Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/9a06b9-6bd5-4a75-a57b-bf3a717de744/1/TY98pL8GzxVd2DHlxNZWpcBKwIw.roa
File: TY98pL8GzxVd2DHlxNZWpcBKwIw.roa (raw, json)
Hash identifier: Ce3RRmVgMZs+HNIYcKvybZEJPgwOwaky8a61RHcBkQw=
Subject key identifier: 4D:8F:7C:A4:BF:06:CF:15:5D:D8:31:E5:C4:D6:56:A5:C0:4A:C0:8C
Certificate issuer: /CN=00b8d561fc8262d16b746dfaa374ec47466f5bc0
Certificate serial: E87BB0
Authority key identifier: 00:B8:D5:61:FC:82:62:D1:6B:74:6D:FA:A3:74:EC:47:46:6F:5B:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ALjVYfyCYtFrdG36o3TsR0ZvW8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/9a06b9-6bd5-4a75-a57b-bf3a717de744/1/TY98pL8GzxVd2DHlxNZWpcBKwIw.roa
Signing time: Sat 01 Jan 2022 05:59:53 +0000
ROA not before: Sat 01 Jan 2022 05:59:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60595
IP address blocks: 194.26.133.0/24 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15236016 (0xe87bb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00b8d561fc8262d16b746dfaa374ec47466f5bc0
Validity
Not Before: Jan 1 05:59:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d8f7ca4bf06cf155dd831e5c4d656a5c04ac08c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f8:71:af:2e:e0:b7:76:03:b8:03:47:84:0a:
1f:66:6e:53:7c:8b:92:f2:8b:24:12:3d:a8:12:cc:
35:8d:e2:74:5d:89:79:3e:f6:df:77:cc:aa:9b:3d:
4f:02:fd:ce:fd:69:88:0f:c3:1a:6c:05:c3:9a:ab:
03:54:a4:88:69:04:91:3b:68:8b:38:b0:96:4a:4e:
31:45:8b:7d:68:2c:d7:e7:44:c4:56:ef:dc:6b:eb:
aa:ae:e8:35:be:b1:dd:ac:85:fa:0f:e3:7f:2c:7e:
03:f1:0b:89:ae:49:8c:6a:39:0c:c3:86:a7:a9:e4:
7a:ca:02:ce:06:0e:62:e0:2c:c6:92:6e:82:ef:c3:
1f:97:65:d6:b6:78:4a:f6:ff:15:62:e2:64:10:0e:
d0:c6:b3:80:b3:60:7e:c3:25:4c:4f:f4:89:f9:22:
0a:71:aa:5e:c9:a8:ed:6e:88:c1:86:7a:86:bc:c8:
3d:ac:7e:73:15:93:70:cf:65:41:c2:8d:cd:c0:57:
cd:83:12:98:e7:5c:f0:43:d1:aa:b8:bd:0f:6b:67:
87:cd:d0:30:58:d0:e9:97:f4:e4:db:91:02:81:69:
31:5e:d2:af:61:a6:f1:ba:7d:ec:50:c1:4a:d6:46:
e3:ff:0e:b2:f1:33:cf:c1:19:0a:10:93:25:71:08:
40:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:8F:7C:A4:BF:06:CF:15:5D:D8:31:E5:C4:D6:56:A5:C0:4A:C0:8C
X509v3 Authority Key Identifier:
keyid:00:B8:D5:61:FC:82:62:D1:6B:74:6D:FA:A3:74:EC:47:46:6F:5B:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ALjVYfyCYtFrdG36o3TsR0ZvW8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9a06b9-6bd5-4a75-a57b-bf3a717de744/1/TY98pL8GzxVd2DHlxNZWpcBKwIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9a06b9-6bd5-4a75-a57b-bf3a717de744/1/ALjVYfyCYtFrdG36o3TsR0ZvW8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.133.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:e0:cc:a2:95:7d:03:c9:93:62:f1:56:9a:61:2f:2d:f9:9f:
