Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/36b098-e9ac-4910-a6f5-8e5d9eefaf91/1/THxVCnxvFZCVq37UMJ2MwjI1tk8.roa
File: THxVCnxvFZCVq37UMJ2MwjI1tk8.roa (raw, json)
Hash identifier: sNUKm26ij4wGyyN3UogDuhFcpGmpLNr+pYo92y4FRns=
Subject key identifier: 4C:7C:55:0A:7C:6F:15:90:95:AB:7E:D4:30:9D:8C:C2:32:35:B6:4F
Certificate issuer: /CN=339e0f5e654393ceda22db44978f273e789e2341
Certificate serial: 01334B99
Authority key identifier: 33:9E:0F:5E:65:43:93:CE:DA:22:DB:44:97:8F:27:3E:78:9E:23:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M54PXmVDk87aIttEl48nPnieI0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/36b098-e9ac-4910-a6f5-8e5d9eefaf91/1/THxVCnxvFZCVq37UMJ2MwjI1tk8.roa
Signing time: Sat 01 Jan 2022 11:55:43 +0000
ROA not before: Sat 01 Jan 2022 11:55:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48019
IP address blocks: 194.105.136.0/23 maxlen: 23
91.207.66.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20138905 (0x1334b99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=339e0f5e654393ceda22db44978f273e789e2341
Validity
Not Before: Jan 1 11:55:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c7c550a7c6f159095ab7ed4309d8cc23235b64f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c7:6b:86:6e:8d:e6:a4:3a:f3:e0:8f:83:8d:
b5:cb:eb:a8:d9:13:b1:57:1f:63:84:f1:f8:86:95:
b7:6d:c7:2c:4e:f2:b7:e2:e3:72:87:36:75:15:f4:
4e:51:d4:6e:c5:48:2b:ec:11:ce:8b:48:38:73:32:
e7:e9:cc:14:f8:b2:c5:32:df:89:25:99:ac:7c:d1:
af:49:6e:5e:bc:ae:5c:f1:b0:91:1d:60:f5:fb:9a:
3f:cc:62:04:84:f3:60:eb:e2:2f:11:7a:e6:9a:ec:
ee:c2:65:3f:dc:0b:70:ab:80:86:e5:67:70:42:81:
44:b8:99:03:92:cf:2b:bb:21:f1:0f:7a:89:45:c3:
79:e0:da:8d:62:87:04:e4:d1:39:1c:65:fe:d6:9a:
57:9b:6c:d3:9e:5b:f2:ef:f9:02:5c:9e:3a:0c:d8:
b3:08:78:0e:7a:34:68:4b:a6:a8:b8:eb:1d:3e:f7:
6a:3e:49:69:f0:1c:47:66:cb:d4:5a:37:31:4a:ca:
71:99:86:88:17:a8:17:51:9f:91:48:e0:ae:49:71:
58:56:d0:b2:5f:ee:e4:5c:a4:11:ce:ad:c9:a7:a0:
cd:41:6a:8d:27:cd:4c:95:8a:9d:e1:4e:36:13:af:
84:f8:5a:72:6c:47:ef:aa:0d:62:6c:62:b6:88:c5:
ac:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:7C:55:0A:7C:6F:15:90:95:AB:7E:D4:30:9D:8C:C2:32:35:B6:4F
X509v3 Authority Key Identifier:
keyid:33:9E:0F:5E:65:43:93:CE:DA:22:DB:44:97:8F:27:3E:78:9E:23:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M54PXmVDk87aIttEl48nPnieI0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/36b098-e9ac-4910-a6f5-8e5d9eefaf91/1/THxVCnxvFZCVq37UMJ2MwjI1tk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/36b098-e9ac-4910-a6f5-8e5d9eefaf91/1/M54PXmVDk87aIttEl48nPnieI0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.66.0/23
