Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/TPARlY-ML2w9tZd6l9c6yZ-fOQk.roa
File: TPARlY-ML2w9tZd6l9c6yZ-fOQk.roa (raw, json)
Hash identifier: 0EHp48FPeP5uP7haQeFb9zLiTcXe0tBkHjOqUEnEb8o=
Subject key identifier: 4C:F0:11:95:8F:8C:2F:6C:3D:B5:97:7A:97:D7:3A:C9:9F:9F:39:09
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07E7BCDB
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/TPARlY-ML2w9tZd6l9c6yZ-fOQk.roa
Signing time: Wed 11 May 2022 08:49:02 +0000
ROA not before: Wed 11 May 2022 08:49:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 185.206.250.0/24 maxlen: 24
185.194.29.0/24 maxlen: 24
185.223.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132627675 (0x7e7bcdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 11 08:49:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4cf011958f8c2f6c3db5977a97d73ac99f9f3909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:70:9c:52:9d:bf:85:c9:21:7e:9d:90:6f:4d:
5e:c4:e2:5b:6c:ed:79:48:c9:b9:4f:3c:76:7b:0b:
9e:28:32:e9:6e:1c:ed:ee:62:5a:c0:59:b1:74:a4:
ba:d4:49:06:97:a4:3d:a0:9b:bd:8f:bc:fe:8e:19:
b0:7e:49:9a:de:0a:4a:c6:93:d5:c3:a1:68:f3:4e:
1a:d2:d8:29:c2:e6:69:5d:15:cf:d4:ef:bc:ca:4b:
a9:e3:68:50:8f:bf:e9:7e:ce:7a:2c:af:15:43:ed:
5f:d6:7c:29:a9:31:69:ee:86:d0:e9:95:12:ce:70:
79:e3:d7:e9:d8:2c:c4:a3:83:22:12:c1:63:bc:9e:
d1:b6:bb:cc:9e:4f:e7:65:2d:07:ac:ce:f3:51:43:
ee:e9:c4:f0:b9:e0:97:34:ae:1a:01:19:45:3f:31:
58:c7:7e:fb:46:05:96:6b:99:df:6f:7b:16:20:94:
ec:b1:b8:a5:6a:e8:ad:98:bd:17:32:c5:3a:65:41:
e0:ca:05:8d:ce:0f:2a:62:80:7f:62:13:8c:08:c0:
34:36:44:4a:25:71:f0:79:20:72:f1:69:84:35:cb:
4d:20:ce:ac:f9:d2:25:16:4a:9a:19:e3:41:b9:8a:
fd:f1:8a:4a:56:b6:6a:1f:4c:09:1d:56:e1:d3:e0:
03:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:F0:11:95:8F:8C:2F:6C:3D:B5:97:7A:97:D7:3A:C9:9F:9F:39:09
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/TPARlY-ML2w9tZd6l9c6yZ-fOQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.29.0/24
185.206.250.0/24
185.223.155.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:0c:5c:13:93:39:6b:0a:a0:37:3e:ee:df:56:c6:8b:1d:30:
21:35:82:30:be:a3:d7:49:bc:56:ad:d6:c5:74:10:f3:59:a6:
7d:b4:03:de:92:38:4b:5e:f9:78:6b:4f:6f:c6:c6:34:37:d5:
bf:b2:c5:ed:97:11:02:44:63:3b:9e:38:d2:20:88:3f:6a:c8:
0b:c3:84:66:fe:f3:b7:e1:b9:44:f2:c1:be:8c:88:c2:bd:19:
e5:73:d8:34:49:ac:fb:94:38:26:72:9f:eb:ae:33:ba:97:99:
e4:32:97:8e:5f:55:17:cd:a4:82:69:27:2f:93:42:a0:f6:2b:
8b:df:65:a2:41:27:c1:49:30:af:0c:b5:62:21:1f:08:6e:3d:
e5:0a:ef:2a:dc:79:b2:3f:48:a8:c0:59:c9:05:81:1b:0d:3e:
ab:3a:33:e6:1c:a0:c3:61:f4:ed:29:82:6d:68:5c:8d:5c:a4:
2b:38:ac:10:ba:47:36:95:f3:90:e0:6b:37:d0:39:d8:98:46:
82:cd:f0:de:6b:09:d6:d7:50:7d:e7:61:1b:45:2d:2d:c5:9c:
b6:04:64:00:a7:c5:8b:2f:39:5b:dc:45:9d:2b:75:57:9e:4d:
bf:e2:21:64:16:f7:24:f4:f0:87:00:0d:f9:d1:17:d8:9d:37:
d5:4a:01:c5
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEB+e82zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDY3ODRjMTA1MDg1YjlkNmFkNWY3M2EwM2IyMGQ5YTVjMTE0Y2FmMB4XDTIyMDUx
MTA4NDkwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGNmMDExOTU4Zjhj
MmY2YzNkYjU5NzdhOTdkNzNhYzk5ZjlmMzkwOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJtwnFKdv4XJIX6dkG9NXsTiW2zteUjJuU88dnsLnigy6W4c
7e5iWsBZsXSkutRJBpekPaCbvY+8/o4ZsH5Jmt4KSsaT1cOhaPNOGtLYKcLmaV0V
z9TvvMpLqeNoUI+/6X7OeiyvFUPtX9Z8Kakxae6G0OmVEs5weePX6dgsxKODIhLB
Y7ye0ba7zJ5P52UtB6zO81FD7unE8LnglzSuGgEZRT8xWMd++0YFlmuZ3297FiCU
7LG4pWrorZi9FzLFOmVB4MoFjc4PKmKAf2ITjAjANDZESiVx8HkgcvFphDXLTSDO
rPnSJRZKmhnjQbmK/fGKSla2ah9MCR1W4dPgA38CAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBRM8BGVj4wvbD21l3qX1zrJn585CTAfBgNVHSMEGDAWgBRgZ4TBBQhbnWrV
9zoDsg2aXBFMrzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lHZUV3UVVJVzUxcTFmYzZBN0lObWx3UlRLOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvMmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8x
L1RQQVJsWS1NTDJ3OXRaZDZsOWM2eVotZk9Ray5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
MmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFiYy8xL1lHZUV3UVVJVzUx
cTFmYzZBN0lObWx3UlRLOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEALnCHQMEALnO+gMEALnfmzANBgkq
hkiG9w0BAQsFAAOCAQEADwxcE5M5awqgNz7u31bGix0wITWCML6j10m8Vq3WxXQQ
81mmfbQD3pI4S175eGtPb8bGNDfVv7LF7ZcRAkRjO5440iCIP2rIC8OEZv7zt+G5
RPLBvoyIwr0Z5XPYNEms+5Q4JnKf664zupeZ5DKXjl9VF82kgmknL5NCoPYri99l
okEnwUkwrwy1YiEfCG495QrvKtx5sj9IqMBZyQWBGw0+qzoz5hygw2H07SmCbWhc
jVykKzisELpHNpXzkOBrN9A52JhGgs3w3msJ1tdQfedhG0UtLcWctgRkAKfFiy85
W9xFnSt1V55Nv+IhZBb3JPTwhwAN+dEX2J031UoBxQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:26 2024 by rpki-client on console-ams.rpki-client.org