Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/tqle-TJsvNWZW7dTY17OLUJj1tg.roa
File: tqle-TJsvNWZW7dTY17OLUJj1tg.roa (raw, json)
Hash identifier: r/FNwoRKwsQ5rcR6kq5BC9DuzcEx+jzudKbPF8zCKjQ=
Subject key identifier: B6:A9:5E:F9:32:6C:BC:D5:99:5B:B7:53:63:5E:CE:2D:42:63:D6:D8
Certificate issuer: /CN=d2a4452602c9df977c9d5dd8dc13b6661df40136
Certificate serial: 10C671C4
Authority key identifier: D2:A4:45:26:02:C9:DF:97:7C:9D:5D:D8:DC:13:B6:66:1D:F4:01:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/tqle-TJsvNWZW7dTY17OLUJj1tg.roa
Signing time: Sat 01 Jan 2022 06:01:59 +0000
ROA not before: Sat 01 Jan 2022 06:01:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200707
IP address blocks: 185.98.176.0/23 maxlen: 23
2a00:8000::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281440708 (0x10c671c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a4452602c9df977c9d5dd8dc13b6661df40136
Validity
Not Before: Jan 1 06:01:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6a95ef9326cbcd5995bb753635ece2d4263d6d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e0:41:96:a6:28:b8:b4:92:47:6b:3a:a0:d1:
23:22:7f:84:63:62:9d:17:72:59:11:99:7a:0b:38:
9a:17:8d:09:60:00:bf:03:44:56:66:31:c5:bc:4e:
45:88:d0:ca:97:69:22:65:61:05:86:6e:62:cb:48:
1e:3d:51:84:22:7a:58:2b:f4:da:02:54:d9:67:2b:
12:ff:20:ba:42:11:89:75:20:94:c2:e6:e2:e0:fa:
97:e9:eb:a1:c9:95:27:28:b6:9a:20:68:38:3a:12:
98:c1:5a:6a:1d:e0:2f:87:12:34:a1:f9:b0:26:c5:
18:11:0c:0c:3e:c1:fa:bb:c8:e0:84:fe:e3:30:bd:
ff:86:3c:b4:18:fb:36:e1:10:3e:26:c1:e7:82:b7:
b7:cc:e0:c0:2c:22:d3:96:5a:d3:db:cd:3a:6f:c2:
d9:b4:b5:0a:d5:4e:72:45:84:4f:9d:ab:e0:b1:25:
ca:8b:df:00:31:f5:7a:4c:85:09:f7:b5:d2:2e:b4:
5c:b3:ed:55:e1:7e:d2:0a:2f:db:5f:8d:12:3c:c6:
08:14:07:2c:07:17:3a:1f:46:0a:3a:f4:bd:2c:bb:
fa:0f:b9:fb:00:57:a2:6e:4e:72:67:a8:f5:1f:bf:
2e:c7:4d:96:98:da:2b:61:f0:ed:c1:d3:09:49:96:
33:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:A9:5E:F9:32:6C:BC:D5:99:5B:B7:53:63:5E:CE:2D:42:63:D6:D8
X509v3 Authority Key Identifier:
keyid:D2:A4:45:26:02:C9:DF:97:7C:9D:5D:D8:DC:13:B6:66:1D:F4:01:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/tqle-TJsvNWZW7dTY17OLUJj1tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.176.0/23
IPv6:
2a00:8000::/32
Signature Algorithm: sha256WithRSAEncryption
32:62:b8:be:52:81:99:b7:da:a1:25:5f:a6:9c:4d:17:a7:69:
82:b6:61:36:5b:6f:05:a8:0e:db:f2:ce:f8:3b:97:11:c6:05:
