Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/14c1ca-1874-47ac-a18e-3a144c70e0b0/1/TSITe7FbuqbRv5iNerehy6kdEbg.roa
File: TSITe7FbuqbRv5iNerehy6kdEbg.roa (raw, json)
Hash identifier: Czfz9TJzYZWAHIJT9u2gYp9R9Dj+rY/iimPvALclcQc=
Subject key identifier: 4D:22:13:7B:B1:5B:BA:A6:D1:BF:98:8D:7A:B7:A1:CB:A9:1D:11:B8
Certificate issuer: /CN=1534838bb317b8186699f0a4485db6d9da1908d2
Certificate serial: 3D3518D3
Authority key identifier: 15:34:83:8B:B3:17:B8:18:66:99:F0:A4:48:5D:B6:D9:DA:19:08:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FTSDi7MXuBhmmfCkSF222doZCNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/14c1ca-1874-47ac-a18e-3a144c70e0b0/1/TSITe7FbuqbRv5iNerehy6kdEbg.roa
Signing time: Sat 01 Jan 2022 14:56:09 +0000
ROA not before: Sat 01 Jan 2022 14:56:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51966
IP address blocks: 194.0.23.0/24 maxlen: 24
2001:678:1b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1026889939 (0x3d3518d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1534838bb317b8186699f0a4485db6d9da1908d2
Validity
Not Before: Jan 1 14:56:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d22137bb15bbaa6d1bf988d7ab7a1cba91d11b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:67:a4:ae:93:ff:08:c5:ad:a9:73:10:02:ba:
7d:ff:78:5f:a0:d8:e6:eb:13:bd:50:e8:3a:84:22:
02:64:f1:7b:55:b3:74:09:f1:1e:97:b6:fb:9c:3d:
d0:78:4c:be:c1:bf:dd:6c:6f:fe:c3:9e:e1:42:42:
0e:47:c1:f9:98:3d:bb:63:05:d1:ed:c5:76:b3:d6:
3e:a1:45:99:ce:74:3c:41:bc:89:ed:42:27:57:93:
e8:a0:16:8e:6d:ef:e2:7b:3d:1a:c8:8f:d4:22:68:
e7:2c:06:84:34:14:cb:a5:9a:31:2c:d2:74:45:84:
6c:dd:1a:c2:bd:b3:18:f4:cc:5b:36:29:bb:0a:7e:
65:f3:cf:03:73:80:03:ba:50:46:b0:67:ab:db:9d:
5a:cb:0e:d3:61:e5:d0:22:0e:bc:eb:37:3d:b4:c2:
a5:4b:fd:d0:5a:2e:d1:d8:7b:ce:f2:a4:d5:bf:72:
9c:c4:bc:c0:78:04:9e:4f:a6:59:6f:1f:a3:4b:f2:
eb:df:89:cb:f2:f2:53:6e:3f:de:2e:3e:0a:0b:80:
49:c3:ff:98:41:15:14:68:9d:ee:b4:d3:e1:34:04:
50:4b:3e:2c:a2:c7:aa:dd:79:f1:6f:6b:f8:d9:8b:
4b:cf:0b:1a:2a:b5:fe:ac:88:38:8a:ed:36:8b:db:
e4:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:22:13:7B:B1:5B:BA:A6:D1:BF:98:8D:7A:B7:A1:CB:A9:1D:11:B8
X509v3 Authority Key Identifier:
keyid:15:34:83:8B:B3:17:B8:18:66:99:F0:A4:48:5D:B6:D9:DA:19:08:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FTSDi7MXuBhmmfCkSF222doZCNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/14c1ca-1874-47ac-a18e-3a144c70e0b0/1/TSITe7FbuqbRv5iNerehy6kdEbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/14c1ca-1874-47ac-a18e-3a144c70e0b0/1/FTSDi7MXuBhmmfCkSF222doZCNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.23.0/24
