Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/TUsJLwgnjeTKKJOW3llhB-b6_f4.roa
File: TUsJLwgnjeTKKJOW3llhB-b6_f4.roa (raw, json)
Hash identifier: MBSni5aTTusY6ErI6SXX/+HHeeMU/QKHnjNpMCpu+oM=
Subject key identifier: 4D:4B:09:2F:08:27:8D:E4:CA:28:93:96:DE:59:61:07:E6:FA:FD:FE
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42A43D61
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/TUsJLwgnjeTKKJOW3llhB-b6_f4.roa
Signing time: Sun 24 Apr 2022 17:51:09 +0000
ROA not before: Sun 24 Apr 2022 17:51:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48161
IP address blocks: 89.39.120.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1118059873 (0x42a43d61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Apr 24 17:51:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d4b092f08278de4ca289396de596107e6fafdfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e1:5a:21:e8:ba:78:ed:03:74:0b:78:ff:6c:
b5:08:38:8a:7f:c5:84:7c:87:9c:96:9d:56:34:c1:
60:61:ed:a2:4e:f0:62:7a:50:2a:cc:62:da:92:2e:
6a:dd:e1:ec:78:67:cd:44:62:c9:78:cc:2d:32:9e:
d7:56:89:20:49:c4:d0:51:84:d2:b9:ef:e1:d3:28:
28:0c:cb:e6:3d:25:4f:1e:07:1c:ea:f1:8a:02:6d:
13:f6:b8:f3:1f:db:01:c5:6b:af:38:10:5f:77:ea:
c1:d1:e2:d7:4e:c5:6e:d1:08:45:f7:ec:9e:b0:5c:
36:a7:fd:de:6e:20:4c:ec:a3:01:9b:bb:9f:02:d5:
16:22:d0:f5:57:a9:54:e5:10:c9:ca:59:9b:bc:7f:
9f:7c:a9:dc:9d:04:43:c2:df:03:4c:9e:cc:5d:61:
66:48:d4:49:e2:ea:50:60:a6:94:c4:04:e0:87:00:
26:a9:1e:36:e6:df:af:e7:60:4c:25:8d:d0:fe:6b:
e4:67:73:29:37:68:29:31:d3:32:db:e9:4e:29:f1:
af:30:19:bc:30:f5:ce:b8:b5:b9:15:82:32:f3:50:
20:8d:c9:d0:b5:1b:02:44:84:30:e7:68:7d:2a:11:
a9:c0:67:5f:39:f5:6c:96:58:bc:a8:b9:a2:92:52:
b2:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:4B:09:2F:08:27:8D:E4:CA:28:93:96:DE:59:61:07:E6:FA:FD:FE
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/TUsJLwgnjeTKKJOW3llhB-b6_f4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.39.120.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:be:33:6e:7c:3d:ec:92:54:85:ff:63:ec:56:d3:84:89:3f:
07:69:5b:00:56:15:21:1d:9a:51:29:20:9f:5c:90:e3:72:c1:
23:fc:c6:14:2d:19:f6:37:87:02:93:b8:4c:d7:84:7a:9d:61:
f7:96:38:2c:a1:2c:02:88:e3:79:82:cf:bb:46:dc:77:9a:be:
5a:ba:d8:f0:c4:69:4e:d0:93:e7:51:b4:a8:d2:1a:c5:29:1a:
2f:30:05:ab:4d:9d:0f:cc:35:37:8b:58:14:71:e9:17:38:b9:
6f:1e:fc:3b:c4:b1:9d:14:53:ca:0b:d6:5d:3b:73:61:8a:89:
a5:e7:f5:f0:eb:91:b4:ff:49:66:16:f5:9b:29:2d:1d:79:97:
0c:18:c9:dd:83:cd:c0:81:31:1e:df:8b:e4:36:0c:ad:30:a1:
67:29:e0:b2:6c:29:af:57:d7:fa:63:c5:72:04:5f:60:91:0e:
6f:e0:90:3a:6b:2f:b2:13:12:4b:36:fc:9e:d0:3d:4b:8a:e8:
75:2c:f7:66:b1:19:97:9d:5b:5f:6e:cf:0a:c2:da:c6:cd:98:
98:d9:34:76:6f:99:08:0e:ef:f8:c4:89:68:1f:6f:98:6d:77:
ae:0e:59:15:1f:92:99:13:e0:b0:fe:83:fc:e8:98:4a:f1:05:
46:14:9a:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:52 2024 by rpki-client on console-ams.rpki-client.org