Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/TQ2Ujrmb3tEVCn8y3n9Lm3S1-tg.roa
File: TQ2Ujrmb3tEVCn8y3n9Lm3S1-tg.roa (raw, json)
Hash identifier: 4wwyUaRbEpztUgrBMd/f2ZbLd2CGG4keRfyU1ZjCVtQ=
Subject key identifier: 4D:0D:94:8E:B9:9B:DE:D1:15:0A:7F:32:DE:7F:4B:9B:74:B5:FA:D8
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 0184A5DF764F1A3A839FFC09518658E2A285
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/TQ2Ujrmb3tEVCn8y3n9Lm3S1-tg.roa
Signing time: Wed 23 Nov 2022 19:03:16 +0000
ROA not before: Wed 23 Nov 2022 19:03:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15924
IP address blocks: 185.174.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a5:df:76:4f:1a:3a:83:9f:fc:09:51:86:58:e2:a2:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Nov 23 19:03:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d0d948eb99bded1150a7f32de7f4b9b74b5fad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b1:20:78:72:62:f7:d5:dc:76:7b:17:03:4f:
20:0b:87:86:6a:b1:7b:5e:b0:74:d9:37:0f:2c:d6:
cb:5b:e2:cb:3b:da:9b:92:2c:40:94:48:65:af:f2:
86:5b:85:65:fb:2c:bd:4b:73:33:7f:b1:d4:2b:68:
fe:65:43:73:4c:51:da:60:c3:9a:03:6f:eb:f4:65:
89:74:d1:fa:20:c0:e2:af:17:3e:67:9c:90:31:76:
d8:b8:50:f8:b7:fc:d0:69:1f:e1:0c:bf:91:f8:28:
8f:86:9d:c0:c3:d3:2c:90:58:74:4b:17:3d:0b:47:
6f:66:8a:34:4d:6b:eb:84:12:56:a0:a7:2d:de:07:
18:ff:17:5e:70:c7:b4:c5:cf:ba:b1:28:78:da:59:
eb:a2:f8:75:74:4b:be:49:7c:51:12:d6:f2:aa:d0:
6e:c8:da:41:3e:bd:5e:c7:c0:3f:91:e6:42:80:7c:
a9:85:10:88:e8:b8:41:a1:96:34:3f:e3:83:db:ed:
ee:30:a2:59:47:11:0f:72:35:e3:b4:1c:f6:c8:13:
32:9d:67:c9:b0:a5:31:51:93:54:a7:69:b9:6f:3d:
6c:3a:19:a9:41:68:a8:ff:cc:46:a0:53:12:ea:00:
b5:0d:69:a3:49:c0:e7:05:98:8d:31:b0:7e:e3:47:
05:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:0D:94:8E:B9:9B:DE:D1:15:0A:7F:32:DE:7F:4B:9B:74:B5:FA:D8
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/TQ2Ujrmb3tEVCn8y3n9Lm3S1-tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.21.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:7e:f8:7e:78:43:7f:e6:46:9e:c4:f6:6e:2f:65:8b:79:b3:
52:75:16:9b:f6:68:3b:10:7d:d3:c8:ad:3f:3a:3a:cc:1e:e4:
66:31:5f:82:d9:8b:15:bd:b7:e2:cb:e4:a6:84:03:b3:26:a2:
57:0a:4f:42:a0:27:75:bf:35:86:ff:78:e0:f3:4e:3b:87:0e:
3b:d9:75:5f:9e:8e:d0:05:85:5a:3d:e7:a9:c2:1b:11:f6:54:
77:6c:95:20:e3:ab:95:49:dc:3c:90:7b:6e:52:4c:a5:b2:34:
ca:42:67:2d:86:d8:b8:4f:ee:9d:24:50:9c:77:fd:42:9f:ea:
e3:c8:90:04:f0:7f:5a:72:5e:c3:f3:7f:65:87:f2:e5:35:d0:
dc:0a:27:c5:76:19:18:87:69:ea:24:ab:a4:db:62:c0:86:6a:
81:22:ad:5e:ed:ef:4c:bd:f6:37:44:cb:7b:84:7d:e3:48:12:
61:fd:fe:17:9f:08:bf:83:77:f3:4e:5a:2b:fb:95:b9:47:b1:
f8:6c:4a:8c:8e:0a:60:b6:91:82:c5:0b:de:4a:71:9f:1b:89:
60:ff:86:a1:25:56:36:71:8f:1d:87:30:e4:19:5f:83:1e:d8:
16:ad:bd:96:81:44:d4:79:96:01:70:60:78:a5:ba:c7:ba:29:
0e:7d:ae:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:49 2024 by rpki-client on console-fra.rpki-client.org