Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/mZ21rzvG_r92cygrmLafliULfAg.roa
File: mZ21rzvG_r92cygrmLafliULfAg.roa (raw, json)
Hash identifier: F79h3UyI2XPGBwuZY1DdK/gcvTcpsYy0euM8/UAY0ko=
Subject key identifier: 99:9D:B5:AF:3B:C6:FE:BF:76:73:28:2B:98:B6:9F:96:25:0B:7C:08
Certificate issuer: /CN=e760126dce78bc16e66c2e6e7635848ac46846af
Certificate serial: 01833BBB06EA73BDB52F1EF06C7D8E209BDF
Authority key identifier: E7:60:12:6D:CE:78:BC:16:E6:6C:2E:6E:76:35:84:8A:C4:68:46:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/52ASbc54vBbmbC5udjWEisRoRq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/mZ21rzvG_r92cygrmLafliULfAg.roa
Signing time: Wed 14 Sep 2022 11:20:56 +0000
ROA not before: Wed 14 Sep 2022 11:20:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 146.247.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3b:bb:06:ea:73:bd:b5:2f:1e:f0:6c:7d:8e:20:9b:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e760126dce78bc16e66c2e6e7635848ac46846af
Validity
Not Before: Sep 14 11:20:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=999db5af3bc6febf7673282b98b69f96250b7c08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:cf:fc:39:1a:5d:de:33:ad:09:5d:20:d7:6e:
aa:aa:4e:e2:ee:1d:7d:7c:14:5a:59:94:ba:80:38:
a2:19:d3:7c:98:66:1c:b0:1c:f8:65:77:8f:e4:9d:
00:2b:de:00:e7:6e:ac:97:eb:42:2f:7f:13:f9:cb:
d5:5c:7f:85:91:a3:1c:f2:ff:e2:9a:ee:18:66:12:
ff:f7:1e:4d:63:eb:e5:d8:97:5e:87:a9:a5:5e:70:
be:06:0c:d3:93:7c:e1:2d:5a:09:67:69:3b:fc:74:
a3:58:d7:f6:02:cd:c3:39:dc:77:b4:33:95:5f:b7:
88:7e:4d:07:9c:fa:5b:71:1e:04:e3:c7:90:2c:01:
be:95:45:0e:9d:f4:c5:27:d6:39:68:01:6b:39:d6:
dc:e3:1f:93:c1:e2:e4:9a:9e:a7:f1:4e:67:58:b1:
f7:80:e8:c6:10:ca:f1:5d:87:e0:f7:ae:a0:1c:9a:
b7:20:3d:0f:7b:ba:ca:f7:1e:47:07:65:a7:60:69:
41:fd:11:58:89:30:b9:6c:e3:dc:68:72:72:e8:5d:
08:65:ba:56:39:f5:35:5d:74:45:15:2e:5b:34:57:
77:9f:c0:d4:5e:85:90:a5:0a:16:3f:26:45:5a:e5:
59:5a:fc:6b:3a:69:e2:10:2c:83:20:ae:df:98:6c:
1d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:9D:B5:AF:3B:C6:FE:BF:76:73:28:2B:98:B6:9F:96:25:0B:7C:08
X509v3 Authority Key Identifier:
keyid:E7:60:12:6D:CE:78:BC:16:E6:6C:2E:6E:76:35:84:8A:C4:68:46:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/52ASbc54vBbmbC5udjWEisRoRq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/mZ21rzvG_r92cygrmLafliULfAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/52ASbc54vBbmbC5udjWEisRoRq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.247.101.0/24
Signature Algorithm: sha256WithRSAEncryption
