Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/TlzP2_Kh4taV6Xd4xbt4JHwGrPE.roa
File: TlzP2_Kh4taV6Xd4xbt4JHwGrPE.roa (raw, json)
Hash identifier: iCOpv6Pysu3kB8eq7LVoTXmz9CXUlZDFjri0Ahpvp1A=
Subject key identifier: 4E:5C:CF:DB:F2:A1:E2:D6:95:E9:77:78:C5:BB:78:24:7C:06:AC:F1
Certificate issuer: /CN=41f5a10e4fd2655adbbb40ede18b2615ac558ea9
Certificate serial: 358D6E43
Authority key identifier: 41:F5:A1:0E:4F:D2:65:5A:DB:BB:40:ED:E1:8B:26:15:AC:55:8E:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/TlzP2_Kh4taV6Xd4xbt4JHwGrPE.roa
Signing time: Sat 01 Jan 2022 14:55:32 +0000
ROA not before: Sat 01 Jan 2022 14:55:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197705
IP address blocks: 94.26.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 898461251 (0x358d6e43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41f5a10e4fd2655adbbb40ede18b2615ac558ea9
Validity
Not Before: Jan 1 14:55:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e5ccfdbf2a1e2d695e97778c5bb78247c06acf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:47:ae:bf:17:ef:a8:00:b6:35:ca:98:52:1b:
f6:3f:da:87:71:db:c4:a6:7e:dc:ee:79:ee:25:51:
0a:09:f1:70:64:06:15:a0:84:32:2e:fe:65:03:f9:
74:f5:ed:a2:e7:3e:34:27:a6:2a:8c:a9:21:4c:88:
ab:6a:c5:cb:2f:ff:3a:d1:67:f2:19:a9:ab:ad:13:
6d:d8:c8:6c:6e:7f:1a:ae:65:2e:a7:21:c0:f2:b5:
85:80:4d:10:80:03:0b:16:bc:7a:90:06:b8:a7:61:
2a:f7:0f:1a:b8:c8:43:ac:e3:70:b7:73:df:80:7b:
0c:27:b1:43:af:77:0a:fa:35:b0:05:fb:ac:c7:6a:
f0:60:25:42:a1:1d:39:5d:b4:42:76:4f:9e:fb:2e:
6b:a9:16:4e:ed:c1:64:29:1c:90:4d:30:1c:50:0c:
1e:da:fc:2b:df:53:7d:dc:f9:6a:04:37:18:e9:0f:
d6:02:60:75:50:58:5d:7c:b7:91:ed:b8:2f:27:3c:
e4:39:31:c3:a6:9f:37:00:bb:85:0b:13:76:9a:72:
2a:cf:b7:0d:34:9e:df:23:c6:76:de:e6:14:f3:17:
ef:d5:f9:02:4d:6c:2f:88:d5:ba:ca:e4:6a:80:df:
1a:34:9d:5c:21:50:a6:40:e4:1e:9e:00:17:ac:86:
d1:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:5C:CF:DB:F2:A1:E2:D6:95:E9:77:78:C5:BB:78:24:7C:06:AC:F1
X509v3 Authority Key Identifier:
keyid:41:F5:A1:0E:4F:D2:65:5A:DB:BB:40:ED:E1:8B:26:15:AC:55:8E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/TlzP2_Kh4taV6Xd4xbt4JHwGrPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.26.38.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:1a:6e:53:6e:e5:28:a0:1c:39:63:1c:f1:8a:c2:28:d4:34:
2a:4e:77:68:95:26:8d:e9:40:01:94:af:c0:e9:d2:02:5f:7a:
