Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/TpLbymPshVgnJnGdlOWnIhmRQz4.roa
File: TpLbymPshVgnJnGdlOWnIhmRQz4.roa (raw, json)
Hash identifier: 2GevxJrU38ocelDbI2w1o/YFO5cNZ/Xwuh6lE+G/ixk=
Subject key identifier: 4E:92:DB:CA:63:EC:85:58:27:26:71:9D:94:E5:A7:22:19:91:43:3E
Certificate issuer: /CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Certificate serial: 0AFD572F
Authority key identifier: C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/TpLbymPshVgnJnGdlOWnIhmRQz4.roa
Signing time: Tue 24 May 2022 08:41:13 +0000
ROA not before: Tue 24 May 2022 08:41:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8468
IP address blocks: 151.236.208.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184375087 (0xafd572f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Validity
Not Before: May 24 08:41:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e92dbca63ec85582726719d94e5a7221991433e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:17:3a:0b:b4:78:e3:55:7c:44:cb:0f:2a:cb:
92:50:f2:98:d3:32:68:11:f1:00:49:a2:99:fa:c1:
8f:74:53:4b:1f:0b:7f:74:e7:fc:f2:e2:2f:bd:c9:
22:d4:0b:9a:55:12:85:0b:bb:10:34:1a:9c:b7:95:
a8:6b:01:65:d3:88:e4:13:1a:0d:90:e7:28:f7:f4:
67:16:ef:73:c7:94:de:af:0b:b4:d9:75:36:77:be:
e9:8a:b2:86:87:94:14:1d:9f:8d:b0:50:09:cd:e9:
3a:0d:5b:95:9b:4a:06:d3:c6:10:e9:75:b8:24:b4:
9a:09:3f:24:2f:97:9e:e2:cd:95:6f:ba:2d:11:22:
d3:c1:b1:0d:a3:0c:99:2f:27:26:8d:87:91:28:e3:
1f:7a:e2:a8:60:14:1e:04:fb:ba:79:36:2d:f2:27:
3b:65:5a:5f:99:9c:c2:82:f7:0b:92:2c:5e:c7:56:
85:6a:6f:4c:2f:18:6a:13:41:28:26:a2:49:a3:b4:
cb:c4:97:ca:02:90:84:eb:33:31:67:f5:88:27:ff:
94:c0:e9:5e:c4:91:70:72:90:40:85:16:c3:e1:5a:
72:4b:f1:38:cf:14:87:5a:ff:c6:c8:77:7e:f3:c3:
37:16:53:4c:29:4a:95:42:bf:2a:38:ec:9b:aa:60:
7b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:92:DB:CA:63:EC:85:58:27:26:71:9D:94:E5:A7:22:19:91:43:3E
X509v3 Authority Key Identifier:
keyid:C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/TpLbymPshVgnJnGdlOWnIhmRQz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/yE1hzRftkuVLszl_HlprOQSsbwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.236.208.0/23
Signature Algorithm: sha256WithRSAEncryption
22:8e:9d:63:45:86:a5:e7:a4:4e:1c:94:58:0b:f7:2b:04:2c:
83:bf:78:36:35:ad:2a:92:ec:3d:9e:9d:0e:f6:26:96:ee:e3:
b2:c9:3e:40:5e:54:ca:9a:c9:93:7f:a0:a1:25:49:ba:29:8f:
ca:a2:ba:47:91:f1:1d:86:6d:e7:0a:d6:0d:94:3f:ec:de:6a:
69:0a:ac:ed:0e:0c:2e:8a:0c:a9:10:4c:35:f0:80:dd:b3:d9:
a5:fd:68:7e:4b:a0:d2:23:17:1b:b5:5c:8d:d7:7a:2d:d1:88:
75:f1:04:f5:18:f3:3b:7a:40:1d:7b:17:e3:45:b6:ce:e8:ed:
4e:74:d0:0d:3b:2f:9a:ad:eb:c8:3d:9a:c1:f1:1e:ca:46:55:
b8:68:6c:c8:96:6a:c9:31:5b:98:72:09:dc:5e:bb:f8:0e:42:
32:45:32:f2:ee:59:6d:4d:ff:e4:d3:4c:17:e6:a8:a2:65:f3:
f2:09:83:48:7f:c3:ff:af:fb:cb:87:25:f0:0e:02:9e:fb:30:
3b:ec:0b:da:52:ba:05:fe:bc:c3:36:88:3c:7f:84:5b:b6:16:
67:69:24:4a:c1:f3:af:7e:7a:b2:7d:ec:73:21:da:5a:4e:5b:
87:1d:fd:bd:fe:9d:90:c8:0c:88:49:f3:d9:51:8b:15:d8:dd:
0c:78:36:ae
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECv1XLzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ODRkNjFjZDE3ZWQ5MmU1NGJiMzM5N2YxZTVhNmIzOTA0YWM2ZjA1MB4XDTIyMDUy
NDA4NDExM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGU5MmRiY2E2M2Vj
ODU1ODI3MjY3MTlkOTRlNWE3MjIxOTkxNDMzZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALQXOgu0eONVfETLDyrLklDymNMyaBHxAEmimfrBj3RTSx8L
f3Tn/PLiL73JItQLmlUShQu7EDQanLeVqGsBZdOI5BMaDZDnKPf0Zxbvc8eU3q8L
tNl1Nne+6YqyhoeUFB2fjbBQCc3pOg1blZtKBtPGEOl1uCS0mgk/JC+XnuLNlW+6
LREi08GxDaMMmS8nJo2HkSjjH3riqGAUHgT7unk2LfInO2VaX5mcwoL3C5IsXsdW
hWpvTC8YahNBKCaiSaO0y8SXygKQhOszMWf1iCf/lMDpXsSRcHKQQIUWw+Fackvx
OM8Uh1r/xsh3fvPDNxZTTClKlUK/Kjjsm6pge18CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBROktvKY+yFWCcmcZ2U5aciGZFDPjAfBgNVHSMEGDAWgBTITWHNF+2S5Uuz
OX8eWms5BKxvBTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lFMWh6UmZ0a3VWTHN6bF9IbHByT1FTc2J3VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWEvODhlYWU4LTRiODYtNDM4OS1hYWRiLWMyNTc3OTJkYWRjNC8x
L1RwTGJ5bVBzaFZnbkpuR2RsT1duSWhtUlF6NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWEv
ODhlYWU4LTRiODYtNDM4OS1hYWRiLWMyNTc3OTJkYWRjNC8xL3lFMWh6UmZ0a3VW
THN6bF9IbHByT1FTc2J3VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZfs0DANBgkqhkiG9w0BAQsFAAOC
AQEAIo6dY0WGpeekThyUWAv3KwQsg794NjWtKpLsPZ6dDvYmlu7jssk+QF5UyprJ
k3+goSVJuimPyqK6R5HxHYZt5wrWDZQ/7N5qaQqs7Q4MLooMqRBMNfCA3bPZpf1o
fkug0iMXG7Vcjdd6LdGIdfEE9RjzO3pAHXsX40W2zujtTnTQDTsvmq3ryD2awfEe
ykZVuGhsyJZqyTFbmHIJ3F67+A5CMkUy8u5ZbU3/5NNMF+aoomXz8gmDSH/D/6/7
y4cl8A4CnvswO+wL2lK6Bf68wzaIPH+EW7YWZ2kkSsHzr356sn3scyHaWk5bhx39
vf6dkMgMiEnz2VGLFdjdDHg2rg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:38 2024 by rpki-client on console-ams.rpki-client.org