Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/MbyhNvHNUvQ7RE00Y1ah0E3mhnQ.roa
File: MbyhNvHNUvQ7RE00Y1ah0E3mhnQ.roa (raw, json)
Hash identifier: TxOc7FaPciPjOPe7TCuOFpn0z/BWRlUgJ5Bt7JmJuZY=
Subject key identifier: 31:BC:A1:36:F1:CD:52:F4:3B:44:4D:34:63:56:A1:D0:4D:E6:86:74
Certificate issuer: /CN=99e7209a8c9b176fbf623edf3ee0b82007fc2c40
Certificate serial: 0183F53D324474721D6A7009D5C32FFEFD7C
Authority key identifier: 99:E7:20:9A:8C:9B:17:6F:BF:62:3E:DF:3E:E0:B8:20:07:FC:2C:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mecgmoybF2-_Yj7fPuC4IAf8LEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/MbyhNvHNUvQ7RE00Y1ah0E3mhnQ.roa
Signing time: Thu 20 Oct 2022 11:52:51 +0000
ROA not before: Thu 20 Oct 2022 11:52:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43612
IP address blocks: 146.255.94.0/23 maxlen: 23
31.11.64.0/21 maxlen: 21
217.16.88.0/22 maxlen: 22
217.16.94.0/24 maxlen: 24
217.16.92.0/23 maxlen: 23
31.11.80.0/21 maxlen: 21
212.110.92.0/23 maxlen: 23
146.255.75.0/24 maxlen: 24
146.255.73.0/24 maxlen: 24
146.255.74.0/24 maxlen: 24
94.100.96.0/20 maxlen: 20
185.80.164.0/22 maxlen: 22
185.100.245.0/24 maxlen: 24
185.100.244.0/24 maxlen: 24
185.5.4.0/22 maxlen: 22
217.196.192.0/20 maxlen: 20
31.11.120.0/21 maxlen: 21
188.44.2.0/24 maxlen: 24
188.44.7.0/24 maxlen: 24
188.44.6.0/24 maxlen: 24
78.157.0.0/19 maxlen: 22
31.3.94.0/24 maxlen: 24
31.3.93.0/24 maxlen: 24
109.69.40.0/21 maxlen: 21
178.249.112.0/21 maxlen: 21
185.89.246.0/23 maxlen: 24
185.89.244.0/22 maxlen: 22
92.53.0.0/18 maxlen: 23
78.157.16.0/22 maxlen: 22
2a01:b780::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f5:3d:32:44:74:72:1d:6a:70:09:d5:c3:2f:fe:fd:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99e7209a8c9b176fbf623edf3ee0b82007fc2c40
Validity
Not Before: Oct 20 11:52:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31bca136f1cd52f43b444d346356a1d04de68674
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b3:bd:b2:f6:ad:8c:9e:1b:28:c0:c0:4a:e9:
e1:f0:88:f3:96:c6:2e:e3:13:30:ab:df:d1:5b:2d:
5c:9c:3a:aa:44:51:56:82:cf:87:ba:bf:02:16:f9:
d5:c4:40:9c:bc:00:40:72:0d:a7:ef:73:cd:11:ac:
51:be:58:3d:ef:1a:3a:dd:cb:ea:80:e6:c8:2b:36:
f9:8e:df:6a:2d:f1:04:a4:cf:70:78:0b:4a:ab:c8:
f1:4f:df:a0:4c:ee:8e:cd:30:30:52:70:90:b3:31:
d4:61:57:5f:50:bd:17:c8:f3:bf:30:55:31:6f:c0:
85:64:5c:32:47:be:4e:d6:41:80:5c:78:6e:12:f6:
f5:1b:81:4a:c3:98:db:49:02:ae:db:e1:51:6f:9d:
29:49:db:e2:42:a3:c5:a6:d5:2c:ad:0b:79:df:c0:
7b:27:26:f4:57:48:2d:44:e7:df:5c:62:b2:9d:22:
c0:b7:ad:96:ce:47:6c:e8:57:25:73:34:ea:d7:91:
1a:32:f3:06:7d:06:1a:01:71:90:23:23:82:07:06:
ea:31:c0:df:d8:6d:c4:06:5a:6e:cd:e5:9b:19:35:
d3:ac:1a:9a:0e:f3:27:7f:d8:d0:cd:17:23:65:13:
cc:dd:d4:70:c7:30:58:83:66:ff:2f:9f:14:45:bc:
6d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:BC:A1:36:F1:CD:52:F4:3B:44:4D:34:63:56:A1:D0:4D:E6:86:74
X509v3 Authority Key Identifier:
keyid:99:E7:20:9A:8C:9B:17:6F:BF:62:3E:DF:3E:E0:B8:20:07:FC:2C:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mecgmoybF2-_Yj7fPuC4IAf8LEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/MbyhNvHNUvQ7RE00Y1ah0E3mhnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/mecgmoybF2-_Yj7fPuC4IAf8LEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.3.93.0-31.3.94.255
