Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/T2nO25PVDJqDK8tzOgbewKtjZp0.roa
File: T2nO25PVDJqDK8tzOgbewKtjZp0.roa (raw, json)
Hash identifier: M1e4JWvjG9Ox7OQv2Jdybep9iSjRmyA/QYeL6tLTx5U=
Subject key identifier: 4F:69:CE:DB:93:D5:0C:9A:83:2B:CB:73:3A:06:DE:C0:AB:63:66:9D
Certificate issuer: /CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Certificate serial: 08FE8770
Authority key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/T2nO25PVDJqDK8tzOgbewKtjZp0.roa
Signing time: Fri 07 Jan 2022 04:16:41 +0000
ROA not before: Fri 07 Jan 2022 04:16:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35145
IP address blocks: 5.181.226.0/24 maxlen: 24
5.181.227.0/24 maxlen: 24
2a0e:800::/32 maxlen: 48
2a0e:802:1::/48 maxlen: 48
2a0e:801::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150898544 (0x8fe8770)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Validity
Not Before: Jan 7 04:16:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f69cedb93d50c9a832bcb733a06dec0ab63669d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ec:16:5e:38:4e:a6:50:78:7d:46:df:83:72:
0a:4c:f2:9f:9a:d0:8a:a7:45:b7:b0:3b:03:4e:b6:
46:31:c7:40:f4:2d:4a:76:1b:09:2d:41:ac:91:f1:
18:4b:11:fe:08:e0:a7:75:72:83:66:b0:2d:ef:fe:
76:5f:db:9c:e1:55:02:a7:7a:e5:7a:27:0a:0c:db:
b9:dc:63:57:54:8d:ee:45:32:10:61:a3:09:47:ca:
b8:a6:82:46:1f:81:d6:bb:69:bd:64:1d:d7:fc:fa:
9b:29:d1:c3:bc:c4:5a:9f:fd:db:3b:cb:a8:5d:e6:
20:dd:bd:92:11:6f:bf:1d:91:03:30:23:f3:54:24:
c0:e3:31:07:ff:a2:ea:63:83:f8:52:39:3c:74:fd:
79:7c:c2:6b:e6:56:38:40:6f:30:8f:29:90:af:a3:
1f:24:d9:6a:6b:1e:34:ab:67:e7:c2:3b:7d:34:bc:
a5:ed:1a:a6:bf:46:85:7c:40:54:49:38:e4:85:56:
e5:b7:9b:62:f1:62:ac:d2:96:92:6e:a6:00:43:7b:
26:11:a1:61:44:fc:39:ba:83:b6:1f:ef:92:fe:c1:
8a:2c:26:66:2c:59:ee:c5:58:cf:26:ab:e3:05:22:
ab:bb:c9:ed:92:f6:62:17:60:f1:b4:dd:b7:ff:a9:
f6:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:69:CE:DB:93:D5:0C:9A:83:2B:CB:73:3A:06:DE:C0:AB:63:66:9D
X509v3 Authority Key Identifier:
keyid:42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/T2nO25PVDJqDK8tzOgbewKtjZp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.226.0/23
IPv6:
2a0e:800::/31
2a0e:802:1::/48
Signature Algorithm: sha256WithRSAEncryption
3e:73:35:c8:e0:3c:b6:30:cb:03:71:63:ae:40:e5:a6:9e:7a:
43:34:3b:72:64:fa:9a:2f:68:e3:0c:3f:0a:d1:5e:3a:d1:83:
9f:21:4b:37:28:9c:b9:0a:cc:9e:ee:97:e1:cf:fe:c7:66:cb:
18:89:f2:26:18:8a:09:b2:1e:49:88:7e:25:ae:a9:ff:1a:99:
08:4d:4a:16:63:92:d3:6e:f4:87:17:12:e9:33:4e:d8:89:f6:
de:ff:e5:15:3b:3a:44:35:dd:c9:c8:35:fd:80:4c:8b:7e:8e:
26:fa:84:d7:14:3a:bc:cd:49:e6:6e:4f:7d:90:c9:e5:25:35:
89:3a:77:9d:b0:db:3e:00:80:2d:91:8b:7f:90:01:90:2a:8a:
9e:be:c1:e6:8e:ce:a3:e3:2e:49:59:c0:e6:58:1b:30:ab:11:
c0:0c:bd:50:d0:b9:d4:c4:59:30:28:ea:e0:93:f2:9c:91:f9:
5e:09:75:a8:f4:05:e1:9a:13:c6:14:d7:08:2c:bd:1a:30:f8:
9a:bd:fd:6b:3a:8d:e7:2e:19:fe:18:6b:69:e3:d9:18:d5:d3:
2a:0d:66:aa:9f:40:c4:5f:99:ca:8a:51:f4:e1:7c:0b:50:8b:
d6:3d:d4:b9:9a:f5:bd:00:fb:0a:b0:73:d5:b3:d3:51:07:13:
71:84:69:05
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIECP6HcDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MmNlNzU5MzIwMTk1YjljYzE4Y2NmY2IxYjUzMmFlYTk0OTI1OGYxMB4XDTIyMDEw
NzA0MTY0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGY2OWNlZGI5M2Q1
MGM5YTgzMmJjYjczM2EwNmRlYzBhYjYzNjY5ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALPsFl44TqZQeH1G34NyCkzyn5rQiqdFt7A7A062RjHHQPQt
SnYbCS1BrJHxGEsR/gjgp3Vyg2awLe/+dl/bnOFVAqd65XonCgzbudxjV1SN7kUy
EGGjCUfKuKaCRh+B1rtpvWQd1/z6mynRw7zEWp/92zvLqF3mIN29khFvvx2RAzAj
81QkwOMxB/+i6mOD+FI5PHT9eXzCa+ZWOEBvMI8pkK+jHyTZamseNKtn58I7fTS8
pe0apr9GhXxAVEk45IVW5bebYvFirNKWkm6mAEN7JhGhYUT8ObqDth/vkv7Biiwm
ZixZ7sVYzyar4wUiq7vJ7ZL2Yhdg8bTdt/+p9oECAwEAAaOCAiEwggIdMB0GA1Ud
DgQWBBRPac7bk9UMmoMry3M6Bt7Aq2NmnTAfBgNVHSMEGDAWgBRCznWTIBlbnMGM
z8sbUyrqlJJY8TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FzNTFreUFaVzV6QmpNX0xHMU1xNnBTU1dQRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvYTUyMDQ4LTEyY2EtNGEwMy05NWJlLTY5Nzk0OGVhNzFmNS8x
L1Qybk8yNVBWREpxREs4dHpPZ2Jld0t0alpwMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
YTUyMDQ4LTEyY2EtNGEwMy05NWJlLTY5Nzk0OGVhNzFmNS8xL1FzNTFreUFaVzV6
QmpNX0xHMU1xNnBTU1dQRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3
BggrBgEFBQcBBwEB/wQoMCYwDAQCAAEwBgMEAQW14jAWBAIAAjAQAwUBKg4IAAMH
ACoOCAIAATANBgkqhkiG9w0BAQsFAAOCAQEAPnM1yOA8tjDLA3FjrkDlpp56QzQ7
cmT6mi9o4ww/CtFeOtGDnyFLNyicuQrMnu6X4c/+x2bLGInyJhiKCbIeSYh+Ja6p
/xqZCE1KFmOS0270hxcS6TNO2In23v/lFTs6RDXdycg1/YBMi36OJvqE1xQ6vM1J
5m5PfZDJ5SU1iTp3nbDbPgCALZGLf5ABkCqKnr7B5o7Oo+MuSVnA5lgbMKsRwAy9
UNC51MRZMCjq4JPynJH5Xgl1qPQF4ZoTxhTXCCy9GjD4mr39azqN5y4Z/hhraePZ
GNXTKg1mqp9AxF+ZyopR9OF8C1CL1j3UuZr1vQD7CrBz1bPTUQcTcYRpBQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org