Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/TLQOLPQKQFDV3f97ApG9BzRRKU4.roa
File: TLQOLPQKQFDV3f97ApG9BzRRKU4.roa (raw, json)
Hash identifier: Gmvn212wHlzDV+xS0suQuCXC5q75LigqEkNBSv72Q8w=
Subject key identifier: 4C:B4:0E:2C:F4:0A:40:50:D5:DD:FF:7B:02:91:BD:07:34:51:29:4E
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 1BA49D8B
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/TLQOLPQKQFDV3f97ApG9BzRRKU4.roa
Signing time: Sat 01 Jan 2022 05:03:45 +0000
ROA not before: Sat 01 Jan 2022 05:03:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206070
IP address blocks: 64.43.73.0/24 maxlen: 24
77.36.62.0/23 maxlen: 24
91.246.200.0/24 maxlen: 24
93.120.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 463773067 (0x1ba49d8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Jan 1 05:03:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4cb40e2cf40a4050d5ddff7b0291bd073451294e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4b:78:3e:0e:68:f5:82:38:45:9f:0d:5d:29:
c5:4e:59:9b:83:81:a4:a5:23:cb:1d:b3:7a:00:1d:
19:30:6d:63:12:36:20:61:98:2f:ac:86:53:07:57:
85:63:0b:65:8e:45:34:4c:87:dc:84:8b:83:e6:8b:
68:5c:ed:21:8d:90:e3:bd:5a:a5:d9:90:fe:42:de:
ad:fc:6f:bb:c7:a2:f6:b5:35:43:50:e8:f8:07:46:
a2:a3:d0:d8:41:82:64:20:de:4f:a3:81:86:6b:be:
51:3e:89:a8:89:e5:7b:c7:c4:29:43:a6:7b:b3:a4:
cb:c7:55:7a:bc:3a:57:68:2c:e2:52:ae:52:38:3f:
59:eb:55:8e:d6:f4:e5:eb:a8:21:f1:91:a3:66:62:
02:70:ad:69:07:62:45:ff:2a:26:a1:55:10:2c:8f:
de:13:e6:52:24:59:0c:75:18:d7:fb:a4:f3:a5:4e:
b1:e8:4e:bd:b8:f8:26:04:47:cc:09:2a:a3:06:23:
6d:3b:21:54:dc:09:b9:05:1f:16:92:9c:3d:43:ae:
16:08:f4:e6:3d:55:5c:bd:c6:94:08:30:8e:26:fe:
3c:e7:37:05:2e:e4:91:4d:3c:82:20:68:84:df:22:
7d:cf:a7:3e:31:7f:b4:d4:15:c2:bc:72:ed:36:24:
9e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B4:0E:2C:F4:0A:40:50:D5:DD:FF:7B:02:91:BD:07:34:51:29:4E
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/TLQOLPQKQFDV3f97ApG9BzRRKU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.43.73.0/24
77.36.62.0/23
91.246.200.0/24
93.120.43.0/24
Signature Algorithm: sha256WithRSAEncryption
25:6b:10:5f:77:20:f0:c6:07:c9:26:b5:09:de:3e:71:19:95:
64:b6:3b:3f:f0:53:81:19:39:67:97:24:73:62:92:b4:0c:c5:
bc:8c:07:f5:21:2b:1d:19:9c:b5:81:45:b1:12:6d:eb:92:55:
69:02:8c:51:ee:46:84:cf:d0:23:4c:44:62:56:d1:15:f5:a5:
6f:a6:05:28:b8:31:94:80:5f:13:21:54:00:d4:4b:32:a2:0e:
c9:c7:93:93:2b:30:cf:88:4d:05:ad:57:aa:d8:cf:11:91:bb:
6a:04:b4:de:f5:2d:20:69:ae:b1:7b:22:9a:90:08:e1:ee:3d:
16:74:fc:68:6c:21:c4:7b:16:1e:ce:9a:b3:74:7a:d1:3f:93:
fb:5f:fe:e1:ca:64:6a:44:5d:c9:94:cd:7f:f3:12:b4:e7:50:
85:a8:f8:9d:7d:ed:40:b9:86:37:1a:6e:ab:a9:e5:4e:03:ad:
57:fb:33:bd:78:07:a4:51:b7:c6:a2:bf:d7:93:e2:d1:01:34:
d6:3e:36:7f:36:13:22:4e:7d:6c:78:fd:80:a1:19:cd:0a:31:
e1:e2:79:d1:a3:a6:8b:30:b2:34:16:c3:78:d6:f4:c4:be:8d:
48:ea:91:79:89:0f:01:d6:e1:e9:d5:b4:2d:0a:6a:d8:5d:c1:
e4:b1:9e:4c
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgIEG6SdizANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NDljYmJkNWMyY2Y0MTk1Y2M2ZWM3ZjIxZjYwNzU4MWEwMjI0ZGFhMB4XDTIyMDEw
MTA1MDM0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGNiNDBlMmNmNDBh
NDA1MGQ1ZGRmZjdiMDI5MWJkMDczNDUxMjk0ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM5LeD4OaPWCOEWfDV0pxU5Zm4OBpKUjyx2zegAdGTBtYxI2
IGGYL6yGUwdXhWMLZY5FNEyH3ISLg+aLaFztIY2Q471apdmQ/kLerfxvu8ei9rU1
Q1Do+AdGoqPQ2EGCZCDeT6OBhmu+UT6JqInle8fEKUOme7Oky8dVerw6V2gs4lKu
Ujg/WetVjtb05euoIfGRo2ZiAnCtaQdiRf8qJqFVECyP3hPmUiRZDHUY1/uk86VO
sehOvbj4JgRHzAkqowYjbTshVNwJuQUfFpKcPUOuFgj05j1VXL3GlAgwjib+POc3
BS7kkU08giBohN8ifc+nPjF/tNQVwrxy7TYknicCAwEAAaOCAhswggIXMB0GA1Ud
DgQWBBRMtA4s9ApAUNXd/3sCkb0HNFEpTjAfBgNVHSMEGDAWgBQ0nLvVws9Blcxu
x/IfYHWBoCJNqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05KeTcxY0xQUVpYTWJzZnlIMkIxZ2FBaVRhby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmQvY2RmNWY2LTJmMTgtNDJjNy05MzBlLWRjMDZkZDgwNTk2MC8x
L1RMUU9MUFFLUUZEVjNmOTdBcEc5QnpSUktVNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmQv
Y2RmNWY2LTJmMTgtNDJjNy05MzBlLWRjMDZkZDgwNTk2MC8xL05KeTcxY0xQUVpY
TWJzZnlIMkIxZ2FBaVRhby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAx
BggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAEArSQMEAU0kPgMEAFv2yAMEAF14
KzANBgkqhkiG9w0BAQsFAAOCAQEAJWsQX3cg8MYHySa1Cd4+cRmVZLY7P/BTgRk5
Z5ckc2KStAzFvIwH9SErHRmctYFFsRJt65JVaQKMUe5GhM/QI0xEYlbRFfWlb6YF
KLgxlIBfEyFUANRLMqIOyceTkyswz4hNBa1XqtjPEZG7agS03vUtIGmusXsimpAI
4e49FnT8aGwhxHsWHs6as3R60T+T+1/+4cpkakRdyZTNf/MStOdQhaj4nX3tQLmG
Nxpuq6nlTgOtV/szvXgHpFG3xqK/15Pi0QE01j42fzYTIk59bHj9gKEZzQox4eJ5
0aOmizCyNBbDeNb0xL6NSOqReYkPAdbh6dW0LQpq2F3B5LGeTA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:48 2024 by rpki-client on console-ams.rpki-client.org