a9:49:18:17:27:06:77:cc:05:a4:fe:8c:23:5d:57:f1:8c:cf:
25:d2:c1:9a:09:21:66:3c:c2:04:56:cd:b2:1d:71:87:46:74:
28:69:f6:1a:9d:17:70:14:18:8a:81:8e:09:08:b5:b0:4a:db:
ec:13:9c:b8:3b:4d:1e:de:4e:97:48:f2:76:7a:9d:ae:a5:ae:
7f:49:04:ef:15:1d:33:e7:41:0a:80:f0:92:77:65:bf:43:d7:
d1:67:d8:86:bb:ab:83:ce:ec:e3:62:c1:f9:75:78:4c:d5:a7:
ce:88:04:fe:d9:e7:2a:16:ee:94:70:d9:00:50:11:45:db:95:
61:8e:3e:17:fb:1a:0a:e7:12:44:20:fe:a8:74:df:ab:f8:15:
08:83:27:42:95:c0:03:0f:a4:63:e1:f9:ab:a7:9e:32:93:8e:
0a:a5:5e:fd:62:02:7b:d4:a8:2f:39:1c:d7:bd:4f:2c:c4:80:
ad:8c:54:59:75:ce:d6:7e:77:cf:6f:ec:f9:0f:b9:0c:db:78:
7e:5b:7c:96:b1:69:fc:e7:47:70:9a:7f:12:40:51:1f:7c:da:
e9:3f:e7:cc
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEEMZxxDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MmE0NDUyNjAyYzlkZjk3N2M5ZDVkZDhkYzEzYjY2NjFkZjQwMTM2MB4XDTIyMDEw
MTA2MDE1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjZhOTVlZjkzMjZj
YmNkNTk5NWJiNzUzNjM1ZWNlMmQ0MjYzZDZkODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMXgQZamKLi0kkdrOqDRIyJ/hGNinRdyWRGZegs4mheNCWAA
vwNEVmYxxbxORYjQypdpImVhBYZuYstIHj1RhCJ6WCv02gJU2WcrEv8gukIRiXUg
lMLm4uD6l+nrocmVJyi2miBoODoSmMFaah3gL4cSNKH5sCbFGBEMDD7B+rvI4IT+
4zC9/4Y8tBj7NuEQPibB54K3t8zgwCwi05Za09vNOm/C2bS1CtVOckWET52r4LEl
yovfADH1ekyFCfe10i60XLPtVeF+0gov21+NEjzGCBQHLAcXOh9GCjr0vSy7+g+5
+wBXom5Ocmeo9R+/LsdNlpjaK2Hw7cHTCUmWM2cCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBS2qV75Mmy81Zlbt1NjXs4tQmPW2DAfBgNVHSMEGDAWgBTSpEUmAsnfl3yd
XdjcE7ZmHfQBNjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBxUkZKZ0xKMzVkOG5WM1kzQk8yWmgzMEFUWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmMvZDVmZDk5LThhZTAtNGFlMC1iNmI0LWZlNzRlZjdhYWM5NS8x
L3RxbGUtVEpzdk5XWlc3ZFRZMTdPTFVKajF0Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmMv
ZDVmZDk5LThhZTAtNGFlMC1iNmI0LWZlNzRlZjdhYWM5NS8xLzBxUkZKZ0xKMzVk
OG5WM1kzQk8yWmgzMEFUWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAblisDANBAIAAjAHAwUAKgCAADAN
BgkqhkiG9w0BAQsFAAOCAQEAMmK4vlKBmbfaoSVfppxNF6dpgrZhNltvBagO2/LO
+DuXEcYFqUkYFycGd8wFpP6MI11X8YzPJdLBmgkhZjzCBFbNsh1xh0Z0KGn2Gp0X
cBQYioGOCQi1sErb7BOcuDtNHt5Ol0jydnqdrqWuf0kE7xUdM+dBCoDwkndlv0PX
0WfYhrurg87s42LB+XV4TNWnzogE/tnnKhbulHDZAFARRduVYY4+F/saCucSRCD+
qHTfq/gVCIMnQpXAAw+kY+H5q6eeMpOOCqVe/WICe9SoLzkc171PLMSArYxUWXXO
1n53z2/s+Q+5DNt4flt8lrFp/OdHcJp/EkBRH3za6T/nzA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:49 2024 by rpki-client on console-fra.rpki-client.org