31.11.64.0/21
31.11.80.0/21
31.11.120.0/21
78.157.0.0/19
92.53.0.0/18
94.100.96.0/20
109.69.40.0/21
146.255.73.0-146.255.75.255
146.255.94.0/23
178.249.112.0/21
185.5.4.0/22
185.80.164.0/22
185.89.244.0/22
185.100.244.0/23
188.44.2.0/24
188.44.6.0/23
212.110.92.0/23
217.16.88.0-217.16.94.255
217.196.192.0/20
IPv6:
2a01:b780::/32
Signature Algorithm: sha256WithRSAEncryption
69:82:e5:79:2f:9b:d3:68:f6:ff:d8:99:08:48:f5:4c:71:b3:
ca:d5:ac:f4:30:15:94:8c:6b:b1:96:26:42:b7:b5:2d:97:4e:
11:24:03:59:b1:4b:fb:46:f3:7c:cf:71:37:31:6f:23:f6:a6:
a4:92:bf:bf:54:bc:6a:2f:62:30:8d:98:32:98:b2:6c:c6:24:
67:17:76:05:24:1e:8a:59:8d:60:62:75:c9:32:dc:f3:9a:96:
e1:e3:d9:ee:07:24:96:90:c7:7b:a3:d0:59:45:06:91:d8:e5:
dc:8d:c6:cd:96:21:0a:35:f2:f6:be:96:00:2e:65:71:76:6b:
1b:1f:11:16:9b:ef:fe:30:f8:e3:9b:5d:50:2f:39:8c:da:ff:
a0:bb:0b:78:7e:59:0e:8e:6c:80:b6:42:0b:c6:de:f4:38:7a:
a0:6c:23:62:70:78:28:f3:65:ce:63:3e:8f:5b:c4:0f:12:55:
5d:ae:93:e9:6f:7b:af:a5:0a:05:ad:9d:2e:62:52:f0:f6:20:
18:d8:11:ab:bc:06:1e:f8:3a:cd:bd:5f:df:b9:2f:cc:39:80:
65:9d:18:23:51:6c:ea:2f:74:54:cd:d0:f5:08:ad:d4:0d:64:
0b:93:67:a7:bb:4c:db:87:d5:49:6e:6d:30:ce:c1:55:de:77:
74:75:70:38
-----BEGIN CERTIFICATE-----
MIIFmzCCBIOgAwIBAgISAYP1PTJEdHIdanAJ1cMv/v18MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5ZTcyMDlhOGM5YjE3NmZiZjYyM2VkZjNlZTBiODIwMDdm
YzJjNDAwHhcNMjIxMDIwMTE1MjUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMWJjYTEzNmYxY2Q1MmY0M2I0NDRkMzQ2MzU2YTFkMDRkZTY4Njc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLO9svatjJ4bKMDASunh8IjzlsYu
4xMwq9/RWy1cnDqqRFFWgs+Hur8CFvnVxECcvABAcg2n73PNEaxRvlg97xo63cvq
gObIKzb5jt9qLfEEpM9weAtKq8jxT9+gTO6OzTAwUnCQszHUYVdfUL0XyPO/MFUx
b8CFZFwyR75O1kGAXHhuEvb1G4FKw5jbSQKu2+FRb50pSdviQqPFptUsrQt538B7
Jyb0V0gtROffXGKynSLAt62Wzkds6FclczTq15EaMvMGfQYaAXGQIyOCBwbqMcDf
2G3EBlpuzeWbGTXTrBqaDvMnf9jQzRcjZRPM3dRwxzBYg2b/L58URbxt6QIDAQAB
o4ICpzCCAqMwHQYDVR0OBBYEFDG8oTbxzVL0O0RNNGNWodBN5oZ0MB8GA1UdIwQY
MBaAFJnnIJqMmxdvv2I+3z7guCAH/CxAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWVjZ21veWJGMi1fWWo3ZlB1QzRJQWY4TEVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9lZjU4NTYtYmJjMC00NWE0LTg5MWUt
YjJkY2MxODYzZThiLzEvTWJ5aE52SE5VdlE3UkUwMFkxYWgwRTNtaG5RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9lZjU4NTYtYmJjMC00NWE0LTg5MWUtYjJkY2MxODYzZThi
LzEvbWVjZ21veWJGMi1fWWo3ZlB1QzRJQWY4TEVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG8BggrBgEFBQcBBwEB/wSBrDCBqTCBlwQCAAEwgZAwDAME
AB8DXQMEAB8DXgMEAx8LQAMEAx8LUAMEAx8LeAMEBU6dAAMEBlw1AAMEBF5kYAME
A21FKDAMAwQAkv9JAwQCkv9IAwQBkv9eAwQDsvlwAwQCuQUEAwQCuVCkAwQCuVn0
AwQBuWT0AwQAvCwCAwQBvCwGAwQB1G5cMAwDBAPZEFgDBADZEF4DBATZxMAwDQQC
AAIwBwMFACoBt4AwDQYJKoZIhvcNAQELBQADggEBAGmC5Xkvm9No9v/YmQhI9Uxx
s8rVrPQwFZSMa7GWJkK3tS2XThEkA1mxS/tG83zPcTcxbyP2pqSSv79UvGovYjCN
mDKYsmzGJGcXdgUkHopZjWBidcky3POaluHj2e4HJJaQx3uj0FlFBpHY5dyNxs2W
IQo18va+lgAuZXF2axsfERab7/4w+OObXVAvOYza/6C7C3h+WQ6ObIC2QgvG3vQ4
eqBsI2JweCjzZc5jPo9bxA8SVV2uk+lve6+lCgWtnS5iUvD2IBjYEau8Bh74Os29
X9+5L8w5gGWdGCNRbOovdFTN0PUIrdQNZAuTZ6e7TNuH1UlubTDOwVXed3R1cDg=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:32 2023 by rpki-client on console.sobornost.net