Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/97b0b7-013d-433e-b538-a84eb411ef8a/1/TqL8GDD_Shcl7YKoc7zQL1cCTbI.roa
File: TqL8GDD_Shcl7YKoc7zQL1cCTbI.roa (raw, json)
Hash identifier: 6z8IN7N2FXuB2OOIt1QGwsu8lEWuZolGAAnpQoE9GiQ=
Subject key identifier: 4E:A2:FC:18:30:FF:4A:17:25:ED:82:A8:73:BC:D0:2F:57:02:4D:B2
Certificate issuer: /CN=c0a233590de586e0c55821c6f6d5732afc841229
Certificate serial: 0A5F1C6D
Authority key identifier: C0:A2:33:59:0D:E5:86:E0:C5:58:21:C6:F6:D5:73:2A:FC:84:12:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wKIzWQ3lhuDFWCHG9tVzKvyEEik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/97b0b7-013d-433e-b538-a84eb411ef8a/1/TqL8GDD_Shcl7YKoc7zQL1cCTbI.roa
Signing time: Fri 10 Jun 2022 07:30:02 +0000
ROA not before: Fri 10 Jun 2022 07:30:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57630
IP address blocks: 134.65.164.0/22 maxlen: 22
31.12.80.0/22 maxlen: 22
5.152.152.0/23 maxlen: 23
2a02:7e00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174005357 (0xa5f1c6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0a233590de586e0c55821c6f6d5732afc841229
Validity
Not Before: Jun 10 07:30:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ea2fc1830ff4a1725ed82a873bcd02f57024db2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:27:13:8e:3c:bf:cb:9e:ee:d5:58:b9:18:d9:
c4:be:a0:c1:fd:67:8a:4a:80:6c:64:65:d2:92:0b:
a1:6d:c7:35:37:f7:d9:f2:4d:84:51:d0:42:9f:75:
f2:14:ff:11:a2:fa:f5:26:b5:e8:e3:ee:ff:ea:ed:
2f:27:3a:85:54:bd:1b:27:26:14:15:6a:c2:e4:b7:
a2:bc:30:fb:5d:1b:31:e7:eb:09:1a:6a:ac:14:0c:
8b:36:b9:e4:1d:cc:7d:40:60:57:3d:7b:8b:37:b7:
06:18:af:66:dd:c4:f8:2f:ca:a9:e3:e0:41:74:c1:
81:d2:46:79:5e:d8:2d:48:f3:1b:be:9a:53:c9:77:
0d:26:49:8e:7d:79:1f:a4:4c:4e:77:b3:5c:3e:4c:
5e:f7:62:92:9f:46:2b:6c:55:ca:67:64:01:fe:eb:
ac:9c:dc:9f:e1:09:96:84:a2:65:fc:97:61:d9:5e:
a0:63:c6:36:64:1f:17:ea:84:b8:b6:5c:9b:a1:c2:
6c:67:94:4b:00:1c:b5:4a:c4:5a:81:63:24:c9:b9:
78:6c:02:4f:bd:74:9e:8c:f2:27:3c:82:00:3a:46:
85:1b:6c:c4:95:fb:03:a4:2f:e1:8f:0e:6a:37:46:
1f:83:65:77:60:37:c4:02:fb:14:9d:28:26:69:c7:
5f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:A2:FC:18:30:FF:4A:17:25:ED:82:A8:73:BC:D0:2F:57:02:4D:B2
X509v3 Authority Key Identifier:
keyid:C0:A2:33:59:0D:E5:86:E0:C5:58:21:C6:F6:D5:73:2A:FC:84:12:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wKIzWQ3lhuDFWCHG9tVzKvyEEik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/97b0b7-013d-433e-b538-a84eb411ef8a/1/TqL8GDD_Shcl7YKoc7zQL1cCTbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/97b0b7-013d-433e-b538-a84eb411ef8a/1/wKIzWQ3lhuDFWCHG9tVzKvyEEik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.152.152.0/23
