Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/Tya-MCFEqWCzksOqFjheZxb2BFM.roa
File: Tya-MCFEqWCzksOqFjheZxb2BFM.roa (raw, json)
Hash identifier: T35q+WIAEt5Sbp4n1gJ5jfn0hTxI/rrFy2ob3VeJFh4=
Subject key identifier: 4F:26:BE:30:21:44:A9:60:B3:92:C3:AA:16:38:5E:67:16:F6:04:53
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 08360BD3
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/Tya-MCFEqWCzksOqFjheZxb2BFM.roa
Signing time: Sat 01 Jan 2022 07:56:12 +0000
ROA not before: Sat 01 Jan 2022 07:56:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51343
IP address blocks: 212.22.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137759699 (0x8360bd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 07:56:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f26be302144a960b392c3aa16385e6716f60453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b4:c8:48:0d:7b:69:67:8b:45:98:f9:0e:b8:
1d:49:9d:7e:43:50:4a:cb:44:d8:9e:79:b4:52:de:
24:0f:7e:b7:82:32:10:01:35:6a:62:17:29:0f:44:
c0:e2:33:b0:b5:66:e4:31:ff:d8:6e:2c:67:76:7e:
84:0e:26:bb:1e:ab:d6:a0:ad:86:c9:34:06:63:83:
f3:95:89:30:cf:f3:db:39:b0:71:9d:fa:f6:01:1b:
6d:fb:5c:68:27:80:dc:ad:b5:03:65:f6:14:a0:6a:
2f:d6:37:0c:4d:6d:b9:3e:5d:c1:2f:aa:e5:26:58:
12:45:43:29:68:3b:73:05:14:04:58:06:bd:b8:fa:
d0:84:4a:1d:a3:d9:8d:4e:1e:f9:9a:55:9b:f5:3e:
e6:77:b0:03:13:db:ce:83:ca:3c:c9:e3:64:1e:43:
f4:6f:b6:85:a2:67:a6:7f:7f:7e:98:4b:3e:d0:74:
2b:21:81:a8:f3:5a:bc:02:f7:10:06:31:86:85:f4:
56:a7:5b:f2:c6:82:7a:1f:28:28:7e:8f:c1:a0:f2:
8c:f5:d8:cb:de:62:4d:89:72:92:b4:83:1d:aa:ce:
d9:36:55:78:3f:b1:e2:3b:ce:4b:48:de:fe:53:25:
cf:f6:1b:02:ba:2b:2a:2d:06:a2:53:8e:41:2f:a6:
0b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:26:BE:30:21:44:A9:60:B3:92:C3:AA:16:38:5E:67:16:F6:04:53
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/Tya-MCFEqWCzksOqFjheZxb2BFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.95.0/24
Signature Algorithm: sha256WithRSAEncryption
99:d8:92:40:e3:be:59:d6:40:9b:b8:1a:cc:95:d6:18:7f:80:
70:4d:05:e2:6d:02:6c:a1:46:93:62:82:4e:b3:ef:4d:9e:bf:
07:6d:58:24:cc:30:c1:6f:3b:60:68:9f:7d:7d:c9:cb:48:04:
d1:9e:97:95:77:14:e7:0e:8c:0f:1d:24:d4:05:78:aa:96:a2:
5f:2f:c4:1f:72:12:2e:69:d7:ad:e6:9d:c3:8c:cd:ff:9a:d7:
ca:f2:3d:21:18:6f:af:f3:f9:10:b6:d1:82:79:55:67:3d:fe:
9b:ec:1f:1a:35:0a:06:bd:8d:c8:27:f3:46:0f:55:0a:fb:8b:
40:45:3f:ea:0d:d7:a1:17:6e:2b:4d:b8:2a:49:51:e3:9c:27:
de:f3:3c:a3:c4:1b:11:52:59:94:c0:c3:c8:91:f5:e2:4e:00:
43:1e:0a:c1:94:c5:96:50:4d:2e:44:5f:12:45:5d:6f:d9:f5:
4e:36:c4:6c:80:e0:e5:3c:1b:66:a8:28:d5:9b:0d:9a:b9:62:
2e:b2:fa:3d:6b:dc:53:d9:33:db:3b:ce:b7:1c:62:b2:09:00:
1e:c6:f2:91:43:16:60:f7:63:ab:3d:77:6f:e3:97:e8:c6:17:
0c:50:e5:6d:7a:72:60:f1:f8:10:cd:f5:c7:ca:94:e2:fe:c4:
16:ca:39:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org