Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/TQ8A_9A2rll0EZzELp8hy7OHLFg.roa
File: TQ8A_9A2rll0EZzELp8hy7OHLFg.roa (raw, json)
Hash identifier: XeYxOrn7XtbxGzXpt8tOAxM1lgEzVff95iQYuF9aE04=
Subject key identifier: 4D:0F:00:FF:D0:36:AE:59:74:11:9C:C4:2E:9F:21:CB:B3:87:2C:58
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01830D7BB696F13586DD88E08491803742E7
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/TQ8A_9A2rll0EZzELp8hy7OHLFg.roa
Signing time: Mon 05 Sep 2022 11:49:14 +0000
ROA not before: Mon 05 Sep 2022 11:49:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206092
IP address blocks: 5.180.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0d:7b:b6:96:f1:35:86:dd:88:e0:84:91:80:37:42:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 5 11:49:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d0f00ffd036ae5974119cc42e9f21cbb3872c58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4d:de:19:3f:c1:be:b6:5a:63:e7:30:01:b6:
9d:55:37:f1:07:1d:02:46:9c:8e:f9:52:6a:45:df:
9e:42:10:ec:39:78:10:b9:b0:bc:bd:34:fd:5a:19:
65:ba:26:9c:99:6e:f7:dd:35:69:31:31:2a:c1:6c:
96:7c:1e:d7:b5:ec:93:ce:ad:8b:4a:6b:8a:20:4c:
c8:4c:a5:e1:15:45:d4:a6:cc:1a:9f:c5:22:46:5e:
a7:fc:88:0c:6a:f3:03:86:73:1c:12:6f:9d:90:e4:
73:30:3c:ff:15:5a:b7:da:25:45:ef:2b:54:32:2d:
26:99:1e:6e:66:6e:b4:13:32:1b:85:48:ea:cc:a7:
3b:b1:c9:b6:2f:14:86:b6:b5:da:2d:86:a3:41:af:
ec:5b:4c:d9:72:7a:c4:02:d6:81:a1:77:4d:f8:c1:
fb:31:4e:50:cc:c5:62:46:48:be:a7:3a:c9:38:68:
66:11:d7:7c:ff:65:12:4a:fb:8c:20:98:d8:99:55:
5c:e0:ab:46:b8:15:c5:4a:c8:58:46:ed:d1:08:36:
38:c7:53:cb:aa:4c:e0:76:9c:1b:7e:72:9b:39:94:
28:a0:cb:b9:be:47:f1:3f:35:90:13:da:ce:f8:24:
aa:66:c0:f5:88:3a:d4:48:fd:3c:3f:bb:c9:c4:7d:
8a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:0F:00:FF:D0:36:AE:59:74:11:9C:C4:2E:9F:21:CB:B3:87:2C:58
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/TQ8A_9A2rll0EZzELp8hy7OHLFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.35.0/24
Signature Algorithm: sha256WithRSAEncryption
50:d2:59:8a:d4:5c:cc:67:7e:59:b4:61:97:b5:91:99:2c:e9:
18:4b:10:6b:31:11:7a:d5:15:6a:b3:48:05:25:bd:67:d4:22:
73:89:b0:83:1d:9e:10:58:bf:ed:72:55:3c:c9:2d:f6:91:97:
ae:2b:e2:69:19:44:23:eb:5d:c4:d7:a8:b2:59:3a:b8:01:ab:
c0:ad:34:27:1e:22:f4:cc:77:ff:ec:8b:08:89:b7:1f:e9:a2:
a8:a3:78:2e:75:68:d2:5a:ad:e2:1c:17:6b:5d:c8:ef:97:00:
b1:ad:76:29:b8:92:24:1b:d3:1c:cf:05:40:b9:bd:19:a5:37:
3f:c2:0f:65:78:d4:e8:ca:c6:b7:ae:6a:31:2e:8c:15:79:95:
8c:74:9f:e9:02:73:6a:68:70:8f:ae:a4:b1:a1:7d:25:e7:d6:
a7:63:b8:7e:1d:a3:78:da:3b:ec:49:d3:8a:1e:43:48:9b:30:
01:25:8d:75:0e:3f:8a:76:eb:32:e3:e0:9d:11:65:cb:ee:75:
ae:64:c4:da:66:cc:2f:6a:22:2c:2a:33:ba:74:88:43:33:2e:
6e:c9:d0:9a:6b:73:b3:66:3d:86:8f:75:08:55:6c:88:6f:4e:
05:b0:7b:28:5d:4a:1e:00:67:b2:68:32:56:fa:f4:99:3d:e6:
1c:40:72:71
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYMNe7aW8TWG3YjghJGAN0LnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj
Zjk3MDQwHhcNMjIwOTA1MTE0OTE0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZDBmMDBmZmQwMzZhZTU5NzQxMTljYzQyZTlmMjFjYmIzODcyYzU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm03eGT/BvrZaY+cwAbadVTfxBx0C
RpyO+VJqRd+eQhDsOXgQubC8vTT9WhlluiacmW733TVpMTEqwWyWfB7XteyTzq2L
SmuKIEzITKXhFUXUpswan8UiRl6n/IgMavMDhnMcEm+dkORzMDz/FVq32iVF7ytU
Mi0mmR5uZm60EzIbhUjqzKc7scm2LxSGtrXaLYajQa/sW0zZcnrEAtaBoXdN+MH7
MU5QzMViRki+pzrJOGhmEdd8/2USSvuMIJjYmVVc4KtGuBXFSshYRu3RCDY4x1PL
qkzgdpwbfnKbOZQooMu5vkfxPzWQE9rO+CSqZsD1iDrUSP08P7vJxH2KsQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE0PAP/QNq5ZdBGcxC6fIcuzhyxYMB8GA1UdIwQY
MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct
ZTg2MTIxYzU5NGRmLzEvVFE4QV85QTJybGwwRVp6RUxwOGh5N09ITEZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm
LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbQjMA0G
CSqGSIb3DQEBCwUAA4IBAQBQ0lmK1FzMZ35ZtGGXtZGZLOkYSxBrMRF61RVqs0gF
Jb1n1CJzibCDHZ4QWL/tclU8yS32kZeuK+JpGUQj613E16iyWTq4AavArTQnHiL0
zHf/7IsIibcf6aKoo3gudWjSWq3iHBdrXcjvlwCxrXYpuJIkG9MczwVAub0ZpTc/
wg9leNToysa3rmoxLowVeZWMdJ/pAnNqaHCPrqSxoX0l59anY7h+HaN42jvsSdOK
HkNImzABJY11Dj+Kdusy4+CdEWXL7nWuZMTaZswvaiIsKjO6dIhDMy5uydCaa3Oz
Zj2Gj3UIVWyIb04FsHsoXUoeAGeyaDJW+vSZPeYcQHJx
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:22 2023 by rpki-client on console-ams.rpki-client.org