Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/TUot3y4mwmjP_Kcwh8-hGVWQFD0.roa
File: TUot3y4mwmjP_Kcwh8-hGVWQFD0.roa (raw, json)
Hash identifier: 1YQPkIJb/Sp3MPIZGyxBfxyEM43EvW8+UlskGA3ILhs=
Subject key identifier: 4D:4A:2D:DF:2E:26:C2:68:CF:FC:A7:30:87:CF:A1:19:55:90:14:3D
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 18715A56
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/TUot3y4mwmjP_Kcwh8-hGVWQFD0.roa
Signing time: Wed 26 Jan 2022 22:17:39 +0000
ROA not before: Wed 26 Jan 2022 22:17:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46261
IP address blocks: 45.12.232.0/24 maxlen: 32
45.138.210.0/23 maxlen: 24
45.10.3.0/24 maxlen: 32
193.160.212.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 410081878 (0x18715a56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 26 22:17:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d4a2ddf2e26c268cffca73087cfa1195590143d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:eb:fe:f0:ad:8e:03:79:f8:a7:85:7d:d8:a3:
af:a7:70:2a:1e:49:cc:9b:4f:c3:45:e6:48:3f:d3:
69:57:25:0b:ab:15:15:e7:a8:07:c3:a3:4d:8a:cc:
8d:58:f4:d9:48:43:a8:39:80:1c:02:0d:25:95:e3:
08:51:c6:b4:df:60:67:70:5d:68:ec:7e:7f:a1:55:
b1:32:b0:83:ae:42:84:39:eb:e7:43:22:81:74:ad:
9f:c5:b5:2e:dd:76:28:cd:dc:8b:6a:41:59:37:10:
3a:43:e1:dc:a1:25:63:4f:e2:8c:10:9f:8f:0d:65:
ae:b4:a1:ef:ff:c2:f5:29:77:5f:e8:8c:23:7b:85:
63:7d:c4:08:2f:2d:6f:6f:d5:a7:64:92:0c:24:20:
4a:59:4e:36:04:14:fe:6d:ca:0f:32:1e:44:5c:7e:
e2:ac:21:14:c3:2c:fd:06:d7:f6:83:10:7b:5f:bf:
67:53:94:e9:4b:8c:5c:85:54:9b:10:ed:58:bd:59:
89:e8:40:f7:38:88:8b:79:09:54:20:b4:e1:36:ec:
19:98:42:c1:90:e8:0e:83:a8:2e:de:dd:60:2a:04:
e6:bb:6a:99:9b:44:9e:af:f3:15:59:90:93:c3:52:
f9:c1:6f:e8:0e:5e:7f:cc:53:91:b9:dd:0d:58:98:
f1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:4A:2D:DF:2E:26:C2:68:CF:FC:A7:30:87:CF:A1:19:55:90:14:3D
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/TUot3y4mwmjP_Kcwh8-hGVWQFD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.3.0/24
45.12.232.0/24
45.138.210.0/23
193.160.212.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:b3:76:b7:04:9d:60:6d:2c:d0:6c:20:f1:bf:5d:9a:bd:db:
66:b0:8f:e7:71:74:c1:dc:4b:8e:1b:de:21:3d:be:8e:6f:8d:
d9:98:4c:c8:94:f7:9b:86:ca:02:b8:49:5f:8f:72:53:fc:ee:
6b:52:12:54:4d:5b:7c:e2:64:da:c8:49:42:bf:44:25:27:e8:
f3:13:a7:6f:ff:dc:d5:68:71:b5:a8:c6:79:d4:85:e0:b8:38:
d7:ec:d1:a6:46:da:ca:90:c5:40:47:16:96:38:82:a8:0c:1c:
02:8e:47:14:c0:d1:a7:46:d9:f0:9e:74:43:32:52:b3:b1:0a:
0a:87:b8:ee:a2:88:83:5e:9b:c4:ee:4a:c7:f2:0e:d9:93:e9:
a9:52:74:9d:9a:5b:da:fc:f7:fb:58:cf:41:c3:9b:e8:be:d1:
f0:78:5c:ca:50:a0:4b:63:e3:78:d6:e2:e1:2d:82:1a:96:42:
0a:9c:51:d4:0f:71:b1:a9:25:87:aa:4a:a7:55:b4:a1:24:fd:
38:ae:49:bf:07:ac:9a:10:18:aa:e7:ae:6b:9e:52:91:a2:06:
b7:31:04:5e:9c:ce:08:0a:f0:fc:00:dc:c4:f9:03:c8:91:84:
4f:b6:f2:0e:61:7f:40:70:56:55:cb:98:23:fc:78:7e:a2:9b:
85:6d:ef:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org