Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/TU614ZckkoTRIIVr2XEC8BwEDU4.roa
File: TU614ZckkoTRIIVr2XEC8BwEDU4.roa (raw, json)
Hash identifier: C3j9t6DCdkqloKwBoyzt7ciDva84W8ZbFg2w7rBn868=
Subject key identifier: 4D:4E:B5:E1:97:24:92:84:D1:20:85:6B:D9:71:02:F0:1C:04:0D:4E
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 42A35098
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/TU614ZckkoTRIIVr2XEC8BwEDU4.roa
Signing time: Sat 01 Jan 2022 06:05:02 +0000
ROA not before: Sat 01 Jan 2022 06:05:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38985
IP address blocks: 87.103.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1117999256 (0x42a35098)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 1 06:05:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d4eb5e197249284d120856bd97102f01c040d4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:26:b8:f7:08:e2:8b:38:ae:a6:8c:7c:31:d8:
29:2e:ae:cb:1c:e6:a6:f5:cf:71:79:28:bb:bd:76:
56:bf:b7:1b:f2:e5:a1:dc:9b:60:b2:5e:f2:9e:82:
c7:53:1c:3d:18:65:69:3f:1b:dd:e5:31:0c:70:26:
bb:e9:57:7c:6e:92:71:b9:ef:d6:96:98:bc:44:ce:
c7:ab:91:71:8d:9f:c3:38:38:bf:ae:a5:a6:48:57:
2c:42:85:33:7d:e2:d0:48:44:07:05:ca:0a:99:35:
f1:6f:c1:05:05:f6:4b:db:cb:da:6b:95:bd:8f:0b:
ff:c5:cb:9a:7a:b6:b2:19:25:d6:55:bf:1d:24:67:
34:30:c0:fd:b2:89:1a:eb:c8:5f:51:b7:64:84:31:
58:6d:1a:e4:7f:cc:5a:ae:29:19:b2:cf:a4:45:a6:
06:f3:85:6e:41:93:10:1b:78:9d:62:91:9b:76:47:
fb:61:16:85:e1:7f:f5:8a:fc:a3:29:b3:9b:90:95:
56:a9:e4:06:9d:7c:9c:fc:7e:30:ae:26:6b:76:28:
ca:8d:41:fc:d9:91:18:34:b8:b8:48:79:de:2f:19:
56:ea:3f:c4:23:33:91:b8:1e:cf:4e:f2:28:c4:89:
9a:e5:1f:92:26:0f:b4:7b:9a:34:df:29:20:1b:18:
75:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:4E:B5:E1:97:24:92:84:D1:20:85:6B:D9:71:02:F0:1C:04:0D:4E
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/TU614ZckkoTRIIVr2XEC8BwEDU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.103.168.0/24
Signature Algorithm: sha256WithRSAEncryption
34:0b:35:de:8e:54:7d:af:eb:7e:ab:06:ce:1a:c4:a1:96:12:
41:4e:b3:d9:76:ca:5e:e2:e9:2f:c7:e8:18:cf:5b:a0:49:ba:
0a:f4:ec:20:43:eb:7a:9b:12:8a:90:95:97:ab:50:d6:6f:8b:
ea:05:4e:1a:e1:79:12:89:94:e7:9d:90:a3:00:1f:ec:97:8d:
36:b3:f1:00:48:9b:af:fb:ba:cc:44:fd:51:07:e7:7d:1e:f2:
5d:a5:1b:de:34:67:36:47:79:7f:81:7d:3e:8a:ac:5d:01:b7:
8e:6d:84:a5:90:cf:8b:6c:ba:34:05:d9:8d:e0:1e:f2:68:3b:
1c:e6:b5:41:6a:d0:ae:ce:2a:57:7e:91:a2:0e:15:0d:4d:dc:
a2:ac:73:96:50:09:5e:55:55:7f:c1:10:38:b5:47:07:c9:8e:
63:fc:62:6d:71:3a:67:47:1e:45:be:f1:de:e9:e4:24:2b:59:
e0:56:69:23:6f:2c:20:54:a1:66:8a:14:76:1a:5f:f8:f4:12:
b0:58:88:c7:1a:80:6e:1c:2f:9f:34:c2:be:e0:59:c8:76:2e:
08:4c:7a:52:54:4b:a4:d2:4a:82:96:4c:ca:98:94:c6:6a:93:
50:72:73:8c:52:82:00:f5:54:c2:af:9f:8e:de:56:86:07:58:
d1:46:3e:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:25 2024 by rpki-client on console-ams.rpki-client.org