Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/TM-mySNV8_VtsgHcTUpCZeId8YY.roa
File: TM-mySNV8_VtsgHcTUpCZeId8YY.roa (raw, json)
Hash identifier: h8h84AgJKhYbrCt+nw+kQaZpYhYTP/02iGNCAl7uwsE=
Subject key identifier: 4C:CF:A6:C9:23:55:F3:F5:6D:B2:01:DC:4D:4A:42:65:E2:1D:F1:86
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0BDE718A
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/TM-mySNV8_VtsgHcTUpCZeId8YY.roa
Signing time: Sat 01 Jan 2022 12:54:59 +0000
ROA not before: Sat 01 Jan 2022 12:54:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34927
IP address blocks: 193.148.251.0/24 maxlen: 24
193.148.250.0/24 maxlen: 24
193.148.249.0/24 maxlen: 24
193.148.248.0/24 maxlen: 24
2a0c:9a40:1024::/48 maxlen: 48
2a0c:9a40:1002::/48 maxlen: 48
2a0c:9a44::/48 maxlen: 48
2a0c:9a40:1000::/44 maxlen: 48
2a0c:9a40:1::/48 maxlen: 48
2a0c:9a40:1001::/48 maxlen: 48
2a0c:9a40:1070::/48 maxlen: 48
2a0c:9a40:1050::/48 maxlen: 48
2a0c:9a40:1054::/48 maxlen: 48
2a0c:9a40:1057::/48 maxlen: 48
2a0c:9a40:1090::/44 maxlen: 48
2a0c:9a40:1030::/44 maxlen: 48
2a0c:9a40:1070::/44 maxlen: 48
2a0c:9a40:1051::/48 maxlen: 48
2a0c:9a40:2400::/40 maxlen: 40
2a0c:9a40:2800::/40 maxlen: 40
2a0c:9a40:2100::/40 maxlen: 40
2a0c:9a40:2500::/40 maxlen: 40
2a0c:9a40:2600::/40 maxlen: 40
2a0c:9a40:2200::/40 maxlen: 40
2a0c:9a40:2700::/40 maxlen: 40
2a0c:9a40:1060::/48 maxlen: 48
2a0c:9a40:1080::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199127434 (0xbde718a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 12:54:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ccfa6c92355f3f56db201dc4d4a4265e21df186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:13:c8:1c:bc:56:5d:18:43:5b:37:0d:da:94:
0d:d6:3e:e2:ef:a1:1e:2b:d0:42:f6:21:e3:de:b9:
f1:3d:c0:cf:06:3b:08:56:cc:cf:c4:85:df:96:5e:
8b:81:de:c2:1a:54:0b:26:9e:a5:69:4b:f4:75:ca:
c0:15:fc:8f:cd:0f:a6:8d:f8:5f:51:50:ef:63:8f:
1e:88:73:51:12:f5:63:f4:11:ad:ec:7f:4f:9c:32:
51:ac:af:b9:cf:3d:04:dc:b2:bb:59:7b:88:04:8a:
28:a8:55:d4:c8:de:3a:dc:d7:2f:f5:88:ec:9e:a3:
03:09:3f:c5:f4:3e:9d:be:c5:0d:4d:c7:18:ec:39:
98:af:3b:28:fc:a5:1c:32:6e:a6:64:37:7f:05:8a:
9f:ae:fe:b8:31:10:2c:26:17:81:2e:e9:69:dd:6b:
21:b7:3d:35:fd:58:aa:b1:d1:27:80:23:fd:b0:86:
d1:a2:2a:ff:70:b2:d1:cc:91:90:14:ed:6d:6a:56:
73:73:65:ab:47:39:7d:23:76:36:f7:3e:08:47:1b:
1f:64:68:0d:3d:93:a8:3c:8b:cc:74:4b:06:bb:dc:
66:28:1c:8a:a5:56:a2:ee:9c:58:a1:2f:d8:d3:8f:
d4:ae:7d:ae:2c:a6:6b:61:c5:1e:16:a3:a9:45:bc:
0e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:CF:A6:C9:23:55:F3:F5:6D:B2:01:DC:4D:4A:42:65:E2:1D:F1:86
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/TM-mySNV8_VtsgHcTUpCZeId8YY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.148.248.0/22
IPv6:
2a0c:9a40:1::/48
2a0c:9a40:1000::/44
2a0c:9a40:1024::/48
2a0c:9a40:1030::/44
2a0c:9a40:1050::/47
2a0c:9a40:1054::/48
2a0c:9a40:1057::/48
2a0c:9a40:1060::/48
2a0c:9a40:1070::-2a0c:9a40:1080:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:1090::/44
2a0c:9a40:2100::-2a0c:9a40:22ff:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2400::-2a0c:9a40:28ff:ffff:ffff:ffff:ffff:ffff
2a0c:9a44::/48
Signature Algorithm: sha256WithRSAEncryption
4a:59:08:56:81:cf:fd:1b:ef:9a:24:97:ff:e0:b6:5f:58:c5:
50:22:3e:72:ac:55:24:18:ed:77:0b:da:3d:66:a5:4e:b1:f8:
26:64:45:6f:05:fd:c8:e8:66:3e:af:ba:c6:7b:e6:93:7a:91:
3c:f3:e0:f5:a1:aa:1a:44:02:aa:5c:4a:63:4c:53:77:bd:90:
77:1c:ac:51:86:e9:a9:31:22:ce:8a:87:99:7f:16:52:29:b9:
cf:39:84:63:c9:4c:af:b1:22:e2:58:2f:99:e9:d7:0e:a4:e1:
85:2d:9b:cc:44:14:92:af:61:0b:b7:f5:e3:4d:b4:f4:c8:96:
b2:20:0e:a2:fd:a0:a9:3d:bf:05:65:42:21:49:64:74:79:92:
66:38:f2:cd:83:aa:8d:42:b3:7c:5d:94:22:c3:90:a5:8e:51:
c3:fe:1e:11:42:b7:e2:dd:43:09:a0:f8:c7:1c:72:2c:ba:45:
22:6c:cb:5e:a9:9b:8d:37:ae:5a:b0:23:2e:92:e5:98:47:0b:
e2:29:2d:40:cb:eb:d9:42:96:63:14:e8:c6:d7:42:58:1f:65:
ba:a9:46:9c:08:b1:4b:15:85:ce:6e:d1:5e:22:8b:a6:38:15:
b8:c1:28:d9:9f:d4:26:3d:08:c8:09:56:63:14:8e:e7:8b:ca:
7a:a0:43:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:28 2023 by rpki-client on console-ams.rpki-client.org