1438BE1685
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/_mou30BxAMQ_mag2QpXXATMIq2g.roa
Signing time: Sat 13 Aug 2022 11:48:41 +0000
ROA not before: Sat 13 Aug 2022 11:48:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211014
IP address blocks: 45.139.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:97:08:f1:e8:e2:a2:f5:b1:b0:19:cd:14:38:be:16:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Aug 13 11:48:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe6a2edf407100c43f99a8364295d7013308ab68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:01:1c:db:bf:9e:6c:4d:e5:12:ef:1c:1b:08:
03:fd:e9:90:f2:56:d4:5d:3f:a5:70:5c:6d:8c:78:
e9:d4:63:70:84:6a:eb:0b:71:d4:b4:8d:fa:80:10:
43:b1:5b:dc:35:6e:0f:52:0f:9b:4e:2f:28:ee:ee:
29:45:39:95:b3:b6:0d:dd:d3:1c:ae:2e:41:e6:21:
5c:b3:c4:21:05:8c:c1:c1:9b:3d:c0:68:b5:84:8c:
48:d7:a6:03:42:d4:54:02:02:32:ab:a2:d3:0c:ac:
f3:c9:05:b6:4d:e3:a8:e8:51:e2:76:d4:b5:02:06:
10:89:04:20:11:93:71:ca:ab:61:f7:bc:2f:f8:55:
5a:da:98:50:4a:38:f4:34:48:1e:4e:a3:0b:12:3e:
b2:4b:7b:82:47:cb:07:64:5a:d2:98:cd:19:6f:13:
3a:b2:79:98:3c:02:9c:17:6c:d8:44:83:dc:ee:ae:
b5:cd:6b:5e:16:7c:90:5f:2c:5f:ae:06:d0:b2:56:
5c:22:a9:fe:a0:ac:19:65:b6:b9:a6:fc:3a:19:74:
9f:2b:1b:d7:99:22:7d:bd:9d:71:3e:6c:d3:29:be:
28:63:7f:94:14:88:ee:75:63:f8:e8:99:0c:74:53:
6c:26:c0:37:9d:ad:ea:b7:05:86:fd:96:b3:a3:68:
db:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:6A:2E:DF:40:71:00:C4:3F:99:A8:36:42:95:D7:01:33:08:AB:68
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/_mou30BxAMQ_mag2QpXXATMIq2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.9.0/24
Signature Algorithm: sha256WithRSAEncryption
53:8b:e2:3d:2b:14:1d:eb:d3:b7:51:f0:15:2e:43:e9:3a:ad:
a2:8c:ee:d3:7d:3d:7f:69:20:ac:94:29:3e:3b:8f:73:f2:c3:
3c:b5:a5:96:b9:1c:2f:02:6c:11:d6:23:14:42:f8:91:ea:9c:
6b:7d:92:c4:05:d0:87:03:ca:c7:f4:2b:ee:e4:14:30:fb:df:
eb:61:14:14:05:47:0f:41:25:ef:72:9d:96:03:6c:13:f6:dd:
3d:26:5f:a3:32:6f:e5:ca:96:d6:36:fe:12:a5:cb:00:ff:e5:
48:5b:56:77:7e:08:7d:bb:62:83:cb:16:3e:6a:3f:90:62:8f:
cf:f7:4d:9b:2b:f2:63:a0:ff:86:8b:df:b6:2c:18:4e:c7:43:
f4:d0:09:1e:8b:ae:e9:c4:44:3e:0b:d4:fa:23:7e:67:54:c3:
73:2f:b2:a9:8d:05:8b:23:3d:2e:58:f0:b2:d9:26:54:c1:36:
4c:1f:b3:bd:fa:35:44:b0:aa:ef:17:11:4a:61:c8:bc:9a:8a:
af:79:23:5d:fd:14:85:67:77:19:9a:a9:fd:06:6b:1e:60:77:
aa:b8:53:15:2a:b5:12:37:ff:39:32:04:6e:f4:c7:16:1e:8e:
4b:c2:65:6e:ad:7b:8e:8a:31:6b:3d:af:a8:18:b8:7d:19:ee:
85:ce:ba:85
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYKXCPHo4qL1sbAZzRQ4vhaFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4N2I1OTRlNWU2NzEzYTViODBhNTQ4MWE1Y2U3MWU2NTJk
ODQ1NzMwHhcNMjIwODEzMTE0ODQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZTZhMmVkZjQwNzEwMGM0M2Y5OWE4MzY0Mjk1ZDcwMTMzMDhhYjY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhAEc27+ebE3lEu8cGwgD/emQ8lbU
XT+lcFxtjHjp1GNwhGrrC3HUtI36gBBDsVvcNW4PUg+bTi8o7u4pRTmVs7YN3dMc
ri5B5iFcs8QhBYzBwZs9wGi1hIxI16YDQtRUAgIyq6LTDKzzyQW2TeOo6FHidtS1
AgYQiQQgEZNxyqth97wv+FVa2phQSjj0NEgeTqMLEj6yS3uCR8sHZFrSmM0ZbxM6
snmYPAKcF2zYRIPc7q61zWteFnyQXyxfrgbQslZcIqn+oKwZZba5pvw6GXSfKxvX
mSJ9vZ1xPmzTKb4oY3+UFIjudWP46JkMdFNsJsA3na3qtwWG/Zazo2jbpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP5qLt9AcQDEP5moNkKV1wEzCKtoMB8GA1UdIwQY
MBaAFMh7WU5eZxOluApUgaXOceZS2EVzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUh0WlRsNW5FNlc0Q2xTQnBjNXg1bExZUlhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi84MjRmNzgtZGVlMi00N2JjLWFmMmYt
MzhjYjZlNDE2ZjNhLzEvX21vdTMwQnhBTVFfbWFnMlFwWFhBVE1JcTJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi84MjRmNzgtZGVlMi00N2JjLWFmMmYtMzhjYjZlNDE2ZjNh
LzEveUh0WlRsNW5FNlc0Q2xTQnBjNXg1bExZUlhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYsJMA0G
CSqGSIb3DQEBCwUAA4IBAQBTi+I9KxQd69O3UfAVLkPpOq2ijO7TfT1/aSCslCk+
O49z8sM8taWWuRwvAmwR1iMUQviR6pxrfZLEBdCHA8rH9Cvu5BQw+9/rYRQUBUcP
QSXvcp2WA2wT9t09Jl+jMm/lypbWNv4SpcsA/+VIW1Z3fgh9u2KDyxY+aj+QYo/P
902bK/JjoP+Gi9+2LBhOx0P00Akei67pxEQ+C9T6I35nVMNzL7KpjQWLIz0uWPCy
2SZUwTZMH7O9+jVEsKrvFxFKYci8moqveSNd/RSFZ3cZmqn9BmseYHequFMVKrUS
N/85MgRu9McWHo5LwmVurXuOijFrPa+oGLh9Ge6FzrqF
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:14 2023 by rpki-client on console-ams.rpki-client.org