Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/tLBI2Bysijj3tUnrvVUKiKSoUbE.roa
File: tLBI2Bysijj3tUnrvVUKiKSoUbE.roa (raw, json)
Hash identifier: o6yQ1Qecr/nUQbkZuybdTMgbb+6O4JjBK9a92vn2Esw=
Subject key identifier: B4:B0:48:D8:1C:AC:8A:38:F7:B5:49:EB:BD:55:0A:88:A4:A8:51:B1
Certificate issuer: /CN=f222fbe85ae408d377b217d4eba7b38b24baf5dd
Certificate serial: 02B408
Authority key identifier: F2:22:FB:E8:5A:E4:08:D3:77:B2:17:D4:EB:A7:B3:8B:24:BA:F5:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/tLBI2Bysijj3tUnrvVUKiKSoUbE.roa
Signing time: Wed 18 May 2022 07:20:17 +0000
ROA not before: Wed 18 May 2022 07:20:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25394
IP address blocks: 153.94.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177160 (0x2b408)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f222fbe85ae408d377b217d4eba7b38b24baf5dd
Validity
Not Before: May 18 07:20:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4b048d81cac8a38f7b549ebbd550a88a4a851b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d9:46:4f:04:8f:2c:d9:80:d9:44:70:26:63:
a0:16:44:6d:c6:99:d9:d2:aa:29:87:29:3b:23:6b:
cf:88:a4:03:90:01:0c:9d:6c:ec:35:7c:dc:ac:5b:
cb:88:a5:be:cf:6b:4d:b9:7d:af:5b:89:44:0d:8c:
4f:42:03:3b:c3:56:ff:88:ba:68:56:7c:8c:bc:39:
ba:8d:b1:08:e5:fe:b9:da:b1:09:22:55:4e:39:5a:
e9:3e:74:cf:7a:cc:34:6c:32:c9:d2:64:4b:a9:52:
dc:ed:39:ee:28:59:1d:ef:94:69:1a:05:38:30:fc:
64:2f:16:43:06:b2:27:9c:29:f1:93:e7:20:4d:3c:
7a:75:40:fa:4d:9d:a5:45:1f:01:d1:7d:3b:00:20:
87:df:f3:29:15:66:b2:12:4a:6d:f2:65:d3:53:fd:
4e:1d:10:3a:c2:b0:f2:83:32:6a:cd:d2:01:10:b8:
bd:85:d1:35:84:6d:90:10:fe:87:67:ce:3a:3e:6e:
01:a3:0c:4b:1a:b2:e6:3c:56:a4:c9:3f:8f:d7:b3:
09:2c:a1:39:90:a2:69:6b:d9:34:da:c8:1d:74:ad:
62:aa:87:cd:c1:e9:1a:fc:31:34:15:6e:b9:58:c0:
45:ac:03:04:ee:17:87:a3:71:c1:fc:90:07:fa:e7:
2d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:B0:48:D8:1C:AC:8A:38:F7:B5:49:EB:BD:55:0A:88:A4:A8:51:B1
X509v3 Authority Key Identifier:
keyid:F2:22:FB:E8:5A:E4:08:D3:77:B2:17:D4:EB:A7:B3:8B:24:BA:F5:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/tLBI2Bysijj3tUnrvVUKiKSoUbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
153.94.32.0/20
Signature Algorithm: sha256WithRSAEncryption
4c:4b:e5:b4:f4:44:98:4d:72:1e:d3:e6:c2:b9:34:65:ec:3b:
7e:dc:29:26:91:46:31:f3:31:23:5f:4f:12:1c:40:b7:b3:5f:
86:a5:01:b0:1f:74:85:27:8a:d7:59:10:ca:d5:dd:9d:e0:3f:
f1:af:66:a6:ee:7b:9c:f5:12:46:fe:a8:cf:b0:ab:e3:9e:ff:
e3:72:85:fd:01:36:6c:72:08:5a:3b:9b:78:47:cb:68:e0:c5:
c6:67:f7:3f:c7:f9:1a:4e:63:f2:0a:d9:40:92:40:c0:d4:0d:
c7:6a:8b:7d:a6:38:ff:e9:ca:8a:c4:a2:85:ae:29:09:30:98:
4c:a2:17:fc:f4:98:b5:76:b5:0d:f3:7c:74:d2:c7:cb:4f:ca:
c4:e3:7a:51:a9:3d:11:ed:1d:d0:4d:93:91:21:2a:e3:37:18:
18:82:b9:04:16:08:41:67:e9:33:74:b7:2c:8b:5a:48:8e:a7:
9a:e9:9e:35:ec:cb:c8:a5:60:52:7c:c9:39:a9:5b:61:c0:ff:
90:b4:4c:d0:a3:42:7f:d1:84:ba:a3:cf:da:9f:32:36:cc:97:
10:bb:c0:a6:46:cd:fe:d1:a2:20:e2:fe:c7:f2:57:61:9f:10:
5c:ef:5d:e5:72:43:e2:9d:3f:8e:a7:38:d4:9a:01:61:95:76:
31:84:d2:2c
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDArQIMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGYy
MjJmYmU4NWFlNDA4ZDM3N2IyMTdkNGViYTdiMzhiMjRiYWY1ZGQwHhcNMjIwNTE4
MDcyMDE3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiNGIwNDhkODFjYWM4
YTM4ZjdiNTQ5ZWJiZDU1MGE4OGE0YTg1MWIxMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAk9lGTwSPLNmA2URwJmOgFkRtxpnZ0qophyk7I2vPiKQDkAEM
nWzsNXzcrFvLiKW+z2tNuX2vW4lEDYxPQgM7w1b/iLpoVnyMvDm6jbEI5f652rEJ
IlVOOVrpPnTPesw0bDLJ0mRLqVLc7TnuKFkd75RpGgU4MPxkLxZDBrInnCnxk+cg
TTx6dUD6TZ2lRR8B0X07ACCH3/MpFWayEkpt8mXTU/1OHRA6wrDygzJqzdIBELi9
hdE1hG2QEP6HZ846Pm4BowxLGrLmPFakyT+P17MJLKE5kKJpa9k02sgddK1iqofN
weka/DE0FW65WMBFrAME7heHo3HB/JAH+uct9QIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFLSwSNgcrIo497VJ671VCoikqFGxMB8GA1UdIwQYMBaAFPIi++ha5AjTd7IX
1Ouns4skuvXdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
OGlMNzZGcmtDTk4zc2hmVTY2ZXppeVM2OWQwLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9mMi8xYWE4NzUtMDNiNS00YzE3LWJiMzktYjBjMWUzMzA0ZTc0LzEv
dExCSTJCeXNpamozdFVucnZWVUtpS1NvVWJFLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8x
YWE4NzUtMDNiNS00YzE3LWJiMzktYjBjMWUzMzA0ZTc0LzEvOGlMNzZGcmtDTk4z
c2hmVTY2ZXppeVM2OWQwLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEmV4gMA0GCSqGSIb3DQEBCwUAA4IB
AQBMS+W09ESYTXIe0+bCuTRl7Dt+3CkmkUYx8zEjX08SHEC3s1+GpQGwH3SFJ4rX
WRDK1d2d4D/xr2am7nuc9RJG/qjPsKvjnv/jcoX9ATZscghaO5t4R8to4MXGZ/c/
x/kaTmPyCtlAkkDA1A3Haot9pjj/6cqKxKKFrikJMJhMohf89Ji1drUN83x00sfL
T8rE43pRqT0R7R3QTZORISrjNxgYgrkEFghBZ+kzdLcsi1pIjqea6Z417MvIpWBS
fMk5qVthwP+QtEzQo0J/0YS6o8/anzI2zJcQu8CmRs3+0aIg4v7H8ldhnxBc713l
ckPinT+OpzjUmgFhlXYxhNIs
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:13 2024 by rpki-client on console-ams.rpki-client.org