Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/eb27f2-e369-4b07-8d1d-c3431d320406/1/TQ1ny5uvugpiIlNzkEp92ofQT5A.roa
File: TQ1ny5uvugpiIlNzkEp92ofQT5A.roa (raw, json)
Hash identifier: jP+a1bqzFrUDqomOJnYBN3THbj4h0FfenFHfAVVzBj0=
Subject key identifier: 4D:0D:67:CB:9B:AF:BA:0A:62:22:53:73:90:4A:7D:DA:87:D0:4F:90
Certificate issuer: /CN=27321078f359d7990276dabb0f8c30070e685963
Certificate serial: 054A4526
Authority key identifier: 27:32:10:78:F3:59:D7:99:02:76:DA:BB:0F:8C:30:07:0E:68:59:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JzIQePNZ15kCdtq7D4wwBw5oWWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/eb27f2-e369-4b07-8d1d-c3431d320406/1/TQ1ny5uvugpiIlNzkEp92ofQT5A.roa
Signing time: Sat 01 Jan 2022 14:58:25 +0000
ROA not before: Sat 01 Jan 2022 14:58:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13121
IP address blocks: 46.231.224.0/21 maxlen: 21
213.169.64.0/19 maxlen: 19
2a01:6880::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88753446 (0x54a4526)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27321078f359d7990276dabb0f8c30070e685963
Validity
Not Before: Jan 1 14:58:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d0d67cb9bafba0a62225373904a7dda87d04f90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:86:87:cc:51:9e:13:2c:e5:7e:d3:9d:7b:1f:
e3:78:35:53:7d:6d:83:d9:cd:01:00:8e:74:13:08:
bd:8c:7e:62:2e:53:91:82:33:f6:c3:ca:23:5b:9a:
bd:81:0b:0c:88:39:8c:fb:9a:c2:eb:4a:70:07:39:
5a:74:a9:8c:ad:ff:d8:62:e2:b5:01:45:8c:c9:e4:
d7:1b:4a:75:53:b2:fd:6b:fd:9f:bf:ae:7d:b8:c3:
36:f9:a8:32:40:61:2a:31:6a:b5:99:d3:43:21:b9:
23:7e:2e:9e:17:e5:ba:22:3f:91:de:27:97:b9:33:
ad:87:7c:d2:94:01:da:47:fe:6a:33:6c:ad:58:26:
49:3b:9e:09:19:80:24:4e:0d:8b:cb:d8:31:e4:9b:
79:f0:e9:e3:e6:14:8e:49:d6:6a:52:b0:b2:fc:78:
87:ef:95:49:ad:28:0b:f1:d7:8e:cd:de:95:c9:fd:
1a:0b:8d:84:32:48:32:39:ea:16:d6:f2:a1:72:a0:
d4:71:b1:28:d2:e1:32:fc:d8:62:64:d2:59:64:dd:
fc:dc:93:a7:74:e0:1b:14:6d:b5:09:b8:4f:0e:de:
f5:01:24:ed:99:f6:a8:14:3e:30:f3:41:ff:34:1a:
cf:35:a7:44:91:2a:f6:93:d2:fb:4c:25:2a:51:9b:
19:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:0D:67:CB:9B:AF:BA:0A:62:22:53:73:90:4A:7D:DA:87:D0:4F:90
X509v3 Authority Key Identifier:
keyid:27:32:10:78:F3:59:D7:99:02:76:DA:BB:0F:8C:30:07:0E:68:59:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JzIQePNZ15kCdtq7D4wwBw5oWWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/eb27f2-e369-4b07-8d1d-c3431d320406/1/TQ1ny5uvugpiIlNzkEp92ofQT5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/eb27f2-e369-4b07-8d1d-c3431d320406/1/JzIQePNZ15kCdtq7D4wwBw5oWWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.231.224.0/21
213.169.64.0/19
IPv6:
2a01:6880::/32
Signature Algorithm: sha256WithRSAEncryption
6e:3a:f4:29:80:28:38:6c:1e:d8:51:eb:d7:fc:60:b8:71:8f:
8f:b9:5e:c5:30:53:39:5b:40:3d:49:93:4d:e6:5f:07:6d:27:
9f:c3:b0:92:b9:2c:58:9b:ad:3b:5a:b4:71:c8:a5:90:8c:03:
a8:fa:f9:d6:c3:0d:3e:91:ba:eb:9c:ea:20:2f:a8:f2:7e:17:
25:aa:83:f5:e0:86:ba:08:52:4d:2a:23:ff:1c:32:24:83:e0:
8f:31:89:25:91:e0:67:8a:11:7e:c4:e4:f9:15:0b:ff:c5:c7:
05:7f:65:24:db:0b:ad:91:2a:a6:cb:a4:16:37:37:b3:9c:68:
f4:e1:d7:8f:8b:bd:ca:5d:5b:09:0b:49:a7:c9:86:f1:b4:39:
83:69:60:9a:95:7a:8a:34:6d:76:1c:1c:a4:20:ae:6a:1e:ec:
56:67:a7:c7:74:85:c0:d3:99:63:50:45:25:22:22:3f:b9:6a:
56:bf:09:76:2a:08:59:b2:eb:ea:1c:7c:e0:f2:f9:cd:9f:81:
4a:94:32:97:65:07:e4:c0:2a:94:dc:8b:f6:cb:a2:5a:04:50:
4c:9c:dd:c9:46:91:5d:4c:ec:e7:c3:f0:1b:74:c6:f1:4d:15:
e7:be:40:a8:20:c3:5d:d8:bc:bb:c8:47:ba:20:d6:e3:2a:93:
91:b3:92:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:27 2024 by rpki-client on console-fra.rpki-client.org