Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/TK4T0fH0Sw5NvpkZ6otjD6mVZYA.roa
File: TK4T0fH0Sw5NvpkZ6otjD6mVZYA.roa (raw, json)
Hash identifier: KiIBtPz32m4HaA1aNf2yA3xm2kyYbvxdZN0RXbmrcbg=
Subject key identifier: 4C:AE:13:D1:F1:F4:4B:0E:4D:BE:99:19:EA:8B:63:0F:A9:95:65:80
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 04C4580E
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/TK4T0fH0Sw5NvpkZ6otjD6mVZYA.roa
Signing time: Wed 18 May 2022 02:30:22 +0000
ROA not before: Wed 18 May 2022 02:30:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 45.95.18.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79976462 (0x4c4580e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: May 18 02:30:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4cae13d1f1f44b0e4dbe9919ea8b630fa9956580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4c:89:b1:5c:cc:cb:47:49:41:79:d7:09:90:
a1:7e:c0:bb:2d:2e:0b:5e:fb:6c:73:f8:b2:75:04:
5a:82:66:b8:9d:bb:e7:1b:ff:42:07:2e:86:14:93:
e8:3b:64:3e:58:c6:fb:c9:7e:49:f7:24:3d:61:fe:
9b:1d:56:ba:3b:68:54:06:8c:6b:79:e6:23:64:26:
47:a2:1a:4e:f2:b7:22:6c:32:d9:25:e4:6c:f7:fd:
20:31:f6:03:d4:3e:23:87:ea:9b:35:17:ec:26:ed:
2e:76:fa:cf:2c:f3:7c:5d:10:a6:1a:67:67:47:24:
6b:95:f0:6e:b7:4e:4b:62:19:4a:b5:69:a4:f0:5e:
df:57:cd:12:61:f3:2b:49:cb:28:cd:c9:a1:60:77:
91:99:df:fd:3a:66:a4:9c:2a:dd:97:2e:3a:9c:94:
0f:ca:08:04:16:52:91:c1:c5:a3:57:00:21:c1:7a:
6a:9c:36:66:90:94:ba:d3:4b:e9:49:b5:40:d5:93:
8f:dd:19:f0:7b:63:0c:86:60:9c:9d:97:a7:b3:87:
cb:03:88:4b:4a:d6:a2:8c:e3:3c:d3:a4:0e:84:53:
27:f5:2a:3d:5c:dc:c4:42:12:7e:f8:dc:6c:eb:99:
f5:42:e8:41:29:5b:ff:ea:ae:42:e4:13:0b:e1:f9:
43:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:AE:13:D1:F1:F4:4B:0E:4D:BE:99:19:EA:8B:63:0F:A9:95:65:80
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/TK4T0fH0Sw5NvpkZ6otjD6mVZYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.18.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:46:53:e7:ae:1d:39:87:4f:4f:4c:fd:ef:32:79:cb:cb:34:
c7:3d:78:d5:c2:e3:07:a7:aa:0a:bb:08:bc:41:06:a7:1a:b0:
57:53:45:60:2d:98:96:c3:fa:95:90:c3:1f:c0:b4:b8:ba:c1:
26:31:75:65:0d:d6:df:0d:ca:37:2b:4e:3c:1c:53:9c:0e:81:
c0:1a:d3:c8:e2:7b:52:c9:1c:6d:56:c7:ce:bd:76:62:13:70:
55:c9:2c:1f:ef:f6:5d:ff:62:b0:4a:84:eb:56:f5:79:a3:48:
73:06:d2:16:e6:10:ba:0b:3d:54:c8:f3:1a:19:e7:63:2d:b0:
27:19:46:64:8e:45:51:78:30:7d:1a:13:2e:94:14:28:ed:62:
01:04:4f:ef:8f:a0:45:b2:ef:5c:f6:bd:59:52:14:74:5c:49:
f1:39:7b:c5:53:65:99:e9:e5:67:67:58:85:17:8c:25:a3:27:
10:03:51:ff:06:14:f5:06:e1:87:92:2e:4d:48:86:1e:3f:7d:
a1:62:2a:d1:b1:62:93:44:2b:ec:f4:58:3c:3f:72:e4:b7:41:
de:47:d1:ba:be:07:5f:82:a4:35:40:e1:01:65:08:1c:e0:64:
4e:66:ed:41:6a:e7:82:85:d1:da:7a:00:4b:24:56:65:25:dd:
04:b2:33:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:17 2024 by rpki-client on console-ams.rpki-client.org