Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/7e500d-5552-4b82-a3bd-aa0071b7bf84/1/TQIN5S5r4hcTwUygwwPjmA-f5Sk.roa
File: TQIN5S5r4hcTwUygwwPjmA-f5Sk.roa (raw, json)
Hash identifier: dUZ2NBqmUUPhBPgNz/2XYkbpWt69/ySmrz+RO+bNQWU=
Subject key identifier: 4D:02:0D:E5:2E:6B:E2:17:13:C1:4C:A0:C3:03:E3:98:0F:9F:E5:29
Certificate issuer: /CN=339cbb1e439a3a71eb8796692f622bf838f8488c
Certificate serial: 3785A7A9
Authority key identifier: 33:9C:BB:1E:43:9A:3A:71:EB:87:96:69:2F:62:2B:F8:38:F8:48:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M5y7HkOaOnHrh5ZpL2Ir-Dj4SIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/7e500d-5552-4b82-a3bd-aa0071b7bf84/1/TQIN5S5r4hcTwUygwwPjmA-f5Sk.roa
Signing time: Sat 01 Jan 2022 02:55:50 +0000
ROA not before: Sat 01 Jan 2022 02:55:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204534
IP address blocks: 193.151.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 931506089 (0x3785a7a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=339cbb1e439a3a71eb8796692f622bf838f8488c
Validity
Not Before: Jan 1 02:55:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d020de52e6be21713c14ca0c303e3980f9fe529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:09:c1:48:49:38:58:d0:56:fa:66:b1:b7:c6:
24:b9:47:12:47:fd:7d:93:51:e4:ab:cc:c8:0c:e9:
2e:1c:e7:ce:9f:ec:1a:d1:a0:92:09:f5:67:ad:8a:
95:73:51:8c:0b:5d:96:9e:81:2c:53:ad:a9:ee:16:
14:90:81:3c:fe:66:d0:9b:48:4f:7d:92:d2:c8:52:
ae:05:27:99:56:ea:6b:d9:22:9d:54:20:d0:15:c4:
60:3f:7e:41:d5:33:b2:34:16:5b:03:1d:79:52:47:
11:f8:18:13:6c:b1:dd:57:1f:91:1a:bd:b9:52:73:
bc:c5:51:c2:90:1f:2e:aa:d8:04:dd:22:bc:65:70:
2c:4d:ef:4d:d0:41:97:1a:ff:e1:eb:d6:88:72:f2:
62:89:08:7f:49:52:19:00:0c:3d:74:61:34:eb:08:
8a:36:d3:4e:4a:9e:cf:3c:46:3f:b7:c7:90:fb:90:
4e:13:c4:8d:f8:17:4e:29:1e:22:5b:86:e7:c5:fa:
f8:71:47:01:5b:64:f6:fc:ce:db:b2:3e:27:c1:c8:
6c:d1:2d:da:2d:76:5d:76:93:30:01:43:87:45:45:
cb:10:c0:3b:c6:aa:95:18:9f:77:ad:de:3f:0a:99:
31:ba:3f:cd:eb:03:ec:da:dc:25:7a:9a:d1:60:7a:
df:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:02:0D:E5:2E:6B:E2:17:13:C1:4C:A0:C3:03:E3:98:0F:9F:E5:29
X509v3 Authority Key Identifier:
keyid:33:9C:BB:1E:43:9A:3A:71:EB:87:96:69:2F:62:2B:F8:38:F8:48:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M5y7HkOaOnHrh5ZpL2Ir-Dj4SIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/7e500d-5552-4b82-a3bd-aa0071b7bf84/1/TQIN5S5r4hcTwUygwwPjmA-f5Sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/7e500d-5552-4b82-a3bd-aa0071b7bf84/1/M5y7HkOaOnHrh5ZpL2Ir-Dj4SIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.39.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:7c:5f:2b:89:69:fc:9b:8f:d9:f0:b0:21:bd:fd:1c:99:94:
e5:65:cd:36:e6:59:ce:87:0d:28:71:03:48:8a:2e:ea:3c:00:
bd:77:cb:52:76:bc:46:8a:73:f4:38:51:03:5a:17:ab:59:3f:
50:51:28:12:e6:36:82:9b:12:e5:51:77:43:e1:3a:95:6a:ea:
a6:01:c3:2c:d6:46:98:61:fb:80:41:bc:f0:97:90:bc:31:87:
29:ad:27:9c:fe:65:11:89:47:ad:01:f0:10:e5:e2:7c:0d:b2:
5b:ca:3a:27:b4:96:fa:0e:59:f3:bf:0e:90:51:25:17:41:ea:
9f:aa:ba:30:a7:d2:86:bd:20:cf:d1:d3:a4:f3:a3:1a:8a:86:
0a:31:10:c9:fb:f0:fd:c5:5d:43:a4:f1:72:d1:98:59:24:dc:
d0:65:91:d3:cf:08:50:55:3d:3e:88:aa:fd:2c:83:16:16:cc:
2a:87:d2:4d:91:96:ec:a9:65:1b:a5:bd:2f:f9:96:2d:79:a6:
23:90:db:cd:e9:6a:01:ba:ed:20:77:6c:df:2b:08:21:2c:b6:
4d:49:d5:c1:d5:49:a7:43:f2:ba:ca:ba:f1:e9:9b:af:b8:b6:
eb:bd:32:ee:c2:59:5b:aa:76:76:e1:5d:bc:e3:72:3c:ce:6f:
97:e2:42:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:59 2024 by rpki-client on console-fra.rpki-client.org