Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/Tc_312ZWbCaUVd1-blww0N8Lkwk.roa
File: Tc_312ZWbCaUVd1-blww0N8Lkwk.roa (raw, json)
Hash identifier: CczC+bXBRK94ioQIBbI/BHiJ3Or5V3DVZubN1EEhI6k=
Subject key identifier: 4D:CF:F7:D7:66:56:6C:26:94:55:DD:7E:6E:5C:30:D0:DF:0B:93:09
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 0183FAFDA6A82B0F1704957EF0A8A0017480
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/Tc_312ZWbCaUVd1-blww0N8Lkwk.roa
Signing time: Fri 21 Oct 2022 14:41:10 +0000
ROA not before: Fri 21 Oct 2022 14:41:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 94.154.44.0/24 maxlen: 24
94.154.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fa:fd:a6:a8:2b:0f:17:04:95:7e:f0:a8:a0:01:74:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Oct 21 14:41:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4dcff7d766566c269455dd7e6e5c30d0df0b9309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fe:a4:96:69:b2:e9:92:02:e1:63:1b:79:e4:
02:5c:55:50:97:7e:1a:b0:4a:6a:42:3b:ec:bf:a7:
62:9f:7c:bd:d0:ab:eb:16:de:f0:75:f2:e5:d6:90:
6b:d5:3a:70:bc:31:d9:2b:fa:68:4b:ca:3d:3c:78:
53:01:3c:e1:10:7c:ec:d9:30:1e:ab:37:7e:8a:40:
3a:67:ca:57:6f:c9:3e:0b:00:19:f5:88:d7:38:a6:
c3:5c:ea:fb:f1:e4:8f:00:d7:40:c5:7f:3b:ae:17:
40:0e:33:3a:21:42:53:7b:11:a1:04:f8:c1:60:b7:
db:ca:d7:4e:48:13:b1:6c:b4:f6:f1:c3:4d:b8:5b:
2b:ac:0c:40:d4:bb:b7:40:0d:11:dc:b4:aa:fb:a8:
fd:8e:16:2c:55:8a:5e:df:d5:45:3a:8f:d4:73:3a:
ea:a6:39:6d:79:e6:30:86:a7:73:6c:79:07:88:12:
ba:d5:a0:ea:60:53:07:35:74:94:f7:a4:bb:75:9c:
74:00:26:85:58:e2:4f:54:59:7b:09:a1:ff:d4:23:
a2:15:fd:bb:13:62:0d:ca:ad:de:2d:2d:51:4d:30:
85:50:42:8c:bc:ad:6a:72:66:40:73:5b:8c:21:d3:
b3:2b:51:42:2e:53:ea:eb:4b:2a:65:7e:e4:07:cb:
a7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:CF:F7:D7:66:56:6C:26:94:55:DD:7E:6E:5C:30:D0:DF:0B:93:09
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/Tc_312ZWbCaUVd1-blww0N8Lkwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.44.0/23
Signature Algorithm: sha256WithRSAEncryption
67:f1:d6:ae:4d:ac:f2:7d:6c:77:c2:85:ea:ac:56:91:6d:de:
1f:cc:e8:38:f4:7e:5a:56:1f:49:7b:14:37:5e:45:17:0b:e6:
c6:11:05:96:b9:c7:35:2e:8d:7d:04:cd:5d:dc:3f:e0:82:7a:
9b:75:88:20:83:29:28:01:57:76:e8:ee:9d:b9:a6:a2:6d:92:
aa:8b:da:09:52:cf:a4:8d:e8:bd:2a:e3:66:ba:4e:db:bc:23:
4c:33:f4:85:25:b2:ba:86:d3:5d:ca:23:0d:ad:80:12:0d:ba:
10:f7:98:77:a7:dc:5f:20:7a:d8:fb:1a:f9:4e:1c:e7:32:b9:
34:2c:7d:65:e0:cc:13:94:29:be:10:d9:80:77:c8:39:26:f6:
b9:a6:30:9c:46:53:cc:85:32:c1:bb:01:cf:1d:c3:3e:d8:db:
50:0f:a8:8b:d6:05:04:ad:db:7a:b6:61:ea:35:25:e4:c6:92:
b9:e9:2f:76:89:f9:1d:e8:23:75:be:9d:32:84:5e:f6:99:bb:
c7:ce:36:fd:e7:09:bd:92:e4:be:0a:1e:8b:6d:ef:e1:b7:44:
62:59:7c:e8:76:fe:22:87:3b:65:3a:d4:61:39:cb:5e:5f:b0:
b3:fc:ee:a4:9f:11:de:a5:a2:20:c2:60:35:cc:cc:f7:8c:b9:
6f:4e:42:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:55 2024 by rpki-client on console-ams.rpki-client.org