Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f0e161-a43c-4d31-b65d-d4fed5085392/1/TJ3zFbz9emNJkMrdpQaZI15p4Mc.roa
File: TJ3zFbz9emNJkMrdpQaZI15p4Mc.roa (raw, json)
Hash identifier: PMp2EqsZFk/yiPSTvKni3fbWdUqShzxEXuIxXi3dgW0=
Subject key identifier: 4C:9D:F3:15:BC:FD:7A:63:49:90:CA:DD:A5:06:99:23:5E:69:E0:C7
Certificate issuer: /CN=c66dc60d16dfe1649d86c1693e17858c2306387f
Certificate serial: 045EAE86
Authority key identifier: C6:6D:C6:0D:16:DF:E1:64:9D:86:C1:69:3E:17:85:8C:23:06:38:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm3GDRbf4WSdhsFpPheFjCMGOH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f0e161-a43c-4d31-b65d-d4fed5085392/1/TJ3zFbz9emNJkMrdpQaZI15p4Mc.roa
Signing time: Sat 01 Jan 2022 10:58:25 +0000
ROA not before: Sat 01 Jan 2022 10:58:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200569
IP address blocks: 185.99.204.0/22 maxlen: 22
2a06:1480::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73313926 (0x45eae86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66dc60d16dfe1649d86c1693e17858c2306387f
Validity
Not Before: Jan 1 10:58:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c9df315bcfd7a634990cadda50699235e69e0c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:44:12:ee:bb:44:fa:cf:40:a9:96:62:1b:73:
b8:0a:b7:40:e2:e2:f1:54:39:2b:8a:bf:1c:db:03:
b1:69:74:eb:b6:72:8b:c4:58:bb:9e:82:be:18:08:
d9:b8:45:b9:b8:2e:8a:35:a4:fd:77:df:30:cf:f5:
7f:1f:ab:ee:0e:a6:72:ad:c3:6d:ac:95:f1:0b:8d:
be:62:81:bf:20:62:f0:04:e7:96:9f:75:e6:d7:70:
c6:2c:70:08:82:fc:38:14:0e:0b:f7:58:db:e4:2c:
4d:de:bd:80:c2:4f:f6:06:00:89:ae:e6:a8:dc:ce:
4e:a9:45:19:69:e8:f0:c7:28:15:46:3d:fb:9a:39:
07:d6:c5:ef:95:32:09:1d:f1:d6:19:fe:51:d0:4d:
c5:83:d3:cc:87:19:9a:70:34:93:ec:3d:1c:74:4e:
29:df:9f:c3:ea:91:bf:4b:27:5c:d0:57:8e:39:6b:
5e:05:d6:8b:9a:7b:04:15:e8:70:d4:28:d9:3a:88:
c0:21:07:89:59:8c:75:b9:04:1b:27:eb:03:af:8e:
e2:a1:07:ea:5b:11:b2:70:ab:5c:0a:b3:9d:62:8a:
8b:9e:e3:bb:0a:25:66:60:bb:75:eb:96:03:ba:2d:
50:9a:a8:4c:2d:f7:43:70:0d:07:ca:48:52:45:b6:
c1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:9D:F3:15:BC:FD:7A:63:49:90:CA:DD:A5:06:99:23:5E:69:E0:C7
X509v3 Authority Key Identifier:
keyid:C6:6D:C6:0D:16:DF:E1:64:9D:86:C1:69:3E:17:85:8C:23:06:38:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm3GDRbf4WSdhsFpPheFjCMGOH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f0e161-a43c-4d31-b65d-d4fed5085392/1/TJ3zFbz9emNJkMrdpQaZI15p4Mc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f0e161-a43c-4d31-b65d-d4fed5085392/1/xm3GDRbf4WSdhsFpPheFjCMGOH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.204.0/22
