Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/tf1qJzm9n9sv1tqrKof0sUUgflk.roa
File: tf1qJzm9n9sv1tqrKof0sUUgflk.roa (raw, json)
Hash identifier: jYyolhEBu1P5RE/+slBCJHrqkOHzSDEu8rkFSMV1ltE=
Subject key identifier: B5:FD:6A:27:39:BD:9F:DB:2F:D6:DA:AB:2A:87:F4:B1:45:20:7E:59
Certificate issuer: /CN=92f4b1c0bfbad46b811eee568a18fbaa14a9d687
Certificate serial: 41F26CD2
Authority key identifier: 92:F4:B1:C0:BF:BA:D4:6B:81:1E:EE:56:8A:18:FB:AA:14:A9:D6:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kvSxwL-61GuBHu5Wihj7qhSp1oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/tf1qJzm9n9sv1tqrKof0sUUgflk.roa
Signing time: Sat 01 Jan 2022 16:05:07 +0000
ROA not before: Sat 01 Jan 2022 16:05:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200953
IP address blocks: 81.177.185.0/24 maxlen: 24
81.177.193.0/24 maxlen: 24
213.59.140.0/22 maxlen: 22
213.59.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1106406610 (0x41f26cd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92f4b1c0bfbad46b811eee568a18fbaa14a9d687
Validity
Not Before: Jan 1 16:05:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5fd6a2739bd9fdb2fd6daab2a87f4b145207e59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:61:2b:f7:16:53:84:c9:03:fd:84:6f:0d:7c:
c1:ec:3a:a1:16:ed:81:e7:c5:f2:9e:a9:15:90:0c:
d1:03:11:33:f7:5a:a4:d3:89:ef:b7:5b:75:50:b9:
7f:95:1c:e0:8f:34:70:15:17:30:ef:e8:30:db:e4:
27:e0:64:db:9b:ba:4f:d1:ce:5d:c4:aa:73:5c:ce:
83:1b:8a:de:43:a1:bd:e7:8b:f8:a0:4f:b0:b4:9e:
12:70:56:e9:9f:bf:cf:51:71:6c:b2:00:4e:b6:c6:
e2:9b:4d:d5:05:88:e3:8f:fb:be:02:e4:45:6a:13:
dd:20:ed:b9:4d:0a:28:c2:e6:cd:cc:37:f4:a3:23:
d8:aa:3c:66:7e:7e:76:48:d8:d7:b3:94:bf:b6:ef:
16:58:aa:dc:dd:28:ea:5c:45:60:0d:3c:8f:db:a6:
8d:ca:9d:75:d3:66:15:2b:df:50:06:ed:46:3a:4e:
6c:bf:77:ac:7f:47:c6:95:10:a9:4e:2b:a7:3c:95:
7c:a2:12:ff:c1:d4:32:a8:55:02:8c:21:73:9f:18:
4f:0d:33:6b:69:1e:b4:20:33:05:d4:4e:be:3b:7a:
87:a1:cc:da:3e:10:ad:b6:fd:0e:e3:33:b3:01:1f:
51:ce:e5:3d:93:6a:02:d0:4c:43:52:71:71:c5:cc:
e6:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:FD:6A:27:39:BD:9F:DB:2F:D6:DA:AB:2A:87:F4:B1:45:20:7E:59
X509v3 Authority Key Identifier:
keyid:92:F4:B1:C0:BF:BA:D4:6B:81:1E:EE:56:8A:18:FB:AA:14:A9:D6:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kvSxwL-61GuBHu5Wihj7qhSp1oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/tf1qJzm9n9sv1tqrKof0sUUgflk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/kvSxwL-61GuBHu5Wihj7qhSp1oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.177.185.0/24
81.177.193.0/24
213.59.140.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:cc:5f:4e:bd:ac:75:6f:ee:6f:fa:9e:dd:61:a5:f5:44:3f:
f3:40:7b:85:4e:22:01:a7:3c:2c:07:33:61:3a:6f:e4:d5:24:
00:7d:8c:21:46:19:a1:94:a3:45:32:59:f2:b0:82:8a:8d:2c:
08:22:8c:29:26:07:93:3f:1b:e3:80:f3:47:99:f6:1a:c0:11:
e3:fb:1e:7f:b5:22:a7:f7:62:f2:4f:27:b1:a4:4e:23:a9:cf:
39:44:c6:2c:d7:76:b9:bd:9d:4b:bd:42:60:a3:6c:85:97:66:
0b:9d:de:7e:38:8c:a1:29:8d:1f:5c:a7:cc:e1:c6:00:03:c8:
c5:73:9f:f1:06:5c:64:ee:76:cd:6f:d7:58:32:eb:7e:ae:e3:
57:1e:6a:1e:b9:7c:49:ba:f1:49:cd:c3:58:23:fb:a2:58:d7:
df:92:3a:ba:a7:2c:50:99:2d:0b:0f:76:25:b0:8e:2d:2c:bb:
fb:81:69:de:ec:2c:21:2a:80:86:fb:b4:08:70:69:9a:09:4f:
5e:af:ad:f1:4b:b8:bf:85:55:b9:ce:b6:b8:b2:0a:dd:74:22:
27:da:6a:22:aa:07:14:96:6d:1c:30:0c:02:5b:04:de:84:b0:
74:f6:ce:44:6f:9b:05:20:63:a2:31:5b:e1:35:ae:ce:97:ec:
79:c5:89:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:49 2024 by rpki-client on console-fra.rpki-client.org