Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/TvNCcVygmHJftyieTW86GZKZvu4.roa
File: TvNCcVygmHJftyieTW86GZKZvu4.roa (raw, json)
Hash identifier: cK60/V9W4mJAmvBoP3/Bcgf5l7e4I7V6VwcrxY6ADCU=
Subject key identifier: 4E:F3:42:71:5C:A0:98:72:5F:B7:28:9E:4D:6F:3A:19:92:99:BE:EE
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 0AC2BE25
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/TvNCcVygmHJftyieTW86GZKZvu4.roa
Signing time: Sat 01 Jan 2022 03:02:30 +0000
ROA not before: Sat 01 Jan 2022 03:02:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47952
IP address blocks: 185.185.235.0/24 maxlen: 24
193.35.206.0/24 maxlen: 24
193.35.205.0/24 maxlen: 24
193.35.204.0/24 maxlen: 24
193.35.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180534821 (0xac2be25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Jan 1 03:02:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ef342715ca098725fb7289e4d6f3a199299beee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:be:df:b3:94:cf:63:55:31:ff:1d:58:f1:27:
fb:c5:56:aa:7e:f0:6c:19:31:5a:f6:b2:74:0f:ac:
fb:ec:10:f0:a3:38:69:5e:fb:2c:af:27:f3:fc:4a:
6b:e1:bd:af:4a:38:f0:0d:2c:53:ba:d0:79:80:fd:
32:2d:fd:30:eb:e4:10:27:4c:aa:1b:1e:5c:d8:70:
a7:68:ed:66:63:b2:82:6d:f4:77:fa:74:11:6a:4c:
24:3d:02:03:3a:ce:db:66:fc:b0:6c:7e:c1:10:18:
c9:0a:05:92:c5:e1:4f:d5:51:d5:08:aa:3f:9b:66:
fb:58:19:9c:76:da:69:0b:78:be:91:64:3d:07:b4:
be:86:b8:e2:28:e6:0f:32:d4:98:fb:ff:1c:4c:89:
3e:55:b3:d1:73:d7:d3:ce:35:27:44:bb:92:15:c5:
24:04:de:19:a3:20:7a:d5:65:5f:b7:51:59:e4:58:
d6:76:41:38:47:9d:6a:03:84:b5:e3:ad:32:28:ee:
f4:40:a1:00:6a:87:f5:16:96:fe:56:9e:ca:dc:b3:
a2:e3:c0:5c:21:b7:ab:b9:17:14:f6:f6:fc:90:a8:
62:82:6d:b6:8a:f7:66:c7:ca:14:2e:95:69:c7:6e:
f3:73:2b:1b:d1:ca:75:ac:c4:65:77:05:c6:d2:2c:
3e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:F3:42:71:5C:A0:98:72:5F:B7:28:9E:4D:6F:3A:19:92:99:BE:EE
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/TvNCcVygmHJftyieTW86GZKZvu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.235.0/24
193.35.204.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:a6:dd:05:ed:da:30:1a:0e:26:af:70:d1:73:5d:3a:be:17:
40:85:bf:97:2b:f1:71:9f:01:e1:33:4b:94:bc:53:24:09:20:
6b:60:ae:20:e6:75:00:b5:ee:1b:f1:e2:70:99:13:6a:84:c3:
82:b3:19:32:e7:85:0f:8d:7b:af:1e:d9:a0:79:3f:9d:0d:56:
85:83:8a:39:c5:7e:3f:ba:ba:6e:c4:b3:d0:e8:dd:83:e4:13:
cb:e3:85:91:a5:25:0c:05:5e:af:f3:91:00:14:99:f3:41:71:
53:9f:31:bf:a8:e3:bb:ce:51:4a:69:ac:3a:fc:a6:44:4f:4f:
d8:6d:43:f7:df:94:d7:6a:f8:33:90:b4:07:ea:fe:c9:45:ea:
7c:a9:c8:db:3e:27:42:00:6f:59:b9:4d:b9:5e:9a:f0:c6:6d:
c8:ba:93:ba:cc:b6:97:03:31:3a:93:fe:a7:a4:57:fb:92:28:
61:e3:a2:ff:ab:cc:40:76:9d:b7:a2:39:0a:e2:08:b4:b3:38:
fd:5d:6e:5e:ce:94:73:b6:2e:4a:14:19:85:7a:15:ca:52:06:
40:00:73:0d:fa:0c:92:da:f8:ad:99:eb:90:15:67:b7:df:83:
11:60:d9:95:dd:29:85:04:8e:ec:be:37:92:0d:02:f1:d0:38:
9d:72:65:7e
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECsK+JTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NjE2YzQxOTUxNTJlZmZlZGJmN2IzYWZlZTJhYTcyZTE5MDkwZTRkMB4XDTIyMDEw
MTAzMDIzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGVmMzQyNzE1Y2Ew
OTg3MjVmYjcyODllNGQ2ZjNhMTk5Mjk5YmVlZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALe+37OUz2NVMf8dWPEn+8VWqn7wbBkxWvaydA+s++wQ8KM4
aV77LK8n8/xKa+G9r0o48A0sU7rQeYD9Mi39MOvkECdMqhseXNhwp2jtZmOygm30
d/p0EWpMJD0CAzrO22b8sGx+wRAYyQoFksXhT9VR1QiqP5tm+1gZnHbaaQt4vpFk
PQe0voa44ijmDzLUmPv/HEyJPlWz0XPX0841J0S7khXFJATeGaMgetVlX7dRWeRY
1nZBOEedagOEteOtMiju9EChAGqH9RaW/laeytyzouPAXCG3q7kXFPb2/JCoYoJt
tor3ZsfKFC6Vacdu83MrG9HKdazEZXcFxtIsPmUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRO80JxXKCYcl+3KJ5NbzoZkpm+7jAfBgNVHSMEGDAWgBTGFsQZUVLv/tv3
s6/uKqcuGQkOTTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hoYkVHVkZTN183Yjk3T3Y3aXFuTGhrSkRrMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDcvYWQ2NTIxLWQzYTktNGIxMy1iZTY5LTM5ZmRiOTg2ZjA1OS8x
L1R2TkNjVnlnbUhKZnR5aWVUVzg2R1pLWnZ1NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDcv
YWQ2NTIxLWQzYTktNGIxMy1iZTY5LTM5ZmRiOTg2ZjA1OS8xL3hoYkVHVkZTN183
Yjk3T3Y3aXFuTGhrSkRrMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEALm56wMEAsEjzDANBgkqhkiG9w0B
AQsFAAOCAQEAf6bdBe3aMBoOJq9w0XNdOr4XQIW/lyvxcZ8B4TNLlLxTJAkga2Cu
IOZ1ALXuG/HicJkTaoTDgrMZMueFD417rx7ZoHk/nQ1WhYOKOcV+P7q6bsSz0Ojd
g+QTy+OFkaUlDAVer/ORABSZ80FxU58xv6jju85RSmmsOvymRE9P2G1D99+U12r4
M5C0B+r+yUXqfKnI2z4nQgBvWblNuV6a8MZtyLqTusy2lwMxOpP+p6RX+5IoYeOi
/6vMQHadt6I5CuIItLM4/V1uXs6Uc7YuShQZhXoVylIGQABzDfoMktr4rZnrkBVn
t9+DEWDZld0phQSO7L43kg0C8dA4nXJlfg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:49 2024 by rpki-client on console-fra.rpki-client.org