31.12.80.0/22
134.65.164.0/22
IPv6:
2a02:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
a0:56:20:57:6a:ac:7e:bb:17:36:44:d5:8d:8a:13:1d:3d:7b:
ab:71:95:c6:48:eb:dd:db:b7:d0:62:29:a8:97:b8:22:24:5f:
05:a0:f0:f5:86:1e:49:f4:d2:8f:66:e4:31:ba:41:da:76:9f:
db:73:0d:32:cd:9a:a7:b5:8b:5f:7d:68:4a:7a:6e:86:41:12:
c2:9b:3f:8d:75:0d:28:27:9f:32:fd:83:29:67:db:01:93:a3:
74:dc:c2:7a:d1:a5:c7:2e:f8:9a:60:51:3c:dc:4c:40:6f:10:
76:3d:c2:11:93:7c:7c:50:ea:d0:25:19:89:cd:d6:eb:b6:9c:
5c:88:9e:3a:62:f1:59:34:b7:e5:6d:fb:b0:4c:28:6e:3d:b0:
87:de:62:cd:ea:96:68:c9:8b:1d:90:8c:34:6a:74:4a:84:26:
f5:70:c4:ce:ad:b4:be:18:46:35:93:4e:c9:9d:0d:c5:fa:58:
b9:1f:bd:54:fb:eb:5f:57:c0:ea:aa:d6:ba:38:25:05:be:94:
56:ae:72:ca:68:ca:bc:9f:07:c9:f6:a6:44:81:cc:6c:6f:d2:
8b:a2:8a:2d:3e:15:59:f2:a8:0c:72:0f:09:1e:81:8c:57:43:
2a:96:89:79:23:c7:e7:36:f1:bc:e4:72:3b:e9:4d:df:f2:f1:
a1:13:71:1b
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgIECl8cbTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
MGEyMzM1OTBkZTU4NmUwYzU1ODIxYzZmNmQ1NzMyYWZjODQxMjI5MB4XDTIyMDYx
MDA3MzAwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGVhMmZjMTgzMGZm
NGExNzI1ZWQ4MmE4NzNiY2QwMmY1NzAyNGRiMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMknE448v8ue7tVYuRjZxL6gwf1nikqAbGRl0pILoW3HNTf3
2fJNhFHQQp918hT/EaL69Sa16OPu/+rtLyc6hVS9GycmFBVqwuS3orww+10bMefr
CRpqrBQMiza55B3MfUBgVz17ize3BhivZt3E+C/KqePgQXTBgdJGeV7YLUjzG76a
U8l3DSZJjn15H6RMTnezXD5MXvdikp9GK2xVymdkAf7rrJzcn+EJloSiZfyXYdle
oGPGNmQfF+qEuLZcm6HCbGeUSwActUrEWoFjJMm5eGwCT710nozyJzyCADpGhRts
xJX7A6Qv4Y8OajdGH4Nld2A3xAL7FJ0oJmnHX+MCAwEAAaOCAiQwggIgMB0GA1Ud
DgQWBBROovwYMP9KFyXtgqhzvNAvVwJNsjAfBgNVHSMEGDAWgBTAojNZDeWG4MVY
Icb21XMq/IQSKTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3dLSXpXUTNsaHVERldDSEc5dFZ6S3Z5RUVpay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWMvOTdiMGI3LTAxM2QtNDMzZS1iNTM4LWE4NGViNDExZWY4YS8x
L1RxTDhHRERfU2hjbDdZS29jN3pRTDFjQ1RiSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWMv
OTdiMGI3LTAxM2QtNDMzZS1iNTM4LWE4NGViNDExZWY4YS8xL3dLSXpXUTNsaHVE
RldDSEc5dFZ6S3Z5RUVpay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA6
BggrBgEFBQcBBwEB/wQrMCkwGAQCAAEwEgMEAQWYmAMEAh8MUAMEAoZBpDANBAIA
AjAHAwUDKgJ+ADANBgkqhkiG9w0BAQsFAAOCAQEAoFYgV2qsfrsXNkTVjYoTHT17
q3GVxkjr3du30GIpqJe4IiRfBaDw9YYeSfTSj2bkMbpB2naf23MNMs2ap7WLX31o
SnpuhkESwps/jXUNKCefMv2DKWfbAZOjdNzCetGlxy74mmBRPNxMQG8Qdj3CEZN8
fFDq0CUZic3W67acXIieOmLxWTS35W37sEwobj2wh95izeqWaMmLHZCMNGp0SoQm
9XDEzq20vhhGNZNOyZ0NxfpYuR+9VPvrX1fA6qrWujglBb6UVq5yymjKvJ8Hyfam
RIHMbG/Si6KKLT4VWfKoDHIPCR6BjFdDKpaJeSPH5zbxvORyO+lN3/LxoRNxGw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:30 2024 by rpki-client on console-fra.rpki-client.org