Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/39cb4f-ca88-480e-97d9-073d0d14ddde/1/tfcv5cgpfxMMQTFiQBKutj92DSo.roa
File: tfcv5cgpfxMMQTFiQBKutj92DSo.roa (raw, json)
Hash identifier: 8XIaC12A1I8WaQSvHbUuQy0uPgHmo1kRNaUOl7Z3tSM=
Subject key identifier: B5:F7:2F:E5:C8:29:7F:13:0C:41:31:62:40:12:AE:B6:3F:76:0D:2A
Certificate issuer: /CN=86fa564cf97577c07633ba4e640ea78c76fc17dd
Certificate serial: 01834038EDF04C7D441858BED60FC6D886DF
Authority key identifier: 86:FA:56:4C:F9:75:77:C0:76:33:BA:4E:64:0E:A7:8C:76:FC:17:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hvpWTPl1d8B2M7pOZA6njHb8F90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/39cb4f-ca88-480e-97d9-073d0d14ddde/1/tfcv5cgpfxMMQTFiQBKutj92DSo.roa
Signing time: Thu 15 Sep 2022 08:16:56 +0000
ROA not before: Thu 15 Sep 2022 08:16:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206515
IP address blocks: 45.82.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:40:38:ed:f0:4c:7d:44:18:58:be:d6:0f:c6:d8:86:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86fa564cf97577c07633ba4e640ea78c76fc17dd
Validity
Not Before: Sep 15 08:16:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5f72fe5c8297f130c4131624012aeb63f760d2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:11:b4:7e:d5:91:8a:de:31:92:07:03:8f:25:
5c:fd:ff:10:67:57:cb:9a:be:75:90:e4:fb:7d:b4:
bb:eb:de:2e:a8:9b:ef:b9:14:73:07:d5:0b:78:26:
7b:a9:4e:62:2f:eb:ba:f9:12:3c:df:be:b2:c7:14:
a9:51:d7:ef:96:6b:4e:f5:e8:83:3d:a9:9f:4b:1e:
4c:c3:96:b9:00:2f:0e:00:2c:97:d3:3a:c3:ab:7b:
9f:d2:c0:15:fc:52:f9:07:ec:ed:50:ed:0d:70:fa:
c3:6a:bb:14:94:af:20:5c:42:5a:b3:3c:66:f7:91:
ba:6e:33:07:2c:18:f4:5b:0b:da:51:2d:80:be:45:
ed:21:8a:24:ce:4f:f1:cf:2f:c9:e4:ef:77:0c:2d:
0e:b4:6e:ea:8d:bf:ad:14:d4:94:14:a0:ca:86:c9:
99:64:fc:cf:8a:19:cf:dc:fc:c0:71:a5:b0:99:e5:
6d:98:4f:53:56:08:70:84:ce:51:7f:24:5d:b0:ce:
b6:de:72:a9:c5:fc:24:88:8d:ec:45:7c:23:30:e9:
28:14:65:38:11:55:50:f6:83:68:7e:0e:ec:3f:ee:
02:c3:01:bb:eb:b9:8c:dd:a8:88:6d:21:5b:5d:ee:
a0:fe:7c:c9:34:3e:b6:7b:7d:cd:fd:89:d6:7b:50:
02:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:F7:2F:E5:C8:29:7F:13:0C:41:31:62:40:12:AE:B6:3F:76:0D:2A
X509v3 Authority Key Identifier:
keyid:86:FA:56:4C:F9:75:77:C0:76:33:BA:4E:64:0E:A7:8C:76:FC:17:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hvpWTPl1d8B2M7pOZA6njHb8F90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/39cb4f-ca88-480e-97d9-073d0d14ddde/1/tfcv5cgpfxMMQTFiQBKutj92DSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/39cb4f-ca88-480e-97d9-073d0d14ddde/1/hvpWTPl1d8B2M7pOZA6njHb8F90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.217.0/24
Signature Algorithm: sha256WithRSAEncryption
56:96:e0:bd:00:dc:bb:60:df:d8:04:23:65:e7:d4:93:00:a5:
c2:b8:34:c8:37:fe:b8:d0:f4:56:cb:97:f4:0f:ea:30:f9:b4:
da:a5:f8:68:87:8b:d0:72:b7:16:3c:53:79:d0:9b:21:0b:9f:
d0:da:f5:c2:8e:d4:69:df:a2:72:d5:c5:df:99:f6:b2:4f:9b:
75:79:6e:80:60:f2:e5:a3:98:5e:4d:ee:33:d2:c9:51:c9:4b:
1e:0f:5c:6d:17:30:16:1f:03:e5:9f:63:7a:34:54:62:51:6b:
4a:a7:87:5b:e9:ca:a7:32:64:68:d9:05:6a:39:83:41:41:91:
b7:87:c2:69:ae:2e:14:d4:9a:04:c8:f0:80:81:ba:e1:cf:67:
92:0b:8b:d5:fe:36:7a:9b:b6:2b:eb:9e:08:c2:6e:d8:49:04:
34:55:fa:4a:51:3f:2e:a3:05:3a:f7:66:1c:61:30:c1:17:ac:
e2:b6:69:e1:76:67:ed:51:8c:ad:75:f7:49:cd:f1:c6:0c:aa:
46:5a:c7:d2:5e:51:dd:ab:95:60:68:12:56:ac:43:d8:7e:60:
6a:6c:6f:09:0b:d3:49:93:a8:42:68:9c:e0:43:5e:34:8d:cb:
a3:ba:09:b8:be:78:b5:ae:68:4c:af:4c:1f:22:6c:c4:1b:9b:
cc:e2:46:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:27 2024 by rpki-client on console-fra.rpki-client.org