Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/TsIhmEEgt_MQvGS87aqrnJwJ2mg.roa
File: TsIhmEEgt_MQvGS87aqrnJwJ2mg.roa (raw, json)
Hash identifier: w6k1Rpxio7Psj80t5zUBHgKYcI0tMyRRlK6Hulz34XA=
Subject key identifier: 4E:C2:21:98:41:20:B7:F3:10:BC:64:BC:ED:AA:AB:9C:9C:09:DA:68
Certificate issuer: /CN=3bfa6636fe6440acf293b75705a7a1dcada8420b
Certificate serial: 18E0AD8B
Authority key identifier: 3B:FA:66:36:FE:64:40:AC:F2:93:B7:57:05:A7:A1:DC:AD:A8:42:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_pmNv5kQKzyk7dXBaeh3K2oQgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/TsIhmEEgt_MQvGS87aqrnJwJ2mg.roa
Signing time: Fri 10 Jun 2022 14:38:02 +0000
ROA not before: Fri 10 Jun 2022 14:38:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15836
IP address blocks: 149.3.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 417377675 (0x18e0ad8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bfa6636fe6440acf293b75705a7a1dcada8420b
Validity
Not Before: Jun 10 14:38:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ec221984120b7f310bc64bcedaaab9c9c09da68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:87:51:97:c2:f8:b1:c7:ba:26:2b:1b:07:a0:
45:a9:ed:dd:c8:d6:da:f2:39:9c:81:99:89:ac:1c:
9d:78:da:a0:a0:d5:b2:89:79:d2:13:37:66:3d:a5:
82:19:24:48:73:3d:07:bc:68:cf:a1:d0:58:08:d4:
dd:45:5b:68:54:18:47:ed:7f:ba:34:f3:b1:ae:a6:
12:76:88:06:1e:e6:0f:ba:36:77:61:13:f6:23:64:
17:99:0e:af:bf:64:4f:9e:3f:71:7f:7c:0b:fc:a0:
6c:45:fd:00:32:7a:aa:cc:4e:8e:b1:71:c6:d0:d3:
4a:00:c5:bd:f7:83:e8:94:4d:94:b3:3d:d4:89:31:
12:58:34:13:7b:30:d9:4d:df:ec:5c:2d:ea:78:0b:
89:3e:a3:d9:28:e1:db:b8:da:0d:39:11:10:27:96:
b9:4a:36:9a:ff:3a:30:15:27:51:79:5c:af:b5:0a:
39:ce:74:8b:50:69:43:d2:a0:43:d1:38:67:a2:99:
84:ed:c5:79:3d:e2:b1:b7:60:54:27:5a:ea:cf:fb:
44:76:7b:e8:5f:01:48:40:dc:f6:46:f2:ba:a8:95:
4f:0a:58:b2:63:6f:e2:90:88:75:cc:86:68:d4:28:
3a:7a:b1:97:42:a4:18:fb:5c:50:53:25:7c:f6:cc:
12:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:C2:21:98:41:20:B7:F3:10:BC:64:BC:ED:AA:AB:9C:9C:09:DA:68
X509v3 Authority Key Identifier:
keyid:3B:FA:66:36:FE:64:40:AC:F2:93:B7:57:05:A7:A1:DC:AD:A8:42:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_pmNv5kQKzyk7dXBaeh3K2oQgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/TsIhmEEgt_MQvGS87aqrnJwJ2mg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.3.190.0/24
Signature Algorithm: sha256WithRSAEncryption
22:fc:93:1f:26:ea:b6:34:b0:3d:1a:4e:de:ca:4e:29:bf:bd:
d3:d7:01:8e:70:b2:9d:b4:6f:ed:d8:aa:86:5b:a0:3b:d0:3f:
0e:cf:6c:e2:c6:58:44:b3:c6:81:b9:18:9d:dd:c3:d1:8a:a8:
68:3d:98:f7:50:53:b5:e7:7b:d5:07:df:2d:94:bc:2b:30:ee:
60:14:47:8e:4d:71:31:21:22:60:51:16:f3:7f:7c:fd:71:72:
48:aa:53:cd:61:92:09:67:df:4d:a6:0e:b4:6e:31:ef:c3:da:
9e:01:c9:33:0f:34:0e:19:07:3f:f0:f7:a6:92:0d:84:61:d9:
03:f0:0e:35:1e:21:d8:73:54:f5:a3:0e:26:81:7e:80:d1:23:
c8:65:55:67:97:fe:13:3b:52:fe:ff:16:1a:0f:8c:9e:6e:53:
72:89:1e:07:83:be:11:63:69:4b:2f:d3:65:6a:cf:e2:9b:14:
de:dd:c8:19:4f:58:e2:e3:95:c6:f9:f0:f6:fc:12:d6:fd:c6:
dd:b8:a1:53:6c:60:57:cd:70:7b:22:79:fb:d8:25:bb:cb:f8:
73:cd:ad:43:e7:6a:a1:58:aa:87:55:26:bb:c2:68:47:82:0a:
0b:a4:30:c0:3f:29:a7:f9:af:8b:9d:8d:3c:1e:94:91:5d:11:
aa:9a:13:71
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGOCtizANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YmZhNjYzNmZlNjQ0MGFjZjI5M2I3NTcwNWE3YTFkY2FkYTg0MjBiMB4XDTIyMDYx
MDE0MzgwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGVjMjIxOTg0MTIw
YjdmMzEwYmM2NGJjZWRhYWFiOWM5YzA5ZGE2ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOmHUZfC+LHHuiYrGwegRant3cjW2vI5nIGZiawcnXjaoKDV
sol50hM3Zj2lghkkSHM9B7xoz6HQWAjU3UVbaFQYR+1/ujTzsa6mEnaIBh7mD7o2
d2ET9iNkF5kOr79kT54/cX98C/ygbEX9ADJ6qsxOjrFxxtDTSgDFvfeD6JRNlLM9
1IkxElg0E3sw2U3f7Fwt6ngLiT6j2Sjh27jaDTkRECeWuUo2mv86MBUnUXlcr7UK
Oc50i1BpQ9KgQ9E4Z6KZhO3FeT3isbdgVCda6s/7RHZ76F8BSEDc9kbyuqiVTwpY
smNv4pCIdcyGaNQoOnqxl0KkGPtcUFMlfPbMErUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBROwiGYQSC38xC8ZLztqqucnAnaaDAfBgNVHSMEGDAWgBQ7+mY2/mRArPKT
t1cFp6HcrahCCzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09fcG1OdjVrUUt6eWs3ZFhCYWVoM0syb1Fncy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjYvYTQ3Y2RmLWQyMWItNGYxZC04OTAxLTkyZWM1MTVjNTk1YS8x
L1RzSWhtRUVndF9NUXZHUzg3YXFybkp3SjJtZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjYv
YTQ3Y2RmLWQyMWItNGYxZC04OTAxLTkyZWM1MTVjNTk1YS8xL09fcG1OdjVrUUt6
eWs3ZFhCYWVoM0syb1Fncy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJUDvjANBgkqhkiG9w0BAQsFAAOC
AQEAIvyTHybqtjSwPRpO3spOKb+909cBjnCynbRv7diqhlugO9A/Ds9s4sZYRLPG
gbkYnd3D0YqoaD2Y91BTted71QffLZS8KzDuYBRHjk1xMSEiYFEW8398/XFySKpT
zWGSCWffTaYOtG4x78PangHJMw80DhkHP/D3ppINhGHZA/AONR4h2HNU9aMOJoF+
gNEjyGVVZ5f+EztS/v8WGg+Mnm5TcokeB4O+EWNpSy/TZWrP4psU3t3IGU9Y4uOV
xvnw9vwS1v3G3bihU2xgV81weyJ5+9glu8v4c82tQ+dqoViqh1Umu8JoR4IKC6Qw
wD8pp/mvi52NPB6UkV0RqpoTcQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:58 2024 by rpki-client on console-fra.rpki-client.org