IPv6:
2001:678:1b::/48
Signature Algorithm: sha256WithRSAEncryption
20:2d:e9:65:9b:60:cd:61:de:01:8c:8e:e7:c9:c6:46:e6:1f:
f5:4b:0b:f7:48:a4:6f:29:e4:b8:d0:87:9b:c2:30:e3:24:df:
f5:36:ec:23:8a:17:c7:2b:89:b3:2f:91:44:6e:5c:3a:92:1d:
47:26:82:30:59:dd:ab:03:1a:08:fd:2a:30:6a:06:c5:89:70:
06:1b:44:ac:6d:4e:83:05:8b:53:93:e5:f3:48:89:e3:3e:c1:
e9:41:a6:78:99:af:70:35:28:60:d8:8f:8f:bf:35:0b:eb:3f:
18:43:65:11:cb:96:d3:38:5d:f5:f1:d3:7d:0a:d3:06:4a:ec:
d2:5f:de:49:c1:ba:e5:07:60:53:6e:45:c6:c3:2e:72:97:3f:
90:37:41:74:27:db:31:c8:10:d3:1a:28:cc:c2:8f:24:b1:b4:
75:07:44:e7:2f:11:a4:c6:ed:f7:0a:f6:87:89:6e:92:ef:38:
0b:03:cb:76:4e:08:23:24:2d:8c:fb:4a:45:9b:c4:cd:10:c1:
3b:bb:78:14:28:17:ae:17:08:d2:5b:ef:50:ee:f8:7e:ec:47:
84:7b:8d:6c:d9:5f:87:23:8c:ba:c0:06:23:58:46:af:48:d6:
6b:33:af:f0:0e:0c:c7:92:c4:d1:87:d6:df:7e:78:c8:71:ad:
8b:f6:c8:c9
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEPTUY0zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NTM0ODM4YmIzMTdiODE4NjY5OWYwYTQ0ODVkYjZkOWRhMTkwOGQyMB4XDTIyMDEw
MTE0NTYwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGQyMjEzN2JiMTVi
YmFhNmQxYmY5ODhkN2FiN2ExY2JhOTFkMTFiODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANNnpK6T/wjFralzEAK6ff94X6DY5usTvVDoOoQiAmTxe1Wz
dAnxHpe2+5w90HhMvsG/3Wxv/sOe4UJCDkfB+Zg9u2MF0e3FdrPWPqFFmc50PEG8
ie1CJ1eT6KAWjm3v4ns9GsiP1CJo5ywGhDQUy6WaMSzSdEWEbN0awr2zGPTMWzYp
uwp+ZfPPA3OAA7pQRrBnq9udWssO02Hl0CIOvOs3PbTCpUv90Fou0dh7zvKk1b9y
nMS8wHgEnk+mWW8fo0vy69+Jy/LyU24/3i4+CguAScP/mEEVFGid7rTT4TQEUEs+
LKLHqt158W9r+NmLS88LGiq1/qyIOIrtNovb5N0CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBRNIhN7sVu6ptG/mI16t6HLqR0RuDAfBgNVHSMEGDAWgBQVNIOLsxe4GGaZ
8KRIXbbZ2hkI0jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ZUU0RpN01YdUJobW1mQ2tTRjIyMmRvWkNOSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWUvMTRjMWNhLTE4NzQtNDdhYy1hMThlLTNhMTQ0YzcwZTBiMC8x
L1RTSVRlN0ZidXFiUnY1aU5lcmVoeTZrZEViZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWUv
MTRjMWNhLTE4NzQtNDdhYy1hMThlLTNhMTQ0YzcwZTBiMC8xL0ZUU0RpN01YdUJo
bW1mQ2tTRjIyMmRvWkNOSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAMIAFzAPBAIAAjAJAwcAIAEGeAAb
MA0GCSqGSIb3DQEBCwUAA4IBAQAgLellm2DNYd4BjI7nycZG5h/1Swv3SKRvKeS4
0IebwjDjJN/1NuwjihfHK4mzL5FEblw6kh1HJoIwWd2rAxoI/SowagbFiXAGG0Ss
bU6DBYtTk+XzSInjPsHpQaZ4ma9wNShg2I+PvzUL6z8YQ2URy5bTOF318dN9CtMG
SuzSX95JwbrlB2BTbkXGwy5ylz+QN0F0J9sxyBDTGijMwo8ksbR1B0TnLxGkxu33
CvaHiW6S7zgLA8t2TggjJC2M+0pFm8TNEME7u3gUKBeuFwjSW+9Q7vh+7EeEe41s
2V+HI4y6wAYjWEavSNZrM6/wDgzHksTRh9bffnjIca2L9sjJ
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:06 2023 by rpki-client on console-fra.rpki-client.org