IPv6:
2a06:1480::/29
Signature Algorithm: sha256WithRSAEncryption
8c:71:9d:16:61:82:41:17:ca:5a:fc:9e:be:95:48:4c:34:10:
a6:ca:8e:35:98:2a:be:22:f7:20:c6:b0:f4:42:3a:35:aa:be:
de:97:4c:67:73:05:1b:a6:64:38:0f:d6:62:8a:e1:26:03:de:
98:3d:8b:e5:a6:43:46:7e:82:65:06:79:8b:5f:c9:ed:4b:c9:
bd:0e:b6:df:58:c8:80:02:d2:b7:ab:0a:7f:6e:af:2f:9a:3a:
51:dd:b3:4e:d1:f0:59:bc:5e:59:a0:86:86:33:cb:f8:12:34:
ca:4a:6c:b8:70:16:62:a6:60:3a:80:da:f8:7f:8c:23:e4:39:
e6:63:80:16:22:3e:c2:14:97:1c:55:c5:2d:eb:12:b1:ad:94:
43:09:50:24:67:a6:2b:ec:65:c4:82:95:cc:28:53:6e:4b:2d:
fa:63:04:6d:1b:76:71:5a:f1:c5:dd:17:2c:b8:f6:a2:8d:70:
28:92:d5:20:ac:ad:c6:74:c3:04:d7:72:4f:33:9f:39:f8:d3:
34:7d:02:17:6b:fc:d9:40:c0:5a:94:7b:ec:6f:49:79:f1:59:
46:11:9b:05:74:37:90:f5:ad:ea:49:9e:dc:c7:2a:74:fc:21:
cf:0e:c6:4c:07:2b:74:f6:90:33:b0:81:b0:09:64:ed:fc:43:
8c:51:48:8d
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBF6uhjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NjZkYzYwZDE2ZGZlMTY0OWQ4NmMxNjkzZTE3ODU4YzIzMDYzODdmMB4XDTIyMDEw
MTEwNTgyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGM5ZGYzMTViY2Zk
N2E2MzQ5OTBjYWRkYTUwNjk5MjM1ZTY5ZTBjNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANVEEu67RPrPQKmWYhtzuAq3QOLi8VQ5K4q/HNsDsWl067Zy
i8RYu56CvhgI2bhFubguijWk/XffMM/1fx+r7g6mcq3DbayV8QuNvmKBvyBi8ATn
lp915tdwxixwCIL8OBQOC/dY2+QsTd69gMJP9gYAia7mqNzOTqlFGWno8McoFUY9
+5o5B9bF75UyCR3x1hn+UdBNxYPTzIcZmnA0k+w9HHROKd+fw+qRv0snXNBXjjlr
XgXWi5p7BBXocNQo2TqIwCEHiVmMdbkEGyfrA6+O4qEH6lsRsnCrXAqznWKKi57j
uwolZmC7deuWA7otUJqoTC33Q3ANB8pIUkW2wakCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRMnfMVvP16Y0mQyt2lBpkjXmngxzAfBgNVHSMEGDAWgBTGbcYNFt/hZJ2G
wWk+F4WMIwY4fzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3htM0dEUmJmNFdTZGhzRnBQaGVGakNNR09IOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmEvZjBlMTYxLWE0M2MtNGQzMS1iNjVkLWQ0ZmVkNTA4NTM5Mi8x
L1RKM3pGYno5ZW1OSmtNcmRwUWFaSTE1cDRNYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmEv
ZjBlMTYxLWE0M2MtNGQzMS1iNjVkLWQ0ZmVkNTA4NTM5Mi8xL3htM0dEUmJmNFdT
ZGhzRnBQaGVGakNNR09IOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArljzDANBAIAAjAHAwUDKgYUgDAN
BgkqhkiG9w0BAQsFAAOCAQEAjHGdFmGCQRfKWvyevpVITDQQpsqONZgqviL3IMaw
9EI6Naq+3pdMZ3MFG6ZkOA/WYorhJgPemD2L5aZDRn6CZQZ5i1/J7UvJvQ6231jI
gALSt6sKf26vL5o6Ud2zTtHwWbxeWaCGhjPL+BI0ykpsuHAWYqZgOoDa+H+MI+Q5
5mOAFiI+whSXHFXFLesSsa2UQwlQJGemK+xlxIKVzChTbkst+mMEbRt2cVrxxd0X
LLj2oo1wKJLVIKytxnTDBNdyTzOfOfjTNH0CF2v82UDAWpR77G9JefFZRhGbBXQ3
kPWt6kme3McqdPwhzw7GTAcrdPaQM7CBsAlk7fxDjFFIjQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:50 2024 by rpki-client on console-ams.rpki-client.org