Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/TNQpWH7NrgE_VrXkP1IViusJbEA.roa
File: TNQpWH7NrgE_VrXkP1IViusJbEA.roa (raw, json)
Hash identifier: 3xG7mEvBmkOcUfv/DOMYPZjWQPSZqyk8WwPkfmga8ko=
Subject key identifier: 4C:D4:29:58:7E:CD:AE:01:3F:56:B5:E4:3F:52:15:8A:EB:09:6C:40
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B0670FE
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/TNQpWH7NrgE_VrXkP1IViusJbEA.roa
Signing time: Sat 01 Jan 2022 13:58:02 +0000
ROA not before: Sat 01 Jan 2022 13:58:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200289
IP address blocks: 85.31.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 721842430 (0x2b0670fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4cd429587ecdae013f56b5e43f52158aeb096c40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ae:30:61:d9:fc:38:e9:6d:6e:89:fd:d4:2b:
4a:9f:e4:1a:01:15:f6:ee:5a:74:34:30:08:8b:bc:
c5:88:a1:66:75:03:ab:a5:82:28:77:48:f5:2f:48:
92:4e:3f:e6:e7:96:e9:02:81:d8:a1:91:c1:41:6d:
82:8b:72:bc:d5:4b:02:e3:64:aa:d7:3a:f8:4a:96:
9f:2e:3d:5c:48:ab:dd:ed:db:9d:ca:c7:86:14:0e:
ad:d0:87:2b:dc:df:3d:be:ef:15:88:48:e3:28:74:
95:97:a1:f2:17:5d:b3:7a:61:ac:2e:82:00:42:2f:
b3:1f:7a:fb:89:9a:48:69:26:4f:4f:b3:f8:5f:13:
79:46:65:69:0c:4f:48:ea:73:8d:90:69:87:84:ec:
87:1b:b1:5f:e9:23:08:ac:f8:7f:6f:35:1c:51:45:
da:08:48:13:73:66:5c:80:e3:d9:24:2e:24:67:bd:
4c:b9:17:74:b0:01:e4:53:6c:67:4c:aa:28:4b:3e:
53:9f:5b:83:9a:c2:d5:84:09:9d:89:30:a0:cc:31:
42:cd:b5:0c:06:86:10:fc:4b:ab:50:08:fa:36:99:
10:d2:4c:cf:52:cf:2d:e8:29:23:e3:dc:66:0b:4d:
e3:93:39:51:c3:35:da:3d:0e:c7:c5:f9:0c:3f:88:
36:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:D4:29:58:7E:CD:AE:01:3F:56:B5:E4:3F:52:15:8A:EB:09:6C:40
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/TNQpWH7NrgE_VrXkP1IViusJbEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.31.245.0/24
Signature Algorithm: sha256WithRSAEncryption
69:a4:49:c6:42:54:6a:24:cc:31:29:9b:01:fe:4f:15:ac:a7:
68:4a:2c:41:6b:f8:6e:e5:10:4f:cf:66:be:18:c8:c6:12:c7:
c9:e7:88:ee:80:b5:eb:91:4e:e8:55:22:4f:7a:84:68:b5:69:
31:2c:a0:cb:2e:66:b4:48:53:02:d5:2d:c0:48:07:9b:a1:53:
15:57:0c:54:54:b7:58:05:cb:f8:ba:40:e7:11:71:9d:a6:59:
c4:35:be:be:31:4b:f4:20:fe:3a:f7:3d:f5:35:f7:11:0f:90:
12:bf:46:20:86:b7:71:fe:71:c4:13:2c:1e:c6:6f:39:78:ef:
12:cf:64:b3:b1:a1:cb:5f:f8:b5:5e:b7:67:1d:62:6c:51:f2:
a1:06:7f:1b:ed:4f:a9:a0:d8:b3:86:ba:7c:a5:76:fe:f8:b6:
9a:f6:4a:f4:65:ad:52:5d:f5:d3:bb:e9:75:54:c5:53:32:5b:
9d:80:d0:2c:c3:c7:0e:70:62:8b:df:8c:1d:19:9c:87:8b:7c:
fa:87:c8:d2:bb:b3:97:2d:ff:a3:2e:fb:01:c2:eb:47:98:e4:
82:ee:73:ca:bc:45:bc:3f:c0:ea:dc:5d:f7:03:05:ed:13:ae:
57:8a:f9:c7:f0:93:15:61:d2:6b:5a:b1:0e:78:d1:e5:3d:27:
19:94:83:6e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEKwZw/jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
OTk1NDQ5OTk3NzI3OGE3NTU3MGIzNDAzZjRkM2FhMDBiMWIzNmU4MB4XDTIyMDEw
MTEzNTgwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGNkNDI5NTg3ZWNk
YWUwMTNmNTZiNWU0M2Y1MjE1OGFlYjA5NmM0MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKuuMGHZ/DjpbW6J/dQrSp/kGgEV9u5adDQwCIu8xYihZnUD
q6WCKHdI9S9Ikk4/5ueW6QKB2KGRwUFtgotyvNVLAuNkqtc6+EqWny49XEir3e3b
ncrHhhQOrdCHK9zfPb7vFYhI4yh0lZeh8hdds3phrC6CAEIvsx96+4maSGkmT0+z
+F8TeUZlaQxPSOpzjZBph4TshxuxX+kjCKz4f281HFFF2ghIE3NmXIDj2SQuJGe9
TLkXdLAB5FNsZ0yqKEs+U59bg5rC1YQJnYkwoMwxQs21DAaGEPxLq1AI+jaZENJM
z1LPLegpI+PcZgtN45M5UcM12j0Ox8X5DD+INpsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRM1ClYfs2uAT9WteQ/UhWK6wlsQDAfBgNVHSMEGDAWgBS5lUSZl3J4p1Vw
s0A/TTqgCxs26DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VaVkVtWmR5ZUtkVmNMTkFQMDA2b0FzYk51Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDcvNzg4ODAzLWJlMTItNDMzZi1hOGQwLTAyNGIxNjU1YzI0Ny8x
L1ROUXBXSDdOcmdFX1ZyWGtQMUlWaXVzSmJFQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDcv
Nzg4ODAzLWJlMTItNDMzZi1hOGQwLTAyNGIxNjU1YzI0Ny8xL3VaVkVtWmR5ZUtk
VmNMTkFQMDA2b0FzYk51Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFUf9TANBgkqhkiG9w0BAQsFAAOC
AQEAaaRJxkJUaiTMMSmbAf5PFaynaEosQWv4buUQT89mvhjIxhLHyeeI7oC165FO
6FUiT3qEaLVpMSygyy5mtEhTAtUtwEgHm6FTFVcMVFS3WAXL+LpA5xFxnaZZxDW+
vjFL9CD+Ovc99TX3EQ+QEr9GIIa3cf5xxBMsHsZvOXjvEs9ks7Ghy1/4tV63Zx1i
bFHyoQZ/G+1PqaDYs4a6fKV2/vi2mvZK9GWtUl3107vpdVTFUzJbnYDQLMPHDnBi
i9+MHRmch4t8+ofI0ruzly3/oy77AcLrR5jkgu5zyrxFvD/A6txd9wMF7ROuV4r5
x/CTFWHSa1qxDnjR5T0nGZSDbg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org