41:55:59:96:14:c7:d3:f8:15:ca:f3:a2:e2:9e:fe:5c:8c:f5:
eb:24:b6:6a:b1:3b:74:f5:ce:ef:3d:f7:cb:a6:09:3b:7a:25:
d8:47:59:d6:22:a4:19:ac:cd:b0:10:52:18:61:66:c7:5b:22:
4a:9f:c9:50:7f:5a:2e:03:54:63:58:b2:23:65:fc:a3:f9:ae:
52:5b:41:4d:af:05:ef:17:56:2b:f1:ef:65:ed:51:1d:28:a5:
c0:df:13:01:dd:79:60:38:41:60:76:8e:90:b5:c1:8d:f7:1d:
24:de:ce:81:4b:f3:cd:f3:45:fc:fc:74:01:c3:f7:c4:b6:08:
4c:77:a2:c4:2a:ab:88:05:e5:3e:e6:9b:a8:66:ca:69:a6:af:
cc:42:8c:d4:46:3b:66:fa:03:b9:02:1d:b8:ac:72:2e:53:df:
93:e9:14:8a:99:39:44:6d:a8:05:78:1f:eb:c3:e4:96:0b:0b:
d7:01:27:a2:91:85:e4:ba:87:5a:7a:12:71:05:19:4e:4a:fc:
c3:93:ea:53:31:98:3b:d9:28:10:6b:ac:39:db:0e:c7:44:8f:
67:28:13:cb:83:a6:21:f1:94:97:a1:fc:1e:7c:d1:76:f1:90:
61:46:eb:8f:e5:9f:e5:37:a1:78:67:ac:36:53:d3:7c:78:fb:
96:66:af:5e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYM7uwbqc721Lx7wbH2OIJvfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3NjAxMjZkY2U3OGJjMTZlNjZjMmU2ZTc2MzU4NDhhYzQ2
ODQ2YWYwHhcNMjIwOTE0MTEyMDU2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OTlkYjVhZjNiYzZmZWJmNzY3MzI4MmI5OGI2OWY5NjI1MGI3YzA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2c/8ORpd3jOtCV0g126qqk7i7h19
fBRaWZS6gDiiGdN8mGYcsBz4ZXeP5J0AK94A526sl+tCL38T+cvVXH+FkaMc8v/i
mu4YZhL/9x5NY+vl2Jdeh6mlXnC+BgzTk3zhLVoJZ2k7/HSjWNf2As3DOdx3tDOV
X7eIfk0HnPpbcR4E48eQLAG+lUUOnfTFJ9Y5aAFrOdbc4x+TweLkmp6n8U5nWLH3
gOjGEMrxXYfg966gHJq3ID0Pe7rK9x5HB2WnYGlB/RFYiTC5bOPcaHJy6F0IZbpW
OfU1XXRFFS5bNFd3n8DUXoWQpQoWPyZFWuVZWvxrOmniECyDIK7fmGwdFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJmdta87xv6/dnMoK5i2n5YlC3wIMB8GA1UdIwQY
MBaAFOdgEm3OeLwW5mwubnY1hIrEaEavMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTJBU2JjNTR2QmJtYkM1dWRqV0Vpc1JvUnE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS80ODhmNjEtMmYwMC00NjM5LTk3Yjgt
ZDI0ZjU2MmRlZGQyLzEvbVoyMXJ6dkdfcjkyY3lncm1MYWZsaVVMZkFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS80ODhmNjEtMmYwMC00NjM5LTk3YjgtZDI0ZjU2MmRlZGQy
LzEvNTJBU2JjNTR2QmJtYkM1dWRqV0Vpc1JvUnE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkvdlMA0G
CSqGSIb3DQEBCwUAA4IBAQBBVVmWFMfT+BXK86Linv5cjPXrJLZqsTt09c7vPffL
pgk7eiXYR1nWIqQZrM2wEFIYYWbHWyJKn8lQf1ouA1RjWLIjZfyj+a5SW0FNrwXv
F1Yr8e9l7VEdKKXA3xMB3XlgOEFgdo6QtcGN9x0k3s6BS/PN80X8/HQBw/fEtghM
d6LEKquIBeU+5puoZspppq/MQozURjtm+gO5Ah24rHIuU9+T6RSKmTlEbagFeB/r
w+SWCwvXASeikYXkuodaehJxBRlOSvzDk+pTMZg72SgQa6w52w7HRI9nKBPLg6Yh
8ZSXofwefNF28ZBhRuuP5Z/lN6F4Z6w2U9N8ePuWZq9e
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:43 2023 by rpki-client on console-fra.rpki-client.org