Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/2864c8-c042-428f-a02d-3b34c23b9c5a/1/TVl367S7vRxfymEgyt2R26bQFaw.roa
File: TVl367S7vRxfymEgyt2R26bQFaw.roa (raw, json)
Hash identifier: DyI4A8opQh/zre6w54rkbb5A/1SMbf1ljsifiD0M4i8=
Subject key identifier: 4D:59:77:EB:B4:BB:BD:1C:5F:CA:61:20:CA:DD:91:DB:A6:D0:15:AC
Certificate issuer: /CN=5d6c15ca903d7d25453eaeb5f724a04e3aa65908
Certificate serial: 14AEA293
Authority key identifier: 5D:6C:15:CA:90:3D:7D:25:45:3E:AE:B5:F7:24:A0:4E:3A:A6:59:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWwVypA9fSVFPq619ySgTjqmWQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/2864c8-c042-428f-a02d-3b34c23b9c5a/1/TVl367S7vRxfymEgyt2R26bQFaw.roa
Signing time: Sat 01 Jan 2022 09:59:31 +0000
ROA not before: Sat 01 Jan 2022 09:59:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6775
IP address blocks: 79.134.240.0/20 maxlen: 24
79.134.251.0/24 maxlen: 24
79.134.250.0/24 maxlen: 24
79.134.252.0/24 maxlen: 24
79.134.247.0/24 maxlen: 24
185.22.52.0/24 maxlen: 24
185.22.52.0/22 maxlen: 22
79.134.225.0/24 maxlen: 24
79.134.224.0/19 maxlen: 24
79.134.227.0/24 maxlen: 24
79.134.228.0/24 maxlen: 24
79.134.230.0/24 maxlen: 24
79.134.229.0/24 maxlen: 24
79.134.232.0/24 maxlen: 24
79.134.231.0/24 maxlen: 24
79.134.233.0/24 maxlen: 24
79.134.235.0/24 maxlen: 24
79.134.237.0/24 maxlen: 24
79.134.236.0/23 maxlen: 23
79.134.236.0/24 maxlen: 24
79.134.238.0/23 maxlen: 23
79.134.234.0/24 maxlen: 24
2a04:1d40::/29 maxlen: 29
2001:4b28::/32 maxlen: 32
2a04:1d40::/32 maxlen: 32
2a01:528::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 346989203 (0x14aea293)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d6c15ca903d7d25453eaeb5f724a04e3aa65908
Validity
Not Before: Jan 1 09:59:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d5977ebb4bbbd1c5fca6120cadd91dba6d015ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f5:53:76:83:f8:35:ef:90:d1:39:53:e1:ee:
f0:cf:1a:f1:b3:1e:14:83:77:cd:9c:6b:75:61:4f:
6c:ce:70:aa:10:88:26:05:55:db:16:1d:8b:5a:af:
8f:3a:86:47:3a:f6:2e:7b:4a:7c:2b:ea:7e:11:1a:
3a:c9:3e:e6:08:91:d6:ff:3e:57:e5:eb:d3:18:7e:
9d:26:7f:91:3d:44:c2:7f:f1:4b:28:59:27:04:9c:
0d:f0:5b:9a:8e:62:4d:17:1b:4d:46:6a:51:6c:bd:
a4:ce:50:1e:43:6f:aa:95:68:9d:03:c3:f6:24:6e:
af:65:5b:f6:43:67:cd:c8:90:d7:4b:82:f7:99:a1:
5d:8d:38:ce:70:94:47:af:92:e9:06:e7:88:5e:95:
4c:41:24:26:40:3a:d4:18:25:4c:ac:5a:8a:a4:42:
f2:a5:3d:38:6d:5b:74:d1:34:ae:5f:ae:f1:2c:fc:
d8:f5:ed:56:72:99:1e:5a:e6:c8:43:30:ca:cb:44:
c1:c9:df:0c:44:12:a4:77:7a:a0:d8:5f:4f:16:23:
4f:08:6d:93:ad:4b:c2:cb:a1:1b:16:6f:65:dd:e4:
a4:3e:fe:fe:7f:1a:37:b2:ca:c7:27:a7:dc:ba:e2:
8f:44:f1:a0:89:73:ab:d2:31:c2:e0:c3:9b:f5:bd:
08:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:59:77:EB:B4:BB:BD:1C:5F:CA:61:20:CA:DD:91:DB:A6:D0:15:AC
X509v3 Authority Key Identifier:
keyid:5D:6C:15:CA:90:3D:7D:25:45:3E:AE:B5:F7:24:A0:4E:3A:A6:59:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWwVypA9fSVFPq619ySgTjqmWQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2864c8-c042-428f-a02d-3b34c23b9c5a/1/TVl367S7vRxfymEgyt2R26bQFaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2864c8-c042-428f-a02d-3b34c23b9c5a/1/XWwVypA9fSVFPq619ySgTjqmWQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.134.224.0/19
185.22.52.0/22
IPv6:
2001:4b28::/32
2a01:528::/32
2a04:1d40::/29
Signature Algorithm: sha256WithRSAEncryption
30:e0:12:87:46:d2:8c:c2:f4:1a:ac:d7:31:5b:1c:11:86:42:
e8:dd:f7:c7:84:88:47:30:0e:48:37:f9:b0:6c:34:23:e4:6a:
07:6b:bb:0d:9b:c1:df:3b:81:03:62:aa:7f:51:61:4e:4e:66:
fa:88:f3:67:ee:96:53:c4:46:a3:dd:7e:ab:3d:ed:d1:1b:48:
bc:46:90:ea:76:1f:d2:76:20:09:3d:e4:73:4e:67:7a:8a:01:
ea:7d:a6:93:d4:21:ba:f6:a5:f2:eb:22:31:29:d0:97:3b:1c:
ee:ca:d8:a0:93:c9:41:19:97:e6:bd:10:11:d1:0d:4e:74:ff:
78:d9:65:38:6d:63:b7:e1:34:65:02:c0:8d:b3:7d:7a:f8:95:
cd:09:82:04:a7:0a:a0:98:bf:20:9a:3a:a9:95:26:7a:26:17:
e9:5f:ba:ba:e9:34:6d:67:73:50:27:a5:0f:5c:3d:e8:5c:3a:
ff:2a:b2:8d:e0:c2:ff:3a:8c:6e:25:80:e6:c5:c8:27:dd:03:
a3:ef:ca:72:65:ca:f5:8e:d1:48:c4:76:9a:d0:06:94:f9:8c:
cc:87:bf:f4:58:b5:b1:42:79:06:d5:f8:e7:08:0f:9f:23:57:
33:40:44:9e:71:ff:fa:50:60:95:92:dd:9b:3f:9c:0c:36:3d:
42:55:52:48
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgIEFK6ikzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZDZjMTVjYTkwM2Q3ZDI1NDUzZWFlYjVmNzI0YTA0ZTNhYTY1OTA4MB4XDTIyMDEw
MTA5NTkzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGQ1OTc3ZWJiNGJi
YmQxYzVmY2E2MTIwY2FkZDkxZGJhNmQwMTVhYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALn1U3aD+DXvkNE5U+Hu8M8a8bMeFIN3zZxrdWFPbM5wqhCI
JgVV2xYdi1qvjzqGRzr2LntKfCvqfhEaOsk+5giR1v8+V+Xr0xh+nSZ/kT1Ewn/x
SyhZJwScDfBbmo5iTRcbTUZqUWy9pM5QHkNvqpVonQPD9iRur2Vb9kNnzciQ10uC
95mhXY04znCUR6+S6QbniF6VTEEkJkA61BglTKxaiqRC8qU9OG1bdNE0rl+u8Sz8
2PXtVnKZHlrmyEMwystEwcnfDEQSpHd6oNhfTxYjTwhtk61LwsuhGxZvZd3kpD7+
/n8aN7LKxyen3Lrij0TxoIlzq9IxwuDDm/W9CI0CAwEAAaOCAiwwggIoMB0GA1Ud
DgQWBBRNWXfrtLu9HF/KYSDK3ZHbptAVrDAfBgNVHSMEGDAWgBRdbBXKkD19JUU+
rrX3JKBOOqZZCDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hXd1Z5cEE5ZlNWRlBxNjE5eVNnVGpxbVdRZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmQvMjg2NGM4LWMwNDItNDI4Zi1hMDJkLTNiMzRjMjNiOWM1YS8x
L1RWbDM2N1M3dlJ4ZnltRWd5dDJSMjZiUUZhdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmQv
Mjg2NGM4LWMwNDItNDI4Zi1hMDJkLTNiMzRjMjNiOWM1YS8xL1hXd1Z5cEE5ZlNW
RlBxNjE5eVNnVGpxbVdRZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBC
BggrBgEFBQcBBwEB/wQzMDEwEgQCAAEwDAMEBU+G4AMEArkWNDAbBAIAAjAVAwUA
IAFLKAMFACoBBSgDBQMqBB1AMA0GCSqGSIb3DQEBCwUAA4IBAQAw4BKHRtKMwvQa
rNcxWxwRhkLo3ffHhIhHMA5IN/mwbDQj5GoHa7sNm8HfO4EDYqp/UWFOTmb6iPNn
7pZTxEaj3X6rPe3RG0i8RpDqdh/SdiAJPeRzTmd6igHqfaaT1CG69qXy6yIxKdCX
Oxzuytigk8lBGZfmvRAR0Q1OdP942WU4bWO34TRlAsCNs316+JXNCYIEpwqgmL8g
mjqplSZ6JhfpX7q66TRtZ3NQJ6UPXD3oXDr/KrKN4ML/OoxuJYDmxcgn3QOj78py
Zcr1jtFIxHaa0AaU+YzMh7/0WLWxQnkG1fjnCA+fI1czQESecf/6UGCVkt2bP5wM
Nj1CVVJI
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:41 2024 by rpki-client on console-ams.rpki-client.org