Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/487562-d171-4686-8569-e6cf17cdda4f/1/TFzzpLyMv2PsQE6wdivcm_1ylqE.roa
File: TFzzpLyMv2PsQE6wdivcm_1ylqE.roa (raw, json)
Hash identifier: 8Z0wg7LYd2Y3OY2SmvrBKvuv3qEW6X176HksrzL9Xd4=
Subject key identifier: 4C:5C:F3:A4:BC:8C:BF:63:EC:40:4E:B0:76:2B:DC:9B:FD:72:96:A1
Certificate issuer: /CN=c453f5e230420bc4a70d0a61de3b47dcda1a8d0e
Certificate serial: 054A2199
Authority key identifier: C4:53:F5:E2:30:42:0B:C4:A7:0D:0A:61:DE:3B:47:DC:DA:1A:8D:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xFP14jBCC8SnDQph3jtH3NoajQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/487562-d171-4686-8569-e6cf17cdda4f/1/TFzzpLyMv2PsQE6wdivcm_1ylqE.roa
Signing time: Sat 01 Jan 2022 05:52:29 +0000
ROA not before: Sat 01 Jan 2022 05:52:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206610
IP address blocks: 185.104.168.0/22 maxlen: 24
185.173.180.0/22 maxlen: 24
2a0b:b880::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88744345 (0x54a2199)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c453f5e230420bc4a70d0a61de3b47dcda1a8d0e
Validity
Not Before: Jan 1 05:52:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c5cf3a4bc8cbf63ec404eb0762bdc9bfd7296a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2d:d3:f6:8d:83:5b:65:76:10:65:ba:0d:4e:
ca:eb:71:38:b4:9e:a8:df:51:4d:ce:84:a2:27:01:
73:54:d7:c4:2f:1c:24:77:9d:5a:ad:5d:e8:4a:73:
6d:4c:86:9b:72:e1:84:fa:c3:e8:e7:3d:3c:ba:4c:
77:ab:f9:e4:0a:b9:3d:be:72:ad:8c:8e:ee:79:c4:
1a:a8:ad:b9:32:c7:37:d8:45:55:ef:9a:3e:26:e8:
1b:dd:0c:4b:82:fb:9f:95:16:16:08:f3:a8:fe:c5:
af:a9:fb:ab:ff:8d:7e:38:60:af:68:fe:f0:22:0e:
c9:40:99:e1:04:86:5c:15:ab:47:c3:2a:c6:d1:d3:
60:fd:98:ee:27:63:90:85:0b:2f:ce:0e:31:b9:b0:
12:7d:a9:ec:50:60:12:4f:45:3d:fc:6a:5d:5c:84:
4e:05:24:17:c6:b8:8e:e6:2f:96:ce:cf:df:a2:2a:
14:df:4d:c2:5f:80:4d:f6:25:6f:57:3d:84:7b:ac:
bf:83:52:44:c6:4b:d8:5a:7e:2e:fe:de:a7:d1:88:
0a:b8:b4:df:83:bd:02:b0:46:2d:b2:7f:79:80:cd:
d5:c8:0f:33:d0:b5:26:4f:57:87:3c:b8:37:da:e2:
c4:5d:86:ac:b5:17:f2:f0:19:2b:49:47:41:36:2e:
9d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:5C:F3:A4:BC:8C:BF:63:EC:40:4E:B0:76:2B:DC:9B:FD:72:96:A1
X509v3 Authority Key Identifier:
keyid:C4:53:F5:E2:30:42:0B:C4:A7:0D:0A:61:DE:3B:47:DC:DA:1A:8D:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xFP14jBCC8SnDQph3jtH3NoajQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/487562-d171-4686-8569-e6cf17cdda4f/1/TFzzpLyMv2PsQE6wdivcm_1ylqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/487562-d171-4686-8569-e6cf17cdda4f/1/xFP14jBCC8SnDQph3jtH3NoajQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.168.0/22
185.173.180.0/22
IPv6:
2a0b:b880::/29
Signature Algorithm: sha256WithRSAEncryption
a5:d0:ea:87:9e:ee:66:e1:fe:f2:64:77:e5:14:8b:b9:03:1e:
d4:0d:99:c4:ae:48:a3:5c:76:3e:7e:14:31:d8:10:a6:68:2b:
58:33:f2:1b:d8:6e:6f:32:25:3d:55:c0:14:bb:11:ec:79:56:
f4:3a:19:89:f1:ae:2a:1c:76:dc:63:b9:53:18:4b:37:15:2d:
ee:7f:c6:3d:cd:4a:a6:6c:9a:c8:08:73:0c:39:93:28:67:58:
35:dd:75:36:e9:89:22:10:cc:4b:46:1e:c4:56:83:93:d3:67:
f3:ce:b7:53:12:e6:dc:e6:f7:66:80:15:08:12:fc:b9:50:57:
1f:b5:09:9a:93:1f:ff:e6:1b:b3:c6:42:07:5d:0b:d4:51:84:
95:9b:38:2e:b1:3c:40:d2:fd:2b:05:01:63:13:1b:86:cf:e5:
60:3d:fc:82:ba:a7:42:e8:26:08:3b:bc:23:b6:d3:3b:96:04:
07:4b:c3:7b:9f:b4:af:3d:f9:78:07:a1:f4:2a:44:df:d2:d9:
67:50:37:3f:99:7d:15:42:b4:02:4c:75:a1:b0:84:95:ee:8d:
3f:d4:c6:bc:a9:01:71:f9:d2:19:72:fc:5c:99:4c:89:42:e6:
77:1f:5b:9b:5f:9f:fa:ad:00:1d:16:58:df:3c:1f:c2:99:83:
b5:c3:41:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:33 2024 by rpki-client on console-fra.rpki-client.org