6a:4b:51:c7:99:cb:e5:ec:26:fb:f6:6d:3a:d2:c8:bc:74:11:
ed:77:b1:2e:e6:67:1c:b9:37:a1:d2:f3:97:06:b5:9c:27:61:
11:c0:96:5c:f9:93:86:55:a9:9a:62:5b:39:60:97:df:6c:60:
35:6c:e0:8b:b1:f7:07:ec:a8:a9:4d:5b:93:8c:88:e2:26:f2:
03:4c:1f:40:95:8d:30:70:84:18:3a:2c:d2:a0:d9:f4:93:b0:
a2:1e:0b:95:53:2c:03:5b:dc:0e:77:51:65:43:bb:86:2e:37:
8a:f6:81:1c:59:4c:33:d8:89:e9:8c:2d:b5:64:c0:28:61:a9:
e3:cb:bf:0b:db:ac:43:ab:ea:18:82:52:ca:3f:a6:9d:12:4a:
8d:30:9a:6c:11:49:0d:2c:72:05:33:40:73:b8:de:8f:db:ac:
18:e3:43:74:5b:3e:ac:be:02:0d:f1:09:a8:c0:ca:6e:9a:e7:
32:bf:0c:d9:b1:24:e7:85:18:17:aa:4b:f7:70:f9:0e:91:be:
6b:31:c0:c8:3b:04:a5:0f:51:54:7f:21:68:e2:88:e6:0d:62:
3e:56:7b:bb
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIENY1uQzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MWY1YTEwZTRmZDI2NTVhZGJiYjQwZWRlMThiMjYxNWFjNTU4ZWE5MB4XDTIyMDEw
MTE0NTUzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGU1Y2NmZGJmMmEx
ZTJkNjk1ZTk3Nzc4YzViYjc4MjQ3YzA2YWNmMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPVHrr8X76gAtjXKmFIb9j/ah3HbxKZ+3O557iVRCgnxcGQG
FaCEMi7+ZQP5dPXtouc+NCemKoypIUyIq2rFyy//OtFn8hmpq60TbdjIbG5/Gq5l
LqchwPK1hYBNEIADCxa8epAGuKdhKvcPGrjIQ6zjcLdz34B7DCexQ693Cvo1sAX7
rMdq8GAlQqEdOV20QnZPnvsua6kWTu3BZCkckE0wHFAMHtr8K99Tfdz5agQ3GOkP
1gJgdVBYXXy3ke24Lyc85Dkxw6afNwC7hQsTdppyKs+3DTSe3yPGdt7mFPMX79X5
Ak1sL4jVusrkaoDfGjSdXCFQpkDkHp4AF6yG0TMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBROXM/b8qHi1pXpd3jFu3gkfAas8TAfBgNVHSMEGDAWgBRB9aEOT9JlWtu7
QO3hiyYVrFWOqTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FmV2hEa19TWlZyYnUwRHQ0WXNtRmF4Vmpxay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjYvOGQzYzgyLWU0MDMtNGRhNi1iMzE1LTg3OTAyMDZmMGQ3NC8x
L1RselAyX0toNHRhVjZYZDR4YnQ0Skh3R3JQRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjYv
OGQzYzgyLWU0MDMtNGRhNi1iMzE1LTg3OTAyMDZmMGQ3NC8xL1FmV2hEa19TWlZy
YnUwRHQ0WXNtRmF4Vmpxay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF4aJjANBgkqhkiG9w0BAQsFAAOC
AQEALRpuU27lKKAcOWMc8YrCKNQ0Kk53aJUmjelAAZSvwOnSAl96aktRx5nL5ewm
+/ZtOtLIvHQR7XexLuZnHLk3odLzlwa1nCdhEcCWXPmThlWpmmJbOWCX32xgNWzg
i7H3B+yoqU1bk4yI4ibyA0wfQJWNMHCEGDos0qDZ9JOwoh4LlVMsA1vcDndRZUO7
hi43ivaBHFlMM9iJ6YwttWTAKGGp48u/C9usQ6vqGIJSyj+mnRJKjTCabBFJDSxy
BTNAc7jej9usGONDdFs+rL4CDfEJqMDKbprnMr8M2bEk54UYF6pL93D5DpG+azHA
yDsEpQ9RVH8haOKI5g1iPlZ7uw==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:55:13 2025 by rpki-client