194.105.136.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:fb:25:36:82:06:62:5b:c0:9a:6e:4b:11:1b:06:c3:38:bd:
bb:18:63:28:58:79:f2:9e:69:fd:94:03:9c:2e:ed:7b:35:7c:
0b:a4:85:65:e4:8c:0f:2a:93:f0:e5:c3:4c:1e:74:32:6d:4e:
25:ec:a0:27:63:c4:c4:ef:d7:62:83:eb:d2:42:ea:cd:96:2f:
a6:7c:5b:de:10:87:99:4c:83:97:73:8b:1e:36:99:a9:b9:03:
4a:7a:cf:ad:83:68:a3:00:ad:ad:2b:a8:b2:87:53:9c:6c:8a:
78:de:fa:b9:ae:b4:78:ea:c4:2b:e3:38:83:b5:87:f1:27:95:
85:01:64:2e:26:02:0f:d8:74:88:a5:a0:16:5c:e9:d8:49:72:
c3:9c:5b:b8:18:0a:71:00:82:26:20:29:d4:48:57:5b:09:d0:
e3:34:fb:d4:b8:0d:8d:16:17:7b:94:07:7d:25:8e:26:56:0c:
9e:6c:60:3f:0e:c9:47:9a:60:2b:6d:02:cd:32:7b:c4:7d:09:
3d:1c:fd:a4:2e:0e:34:a2:d0:3e:8c:89:da:46:e5:57:63:79:
a2:75:fe:79:a6:c4:3d:10:ce:85:98:6d:e0:81:35:7d:ba:4e:
58:78:75:f8:b5:07:85:9d:54:d8:0f:04:2b:f1:ef:b2:10:18:
26:4f:df:0f
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEATNLmTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MzllMGY1ZTY1NDM5M2NlZGEyMmRiNDQ5NzhmMjczZTc4OWUyMzQxMB4XDTIyMDEw
MTExNTU0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGM3YzU1MGE3YzZm
MTU5MDk1YWI3ZWQ0MzA5ZDhjYzIzMjM1YjY0ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMHHa4ZujeakOvPgj4ONtcvrqNkTsVcfY4Tx+IaVt23HLE7y
t+Ljcoc2dRX0TlHUbsVIK+wRzotIOHMy5+nMFPiyxTLfiSWZrHzRr0luXryuXPGw
kR1g9fuaP8xiBITzYOviLxF65prs7sJlP9wLcKuAhuVncEKBRLiZA5LPK7sh8Q96
iUXDeeDajWKHBOTRORxl/taaV5ts055b8u/5AlyeOgzYswh4Dno0aEumqLjrHT73
aj5JafAcR2bL1Fo3MUrKcZmGiBeoF1GfkUjgrklxWFbQsl/u5FykEc6tyaegzUFq
jSfNTJWKneFONhOvhPhacmxH76oNYmxitojFrPMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRMfFUKfG8VkJWrftQwnYzCMjW2TzAfBgNVHSMEGDAWgBQzng9eZUOTztoi
20SXjyc+eJ4jQTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L001NFBYbVZEazg3YUl0dEVsNDhuUG5pZUkwRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTIvMzZiMDk4LWU5YWMtNDkxMC1hNmY1LThlNWQ5ZWVmYWY5MS8x
L1RIeFZDbnh2RlpDVnEzN1VNSjJNd2pJMXRrOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTIv
MzZiMDk4LWU5YWMtNDkxMC1hNmY1LThlNWQ5ZWVmYWY5MS8xL001NFBYbVZEazg3
YUl0dEVsNDhuUG5pZUkwRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAVvPQgMEAcJpiDANBgkqhkiG9w0B
AQsFAAOCAQEAjvslNoIGYlvAmm5LERsGwzi9uxhjKFh58p5p/ZQDnC7tezV8C6SF
ZeSMDyqT8OXDTB50Mm1OJeygJ2PExO/XYoPr0kLqzZYvpnxb3hCHmUyDl3OLHjaZ
qbkDSnrPrYNoowCtrSuosodTnGyKeN76ua60eOrEK+M4g7WH8SeVhQFkLiYCD9h0
iKWgFlzp2Elyw5xbuBgKcQCCJiAp1EhXWwnQ4zT71LgNjRYXe5QHfSWOJlYMnmxg
Pw7JR5pgK20CzTJ7xH0JPRz9pC4ONKLQPoyJ2kblV2N5onX+eabEPRDOhZht4IE1
fbpOWHh1+LUHhZ1U2A8EK/HvshAYJk/fDw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:58 2024 by rpki-client on console-ams.rpki-client.org