Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/c0fc0a-15d4-46cc-a8b9-47632cb5b854/1/Tc26Ic1lQSrju1MmIoZ67jN0ey4.roa
File: Tc26Ic1lQSrju1MmIoZ67jN0ey4.roa (raw, json)
Hash identifier: jpcfiXIGCyUT+jw4qy7KDgpGH671j7VINnibfbuH/oY=
Subject key identifier: 4D:CD:BA:21:CD:65:41:2A:E3:BB:53:26:22:86:7A:EE:33:74:7B:2E
Certificate issuer: /CN=7de98f48e988790d0e0793537941b413d2e60306
Certificate serial: 0AD70FFA
Authority key identifier: 7D:E9:8F:48:E9:88:79:0D:0E:07:93:53:79:41:B4:13:D2:E6:03:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/femPSOmIeQ0OB5NTeUG0E9LmAwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/c0fc0a-15d4-46cc-a8b9-47632cb5b854/1/Tc26Ic1lQSrju1MmIoZ67jN0ey4.roa
Signing time: Tue 28 Jun 2022 21:56:02 +0000
ROA not before: Tue 28 Jun 2022 21:56:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41849
IP address blocks: 91.102.135.0/24 maxlen: 24
91.102.134.0/23 maxlen: 23
91.102.134.0/24 maxlen: 24
5.252.44.0/22 maxlen: 22
91.102.130.0/24 maxlen: 24
91.102.128.0/22 maxlen: 22
2a01:7140::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181866490 (0xad70ffa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7de98f48e988790d0e0793537941b413d2e60306
Validity
Not Before: Jun 28 21:56:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4dcdba21cd65412ae3bb532622867aee33747b2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b7:21:e9:33:20:12:d6:df:72:8c:df:32:a7:
08:70:cd:f1:62:11:11:b9:0d:e6:dc:06:66:73:e6:
8b:93:65:5c:26:65:3e:2a:14:cf:6a:9b:b3:43:a6:
01:5c:16:c2:b5:e3:fa:3a:b4:e6:42:d6:07:88:57:
52:fe:b2:cf:db:38:84:ec:5f:94:01:55:75:96:4e:
11:a9:1a:4e:a2:f5:35:93:e2:0b:12:b5:12:cb:fb:
4b:57:94:fa:5e:de:f5:b1:c3:35:19:c7:e9:a7:a7:
74:67:28:9f:98:be:e9:9f:c8:f8:f5:5e:c6:2f:27:
1e:dc:bc:cf:d6:b1:77:a6:0f:e7:64:12:93:c2:ea:
47:1e:ce:2a:f5:60:f7:41:77:22:96:c9:5b:aa:0b:
17:71:ad:fb:5d:a7:4e:af:61:86:21:a8:9d:4f:e6:
be:d7:12:e0:93:00:97:9b:57:4a:ee:a6:e8:6f:a5:
79:65:b5:aa:e3:af:70:35:fd:43:78:44:a4:26:08:
b2:64:58:48:cb:95:6a:d7:9d:82:e3:b6:ed:21:7c:
33:e4:98:73:54:eb:0d:3b:70:18:06:93:45:66:ac:
04:b1:e2:cc:84:7a:aa:e1:90:da:64:b3:17:29:86:
6b:7c:01:0f:5a:fc:e4:e4:18:00:17:4f:98:3c:84:
97:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:CD:BA:21:CD:65:41:2A:E3:BB:53:26:22:86:7A:EE:33:74:7B:2E
X509v3 Authority Key Identifier:
keyid:7D:E9:8F:48:E9:88:79:0D:0E:07:93:53:79:41:B4:13:D2:E6:03:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/femPSOmIeQ0OB5NTeUG0E9LmAwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/c0fc0a-15d4-46cc-a8b9-47632cb5b854/1/Tc26Ic1lQSrju1MmIoZ67jN0ey4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/c0fc0a-15d4-46cc-a8b9-47632cb5b854/1/femPSOmIeQ0OB5NTeUG0E9LmAwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.44.0/22
91.102.128.0/22
91.102.134.0/23
IPv6:
2a01:7140::/32
Signature Algorithm: sha256WithRSAEncryption
35:1c:85:63:11:0c:c2:67:aa:da:83:be:f0:d7:d1:88:c4:e9:
e0:a8:2d:7a:79:c7:72:08:cd:76:be:4b:55:77:de:9b:ec:27:
fb:95:8b:38:49:89:23:2f:04:7c:77:9b:8c:07:7b:a1:fe:d9:
ad:04:f6:2e:98:8c:cf:dd:9d:83:5d:95:11:f9:04:56:e4:63:
d4:9c:01:bd:36:f6:35:67:04:4d:af:cc:b0:28:b7:95:79:74:
2c:07:63:ab:d8:29:91:69:64:d9:8d:8a:f4:26:18:19:5c:38:
46:f6:87:0e:94:0d:ec:95:2f:28:3c:02:41:ee:ba:cb:02:2c:
65:97:31:c2:d8:f7:44:7b:a0:06:5a:28:39:cd:0c:a3:24:95:
c3:42:27:bd:05:63:db:41:96:77:03:54:83:09:d4:ed:ee:bc:
20:fa:f3:59:b6:6e:43:71:5a:4a:df:54:6f:63:38:b9:c4:bb:
c1:0c:58:36:94:d4:90:e4:ca:7e:8c:71:79:a4:a4:11:c5:86:
3b:b4:ae:1f:c6:b0:ae:f2:13:1a:1f:92:81:83:c7:83:4b:27:
f3:dd:05:9c:5f:d5:1c:38:f1:10:76:ad:f8:6f:e4:f4:32:4d:
bd:37:20:b7:cc:6b:7d:9d:38:78:97:68:a2:ed:c4:46:ba:0e:
91:46:07:f5
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:56 2024 by rpki-client on console-fra.rpki-client.org