Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/39254c-5286-4b84-b691-4014478bb6c8/1/TLk55im5ibRsIeH1MDTcmzI2jQs.roa
File: TLk55im5ibRsIeH1MDTcmzI2jQs.roa (raw, json)
Hash identifier: O086g9jCUgenzKGgpOVkmnW1MptoPsRg/CqhdnpfJPA=
Subject key identifier: 4C:B9:39:E6:29:B9:89:B4:6C:21:E1:F5:30:34:DC:9B:32:36:8D:0B
Certificate issuer: /CN=8c810edc51abd61e69f3c69ee49d88e9896a6f09
Certificate serial: 01B56E
Authority key identifier: 8C:81:0E:DC:51:AB:D6:1E:69:F3:C6:9E:E4:9D:88:E9:89:6A:6F:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jIEO3FGr1h5p88ae5J2I6Ylqbwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/39254c-5286-4b84-b691-4014478bb6c8/1/TLk55im5ibRsIeH1MDTcmzI2jQs.roa
Signing time: Wed 13 Apr 2022 16:20:47 +0000
ROA not before: Wed 13 Apr 2022 16:20:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10753
IP address blocks: 185.165.194.0/24 maxlen: 24
2a10:a180::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111982 (0x1b56e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c810edc51abd61e69f3c69ee49d88e9896a6f09
Validity
Not Before: Apr 13 16:20:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4cb939e629b989b46c21e1f53034dc9b32368d0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3b:b7:96:91:73:9f:11:6c:58:b3:74:32:c8:
47:a9:f7:c7:2d:74:b9:ec:77:31:34:09:75:95:89:
82:f4:2c:15:c3:06:48:39:7c:60:f0:8d:02:88:13:
b5:75:dd:7d:d3:b5:dd:0a:37:2c:5f:f7:89:30:12:
01:d1:86:c7:d0:88:7c:bd:1d:ea:b9:c7:00:03:60:
2c:c2:95:e8:c6:96:a3:18:c3:b5:84:0f:7d:60:81:
7f:85:fe:58:ba:92:bd:08:bd:c9:d9:ac:6c:d4:fd:
e9:fa:37:8f:66:12:0a:e9:f9:33:0b:17:f5:82:58:
26:f4:18:a9:fd:87:18:60:56:47:2f:01:3f:86:7a:
9f:5f:1b:de:43:f1:94:6a:1c:38:d9:df:60:f9:d8:
a1:ac:02:02:74:d9:3a:44:93:00:29:2b:77:b4:cc:
fa:7e:f1:26:33:6b:83:5f:28:fd:87:3d:3f:71:7d:
aa:82:5f:0f:58:5c:e7:56:47:18:5d:dc:75:0e:06:
74:36:a9:0b:01:ee:20:e4:26:0d:75:b6:7d:5d:56:
6f:a2:c9:43:23:1a:52:b4:c6:0a:d4:9b:e4:ae:e4:
13:cb:a3:3a:55:e2:05:92:7e:47:34:6d:e5:e1:4b:
d3:a2:b6:34:50:d9:7e:4c:6b:be:76:af:83:aa:d8:
99:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B9:39:E6:29:B9:89:B4:6C:21:E1:F5:30:34:DC:9B:32:36:8D:0B
X509v3 Authority Key Identifier:
keyid:8C:81:0E:DC:51:AB:D6:1E:69:F3:C6:9E:E4:9D:88:E9:89:6A:6F:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jIEO3FGr1h5p88ae5J2I6Ylqbwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/39254c-5286-4b84-b691-4014478bb6c8/1/TLk55im5ibRsIeH1MDTcmzI2jQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/39254c-5286-4b84-b691-4014478bb6c8/1/jIEO3FGr1h5p88ae5J2I6Ylqbwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.194.0/24
IPv6:
2a10:a180::/30
Signature Algorithm: sha256WithRSAEncryption
ab:6a:96:8a:b1:f1:5b:8d:91:f2:40:93:a6:22:0e:fd:17:c8:
54:34:d8:47:c4:da:92:40:a1:d0:ea:be:95:98:43:9a:af:04:
b7:dd:33:e9:a5:57:7f:69:9e:aa:53:cf:41:08:37:b2:4f:4c:
79:6d:53:bd:7a:b7:42:e2:79:99:4b:50:14:9e:e0:e2:e3:ca:
24:a0:3c:71:1e:b1:dc:67:54:07:72:3d:61:85:4e:4c:78:0a:
ba:db:d8:9e:c6:ba:c4:a5:bf:3b:9c:05:41:eb:8b:e3:36:d9:
71:7c:ba:5c:20:b8:05:91:6c:5d:3a:4d:dd:34:2f:47:be:30:
02:13:a5:17:fd:ef:f4:20:84:01:1f:0e:c2:b5:3b:58:ec:57:
17:30:36:3c:da:3e:e2:57:6e:82:07:45:5b:5d:5b:f0:6e:7b:
19:86:49:b3:24:5e:60:a1:95:0a:ce:cd:9a:85:46:f7:a5:75:
3e:19:b5:aa:0a:08:2c:d5:0c:22:03:f5:c2:be:b7:33:72:5f:
64:11:8a:08:8d:35:8d:f2:1e:bd:17:e3:e6:af:ae:e7:87:6d:
db:ba:22:a9:b8:8a:4e:c0:5f:d6:ce:f6:3e:c0:15:47:c2:04:
10:2a:bc:48:b6:92:7f:96:70:5d:37:46:3a:19:c2:2d:49:e2:
26:89:4f:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:24 2024 by rpki-client on console-fra.rpki-client.org