Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/Tlz05lbrY6IaH4MWAthTOLNHARY.roa
File: Tlz05lbrY6IaH4MWAthTOLNHARY.roa (raw, json)
Hash identifier: Rg+hzZL8eO2FrUgj41wYUbGeNmBpjvfWZ1ThpqKqtw0=
Subject key identifier: 4E:5C:F4:E6:56:EB:63:A2:1A:1F:83:16:02:D8:53:38:B3:47:01:16
Certificate issuer: /CN=77e3c2900b599754283f27f3b4e8d7f6c4510972
Certificate serial: 01842E567A5DBBD5CEBFBA6DBF450AEE079B
Authority key identifier: 77:E3:C2:90:0B:59:97:54:28:3F:27:F3:B4:E8:D7:F6:C4:51:09:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-PCkAtZl1QoPyfztOjX9sRRCXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/Tlz05lbrY6IaH4MWAthTOLNHARY.roa
Signing time: Mon 31 Oct 2022 13:58:50 +0000
ROA not before: Mon 31 Oct 2022 13:58:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52214
IP address blocks: 46.226.210.0/24 maxlen: 24
46.226.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2e:56:7a:5d:bb:d5:ce:bf:ba:6d:bf:45:0a:ee:07:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77e3c2900b599754283f27f3b4e8d7f6c4510972
Validity
Not Before: Oct 31 13:58:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e5cf4e656eb63a21a1f831602d85338b3470116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a8:75:be:e0:36:3b:8a:6f:73:9d:a7:2e:a1:
e5:9e:30:b8:9c:79:f0:91:9b:11:db:0b:64:b1:c9:
88:a2:e2:95:f7:3c:bc:1b:e9:87:e6:13:29:ca:48:
7e:02:1a:75:c6:e0:47:ce:3f:80:a4:ca:61:e6:eb:
f0:f0:b6:1e:27:7e:41:3b:03:b7:b7:15:9d:9a:62:
b9:d9:1b:ed:15:7e:b3:ec:07:c4:b5:75:c5:95:fb:
7b:0a:1f:e7:7b:85:3d:58:c9:fb:54:dd:bb:be:85:
81:a1:0d:55:df:98:10:e6:ca:94:ed:52:a4:3c:b6:
cd:19:d9:b6:cf:50:53:9f:9e:3f:09:ae:a3:08:b9:
51:dd:6f:a6:70:01:56:c0:f0:7f:b3:10:bc:81:30:
af:ca:73:91:24:3c:ec:90:b7:c7:9b:fd:e1:de:bf:
70:2c:c2:8f:7d:55:df:01:93:c7:6d:d5:f5:99:01:
85:25:48:c1:8e:18:a8:8d:8d:f3:cf:46:83:0e:ed:
58:99:57:6b:6f:c7:d0:87:2e:77:5e:f9:4d:71:94:
7d:ab:12:8d:e1:85:02:06:72:bc:61:45:f7:8d:28:
9d:ad:0f:20:02:dd:79:4f:4c:d5:c2:3c:2f:a7:9b:
fe:3f:e5:ed:2b:2e:5c:08:1f:3a:e5:d9:09:be:a4:
29:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:5C:F4:E6:56:EB:63:A2:1A:1F:83:16:02:D8:53:38:B3:47:01:16
X509v3 Authority Key Identifier:
keyid:77:E3:C2:90:0B:59:97:54:28:3F:27:F3:B4:E8:D7:F6:C4:51:09:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-PCkAtZl1QoPyfztOjX9sRRCXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/Tlz05lbrY6IaH4MWAthTOLNHARY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/d-PCkAtZl1QoPyfztOjX9sRRCXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.208.0/21
Signature Algorithm: sha256WithRSAEncryption
a3:c8:4a:31:07:a6:07:37:c8:40:81:18:ff:af:73:bf:99:bc:
0c:0b:6e:a7:79:c3:09:0f:f4:36:32:75:1f:86:73:3e:70:d4:
5a:1b:21:bc:a0:fd:e1:9f:ff:cc:82:df:62:29:93:b3:9c:77:
11:af:23:45:9c:7a:03:79:cb:bb:fd:5c:62:f8:6e:c4:44:76:
3a:5b:bf:c0:bc:14:99:28:b5:6b:4a:b7:96:a4:0e:b0:39:12:
76:46:c7:d4:65:45:3d:4c:41:0b:b2:a8:6a:03:c4:15:80:22:
3b:3c:49:7e:cb:31:ba:31:34:04:d6:57:99:0f:09:9a:46:d0:
ad:0e:40:d6:26:bc:03:aa:51:28:91:87:f2:7c:98:98:b6:69:
6a:d4:31:bd:a0:52:b6:c8:bb:bb:7e:ae:a6:bb:c5:07:c2:ee:
ba:71:eb:f7:4a:82:6b:89:03:f0:bf:03:0a:b8:64:8c:d6:27:
68:c7:cc:b7:62:21:b8:90:42:09:16:a7:be:4c:c5:73:76:d7:
06:48:62:db:98:ae:12:b5:96:66:f4:e1:18:7b:cd:b0:2a:3a:
dd:e1:fe:30:22:fb:81:c7:0c:f0:a0:7c:60:5f:11:b1:e8:c6:
9a:e1:60:48:96:14:7e:63:c0:69:02:d6:73:51:fb:6f:37:3b:
45:6c:55:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:26 2024 by rpki-client on console-fra.rpki-client.org