76:8d:46:d2:23:c5:7a:e9:b0:89:df:8a:32:1d:0d:0e:7d:e6:
de:a3:0c:0d:30:2b:27:17:9d:cd:61:86:08:b6:22:ce:44:ea:
db:8b:0e:7d:76:75:1c:74:1a:94:c8:f8:4f:39:a7:f2:eb:5e:
dd:b2:10:46:44:8d:8a:6c:e5:41:ec:e9:05:95:a1:74:95:97:
a7:00:ac:3e:19:05:d0:3f:d7:1e:50:c3:8f:39:31:b8:55:ec:
b9:79:5e:03:fe:01:fa:1e:78:63:19:04:2e:b5:da:61:bd:e1:
33:4b:85:8c:93:e3:69:19:6a:ea:2a:0c:79:24:7c:cb:15:09:
56:50:ed:32:dd:a1:6f:3e:3d:60:37:34:b4:3c:b6:d9:ab:6a:
bb:b7:c0:53:65:ab:ab:cb:e7:68:46:a8:e9:11:bf:37:54:88:
b6:2e:23:fe:9f:77:9e:fc:69:6d:f0:34:0a:55:3e:8c:e2:aa:
a0:f6:b9:a5:05:3a:ae:14:1f:02:8e:46:6d:6c:e5:71:4f:6f:
05:5b:51:cf:0a:31:0f:37:49:41:0b:be:1d:58:cd:a2:bf:33:
06:71:35:05:dc:a9:17:86:fb:37:e2:e2:48:fc:18:ae:fe:1a:
22:95:10:a1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAOh7sDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MGI4ZDU2MWZjODI2MmQxNmI3NDZkZmFhMzc0ZWM0NzQ2NmY1YmMwMB4XDTIyMDEw
MTA1NTk1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGQ4ZjdjYTRiZjA2
Y2YxNTVkZDgzMWU1YzRkNjU2YTVjMDRhYzA4YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALL4ca8u4Ld2A7gDR4QKH2ZuU3yLkvKLJBI9qBLMNY3idF2J
eT7233fMqps9TwL9zv1piA/DGmwFw5qrA1SkiGkEkTtoiziwlkpOMUWLfWgs1+dE
xFbv3Gvrqq7oNb6x3ayF+g/jfyx+A/ELia5JjGo5DMOGp6nkesoCzgYOYuAsxpJu
gu/DH5dl1rZ4Svb/FWLiZBAO0MazgLNgfsMlTE/0ifkiCnGqXsmo7W6IwYZ6hrzI
Pax+cxWTcM9lQcKNzcBXzYMSmOdc8EPRqri9D2tnh83QMFjQ6Zf05NuRAoFpMV7S
r2Gm8bp97FDBStZG4/8OsvEzz8EZChCTJXEIQDECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRNj3ykvwbPFV3YMeXE1lalwErAjDAfBgNVHSMEGDAWgBQAuNVh/IJi0Wt0
bfqjdOxHRm9bwDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FMalZZZnlDWXRGcmRHMzZvM1RzUjBadlc4QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzUvOWEwNmI5LTZiZDUtNGE3NS1hNTdiLWJmM2E3MTdkZTc0NC8x
L1RZOThwTDhHenhWZDJESGx4TlpXcGNCS3dJdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzUv
OWEwNmI5LTZiZDUtNGE3NS1hNTdiLWJmM2E3MTdkZTc0NC8xL0FMalZZZnlDWXRG
cmRHMzZvM1RzUjBadlc4QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIahTANBgkqhkiG9w0BAQsFAAOC
AQEAo+DMopV9A8mTYvFWmmEvLfmfdo1G0iPFeumwid+KMh0NDn3m3qMMDTArJxed
zWGGCLYizkTq24sOfXZ1HHQalMj4Tzmn8ute3bIQRkSNimzlQezpBZWhdJWXpwCs
PhkF0D/XHlDDjzkxuFXsuXleA/4B+h54YxkELrXaYb3hM0uFjJPjaRlq6ioMeSR8
yxUJVlDtMt2hbz49YDc0tDy22atqu7fAU2Wrq8vnaEao6RG/N1SIti4j/p93nvxp
bfA0ClU+jOKqoPa5pQU6rhQfAo5GbWzlcU9vBVtRzwoxDzdJQQu+HVjNor8zBnE1
BdypF4b7N+LiSPwYrv4aIpUQoQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:40 2023 by rpki-client on console-ams.rpki-client.org