Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/d20fd2-072e-4752-afa4-0334ee1ef3ff/1/TpB1MJ800IZFjhzQnUpfB8a7INU.roa
File: TpB1MJ800IZFjhzQnUpfB8a7INU.roa (raw, json)
Hash identifier: 7SzIMqJ6md2dwobSwefP/XeqHCHSMuEVBxHURfd5pZw=
Subject key identifier: 4E:90:75:30:9F:34:D0:86:45:8E:1C:D0:9D:4A:5F:07:C6:BB:20:D5
Certificate issuer: /CN=18f003fba37b00d5f9ce7ec84a3e0668bcd02824
Certificate serial: 05733BEB
Authority key identifier: 18:F0:03:FB:A3:7B:00:D5:F9:CE:7E:C8:4A:3E:06:68:BC:D0:28:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GPAD-6N7ANX5zn7ISj4GaLzQKCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/d20fd2-072e-4752-afa4-0334ee1ef3ff/1/TpB1MJ800IZFjhzQnUpfB8a7INU.roa
Signing time: Sat 01 Jan 2022 14:07:41 +0000
ROA not before: Sat 01 Jan 2022 14:07:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48685
IP address blocks: 94.250.244.0/22 maxlen: 22
94.250.244.0/23 maxlen: 23
94.250.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91438059 (0x5733beb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18f003fba37b00d5f9ce7ec84a3e0668bcd02824
Validity
Not Before: Jan 1 14:07:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e9075309f34d086458e1cd09d4a5f07c6bb20d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ae:bc:b2:2f:86:f3:0f:9d:99:d0:0c:67:5a:
c6:06:9f:a7:a6:c1:d3:83:b9:87:fe:7b:b0:e5:85:
c0:e7:7a:71:ae:68:19:8a:66:e4:11:4f:e3:d8:d3:
cd:5d:de:c8:28:41:65:6f:02:6a:c3:c3:27:3c:af:
c0:a6:e4:7f:ea:d8:04:90:de:7f:ca:30:55:2e:1a:
47:98:d6:95:ba:e9:58:05:97:9f:c8:61:80:a1:71:
b7:ff:c9:49:c2:33:8a:2a:ee:b0:e2:ad:16:7b:b2:
6a:05:3a:1f:9e:0b:51:21:28:46:52:a7:23:1b:3e:
8c:6d:a6:9a:08:b2:24:8d:68:1f:6c:72:52:01:d9:
d0:88:71:48:a0:dd:21:c2:29:79:58:9d:67:88:e6:
90:7d:98:c3:12:36:bb:e6:1d:ef:77:f6:9a:c7:6f:
5b:d0:ee:3d:98:2e:83:12:03:2d:68:06:f4:74:65:
13:83:4d:d6:b6:a6:de:c2:d1:0c:40:ad:f6:b7:32:
7b:12:e5:d3:1f:d8:b0:b2:76:96:a2:d7:69:b2:e4:
5e:7d:9d:ae:fb:1f:1e:04:15:c3:11:c8:09:6b:e3:
7d:45:89:cf:fb:8f:f0:5c:97:b5:e9:52:77:1a:18:
3f:a5:98:d7:f6:27:52:dc:1d:c2:c0:99:ec:f1:a7:
5b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:90:75:30:9F:34:D0:86:45:8E:1C:D0:9D:4A:5F:07:C6:BB:20:D5
X509v3 Authority Key Identifier:
keyid:18:F0:03:FB:A3:7B:00:D5:F9:CE:7E:C8:4A:3E:06:68:BC:D0:28:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GPAD-6N7ANX5zn7ISj4GaLzQKCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/d20fd2-072e-4752-afa4-0334ee1ef3ff/1/TpB1MJ800IZFjhzQnUpfB8a7INU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/d20fd2-072e-4752-afa4-0334ee1ef3ff/1/GPAD-6N7ANX5zn7ISj4GaLzQKCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.250.244.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:3a:1c:02:1a:45:90:9a:83:3a:98:cc:aa:cf:3b:a1:c1:f3:
10:ad:82:e7:e6:7e:1b:08:1b:f7:5f:71:3f:de:3c:29:e6:65:
f6:74:41:95:68:24:4a:4c:46:79:d0:a0:01:3d:98:47:c0:15:
8d:ff:b1:3c:d3:b6:96:76:03:96:84:b0:0a:f8:87:45:b1:c0:
fb:85:2f:4a:42:e6:79:00:7b:78:18:3f:81:a2:eb:5b:97:2c:
0e:6e:36:ec:60:e3:a8:6c:c6:a1:c5:31:30:c8:97:da:87:71:
68:51:e8:02:d9:97:f7:95:e1:f8:9f:f5:37:ac:db:8d:67:47:
3e:e6:52:28:96:8d:67:00:bf:66:8c:34:ea:7a:08:6b:40:11:
77:c5:df:f7:d6:a6:88:fe:60:1c:93:6e:32:a3:f6:c9:28:c3:
70:c2:9e:66:2b:ea:8b:42:2d:31:89:12:ff:a3:fe:bc:c2:8d:
77:f1:2f:63:83:48:6b:a2:d1:7c:24:fd:b4:cc:41:04:36:04:
9e:00:56:aa:14:71:b5:6f:0c:2b:f8:2b:dd:3b:b1:40:f5:48:
39:0a:1c:0d:59:6c:be:c4:0e:2b:a4:d1:a8:a4:eb:3c:23:d9:
2e:a7:0b:0d:d9:f5:f6:3e:5c:5c:bc:06:ce:04:61:66:70:a3:
ed:b5:99:52
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBXM76zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
OGYwMDNmYmEzN2IwMGQ1ZjljZTdlYzg0YTNlMDY2OGJjZDAyODI0MB4XDTIyMDEw
MTE0MDc0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGU5MDc1MzA5ZjM0
ZDA4NjQ1OGUxY2QwOWQ0YTVmMDdjNmJiMjBkNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALeuvLIvhvMPnZnQDGdaxgafp6bB04O5h/57sOWFwOd6ca5o
GYpm5BFP49jTzV3eyChBZW8CasPDJzyvwKbkf+rYBJDef8owVS4aR5jWlbrpWAWX
n8hhgKFxt//JScIziirusOKtFnuyagU6H54LUSEoRlKnIxs+jG2mmgiyJI1oH2xy
UgHZ0IhxSKDdIcIpeVidZ4jmkH2YwxI2u+Yd73f2msdvW9DuPZgugxIDLWgG9HRl
E4NN1ram3sLRDECt9rcyexLl0x/YsLJ2lqLXabLkXn2drvsfHgQVwxHICWvjfUWJ
z/uP8FyXtelSdxoYP6WY1/YnUtwdwsCZ7PGnW38CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBROkHUwnzTQhkWOHNCdSl8Hxrsg1TAfBgNVHSMEGDAWgBQY8AP7o3sA1fnO
fshKPgZovNAoJDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dQQUQtNk43QU5YNXpuN0lTajRHYUx6UUtDUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWUvZDIwZmQyLTA3MmUtNDc1Mi1hZmE0LTAzMzRlZTFlZjNmZi8x
L1RwQjFNSjgwMElaRmpoelFuVXBmQjhhN0lOVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWUv
ZDIwZmQyLTA3MmUtNDc1Mi1hZmE0LTAzMzRlZTFlZjNmZi8xL0dQQUQtNk43QU5Y
NXpuN0lTajRHYUx6UUtDUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAl769DANBgkqhkiG9w0BAQsFAAOC
AQEAnzocAhpFkJqDOpjMqs87ocHzEK2C5+Z+Gwgb919xP948KeZl9nRBlWgkSkxG
edCgAT2YR8AVjf+xPNO2lnYDloSwCviHRbHA+4UvSkLmeQB7eBg/gaLrW5csDm42
7GDjqGzGocUxMMiX2odxaFHoAtmX95Xh+J/1N6zbjWdHPuZSKJaNZwC/Zow06noI
a0ARd8Xf99amiP5gHJNuMqP2ySjDcMKeZivqi0ItMYkS/6P+vMKNd/EvY4NIa6LR
fCT9tMxBBDYEngBWqhRxtW8MK/gr3TuxQPVIOQocDVlsvsQOK6TRqKTrPCPZLqcL
Ddn19j5cXLwGzgRhZnCj7bWZUg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:05 2024 by rpki-client on console-fra.rpki-client.org