Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/L4TmDykw_q66MyBYQBnze93zsx0.roa
File: L4TmDykw_q66MyBYQBnze93zsx0.roa (raw, json)
Hash identifier: yzMnKYyNG3fyTkfJCFvDm+JBtoQHgYVrpyJ9Ws0bKMA=
Subject key identifier: 2F:84:E6:0F:29:30:FE:AE:BA:33:20:58:40:19:F3:7B:DD:F3:B3:1D
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C76AF59
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/L4TmDykw_q66MyBYQBnze93zsx0.roa
Signing time: Sat 01 Jan 2022 01:02:40 +0000
ROA not before: Sat 01 Jan 2022 01:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60590
IP address blocks: 37.60.143.0/24 maxlen: 24
87.121.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 477540185 (0x1c76af59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f84e60f2930feaeba3320584019f37bddf3b31d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d9:7e:f3:88:4a:60:d4:e6:75:1a:ab:f2:bc:
10:d8:7c:eb:9c:9a:40:48:f7:9a:24:89:84:11:64:
6e:14:5f:87:ae:a8:91:18:d8:fa:45:bf:2a:9f:8e:
60:20:95:8c:1b:b4:2f:7f:d3:a2:d1:83:7d:39:a5:
c1:43:d4:5e:b9:97:68:5c:ab:77:ae:8d:03:83:2a:
71:23:72:77:6c:86:5a:15:68:9b:4d:25:23:ca:6c:
96:ee:1d:2c:d2:ee:4a:73:81:c0:c4:2f:72:39:e3:
7b:23:1b:36:b0:37:1d:4a:5d:23:71:51:5b:2f:db:
fe:28:9f:f2:28:15:f2:df:66:aa:e1:e2:ca:37:ca:
b9:6b:f3:be:e7:4f:a1:16:13:50:6b:87:8a:1c:d7:
bd:b2:5a:18:88:24:24:3d:54:9a:e5:a6:6b:d2:93:
42:5e:b1:b0:97:2c:40:8e:db:6a:11:14:ac:55:d4:
aa:11:47:e1:07:3a:86:5a:f5:f9:9e:ae:ff:f4:0e:
42:56:3f:89:d7:6d:be:5d:7a:07:cc:9e:97:b9:b5:
de:09:a6:7c:65:15:e1:e9:e9:93:32:06:cd:d3:f6:
de:cd:87:1a:7c:6e:6a:ed:71:a2:bb:1f:f1:56:e1:
11:cc:82:74:a9:87:3f:9a:70:88:ae:7b:f4:bb:aa:
1e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:84:E6:0F:29:30:FE:AE:BA:33:20:58:40:19:F3:7B:DD:F3:B3:1D
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/L4TmDykw_q66MyBYQBnze93zsx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.60.143.0/24
87.121.106.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:af:50:1f:10:3e:c6:61:5b:63:58:8f:4b:2d:22:28:8d:b4:
4f:1f:7d:3f:c5:f8:db:45:1f:e5:44:fe:b2:c6:73:d2:0f:63:
a6:95:76:6e:e2:19:e1:f8:88:35:0f:a4:f5:5a:4e:fb:44:ae:
76:8b:87:a9:d5:8c:78:fd:84:94:e5:9d:18:07:01:93:1b:c5:
fb:00:eb:24:d4:f5:e4:12:9d:6e:18:05:73:a3:fe:5c:93:d5:
fc:7e:bf:9d:ee:b9:91:0d:62:d3:2f:8e:4c:d7:ff:88:e3:bf:
a1:65:05:ea:7d:82:d8:ce:ff:f3:89:b4:f6:66:b5:18:33:1d:
64:0b:85:05:5c:dd:be:da:48:28:eb:cb:47:6a:c7:79:19:38:
c6:3c:f9:7b:d9:62:71:ae:9b:d1:18:c1:96:3c:f3:78:91:2e:
1d:fb:37:68:3e:90:ee:5f:73:94:a1:fc:a6:f7:9a:27:23:bc:
87:08:46:08:59:ed:21:0c:4c:d5:cd:de:ae:eb:30:6e:12:f8:
de:d3:95:a1:a7:09:55:5d:7c:09:21:0d:aa:40:f9:47:52:2b:
eb:4e:a3:8a:75:dc:45:14:6f:8f:17:69:ee:72:87:fc:7b:5d:
14:48:1a:40:ca:23:ac:66:97:ac:e2:fa:c3:4d:d9:c7:13:2a:
1f:d1:35:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:35 2023 by rpki-client on console-ams.rpki-client.org