Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/2e4e54-0548-4d0c-93f1-75461abbb5a4/1/TCCMZsIcFsB3OaPLmi2jxfnTk9s.roa
File: TCCMZsIcFsB3OaPLmi2jxfnTk9s.roa (raw, json)
Hash identifier: p6KKYXwjEq/LDRIRxugh0m5WgiW+HhXUEJqY2YS5/Fo=
Subject key identifier: 4C:20:8C:66:C2:1C:16:C0:77:39:A3:CB:9A:2D:A3:C5:F9:D3:93:DB
Certificate issuer: /CN=317b8147503ea19f581ca00d28dbee5e58cb8f48
Certificate serial: 01823551B3B9B76CD3B6CFB9EB77DE0AA20E
Authority key identifier: 31:7B:81:47:50:3E:A1:9F:58:1C:A0:0D:28:DB:EE:5E:58:CB:8F:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXuBR1A-oZ9YHKANKNvuXljLj0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/2e4e54-0548-4d0c-93f1-75461abbb5a4/1/TCCMZsIcFsB3OaPLmi2jxfnTk9s.roa
Signing time: Mon 25 Jul 2022 12:25:23 +0000
ROA not before: Mon 25 Jul 2022 12:25:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47147
IP address blocks: 185.93.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:35:51:b3:b9:b7:6c:d3:b6:cf:b9:eb:77:de:0a:a2:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317b8147503ea19f581ca00d28dbee5e58cb8f48
Validity
Not Before: Jul 25 12:25:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c208c66c21c16c07739a3cb9a2da3c5f9d393db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:cf:4d:00:6f:30:3f:f1:f4:60:6d:68:1a:91:
2a:02:0a:6f:a9:b5:59:66:2b:c7:29:25:44:8b:3b:
9a:08:06:35:13:f8:34:86:25:af:cf:bd:2e:f1:86:
dc:f1:ed:d0:44:5b:f7:41:c9:e7:9f:68:ad:23:38:
c2:8a:ce:08:f9:8a:19:3e:d3:9b:b1:5f:7e:ec:46:
7c:b1:01:df:d9:bf:a2:30:79:7c:8f:93:5a:ca:f6:
53:06:f2:c3:fd:f0:98:7c:00:d3:1b:cc:d5:c1:fe:
16:ac:f3:e2:3d:83:8a:c2:6a:cc:cc:58:fa:7a:59:
03:47:39:a3:99:4b:37:da:cb:ef:58:41:ba:e4:ba:
06:a3:b9:b2:e7:4a:36:8b:d7:d7:81:6a:dc:f0:a3:
eb:87:23:f2:7b:9e:d4:09:d0:0e:43:27:48:7f:dd:
6f:61:72:fa:77:f8:5e:80:07:1c:89:39:cf:bd:ac:
a2:4b:fa:cf:16:e1:4a:60:13:8c:0b:a6:a5:68:25:
59:30:9c:06:68:df:05:03:c0:7d:29:61:82:c8:6c:
97:f5:47:b6:c3:ed:c3:06:93:9c:d2:62:61:96:01:
ad:9d:60:81:8d:8a:37:95:e1:68:b8:90:20:fb:fd:
17:05:37:15:76:00:4a:54:31:e2:39:6e:92:62:6f:
57:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:20:8C:66:C2:1C:16:C0:77:39:A3:CB:9A:2D:A3:C5:F9:D3:93:DB
X509v3 Authority Key Identifier:
keyid:31:7B:81:47:50:3E:A1:9F:58:1C:A0:0D:28:DB:EE:5E:58:CB:8F:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXuBR1A-oZ9YHKANKNvuXljLj0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/2e4e54-0548-4d0c-93f1-75461abbb5a4/1/TCCMZsIcFsB3OaPLmi2jxfnTk9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/2e4e54-0548-4d0c-93f1-75461abbb5a4/1/MXuBR1A-oZ9YHKANKNvuXljLj0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.213.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:47:c9:0a:96:36:91:b6:17:90:de:5f:ca:67:c5:1d:74:9b:
31:12:bf:a2:a7:4d:f7:0f:80:a3:29:91:48:df:d1:89:fd:8f:
eb:5c:01:c3:39:14:43:7d:3a:5c:19:9a:96:12:4c:e5:f1:4b:
f3:c3:75:9e:00:0c:4a:71:5a:94:9b:6b:51:c0:67:c4:65:f9:
a5:f0:5a:fe:9d:ac:80:40:7a:8f:da:7b:5f:eb:c3:fc:99:4d:
a6:78:9d:b0:40:35:aa:6b:43:9f:bc:96:39:5f:ea:23:53:fc:
56:d9:02:7f:63:c6:6a:9e:f6:dc:a3:22:4b:3e:c5:22:9d:77:
df:d8:47:c6:a0:aa:c7:6b:06:3e:65:d1:50:a1:3c:54:02:d8:
4b:75:df:32:7a:3a:ab:04:bb:e0:9e:0f:36:f5:c0:53:d6:85:
02:d3:bd:5f:bd:1b:9c:7d:81:51:3a:c3:ee:11:7f:5e:2f:86:
12:d2:3b:b2:a6:dd:a9:eb:f9:49:b2:14:38:f0:bd:ac:51:7e:
81:91:4e:bf:0f:a8:74:14:d8:4c:c5:a9:4f:9d:74:17:75:10:
6a:18:47:b2:c6:af:5b:b4:7e:4d:80:21:42:98:82:01:6a:2c:
7d:8c:50:32:43:19:e8:6d:ca:94:76:3a:af:62:39:ad:b2:78:
0e:76:04:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:47 2024 by rpki-client on console-ams.rpki-client.org