Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/421529-73e2-4916-8bd2-2c201d30ae05/1/TaNWT1Vwyn-LWy2NmvOHEY1wY-o.roa
File: TaNWT1Vwyn-LWy2NmvOHEY1wY-o.roa (raw, json)
Hash identifier: 7ApSZSBFWwEV0PoUPJ78neb8P0kTf2bLoGTy7PqdigE=
Subject key identifier: 4D:A3:56:4F:55:70:CA:7F:8B:5B:2D:8D:9A:F3:87:11:8D:70:63:EA
Certificate issuer: /CN=d17bf4fbea894f43eeb3db1b216e57766e01ab81
Certificate serial: 0181E75A
Authority key identifier: D1:7B:F4:FB:EA:89:4F:43:EE:B3:DB:1B:21:6E:57:76:6E:01:AB:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Xv0--qJT0Pus9sbIW5Xdm4Bq4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/421529-73e2-4916-8bd2-2c201d30ae05/1/TaNWT1Vwyn-LWy2NmvOHEY1wY-o.roa
Signing time: Tue 01 Feb 2022 15:29:01 +0000
ROA not before: Tue 01 Feb 2022 15:29:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3352
IP address blocks: 185.193.172.0/23 maxlen: 23
185.193.174.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25290586 (0x181e75a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d17bf4fbea894f43eeb3db1b216e57766e01ab81
Validity
Not Before: Feb 1 15:29:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4da3564f5570ca7f8b5b2d8d9af387118d7063ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:25:0b:df:e2:e8:67:01:6e:54:f0:ff:28:2f:
82:b9:c5:bf:89:12:ab:f9:bd:a3:82:19:3c:59:d8:
3a:68:03:41:43:cb:96:5d:7b:95:28:47:d0:5f:30:
1d:0a:af:a1:a7:24:3e:6f:d2:21:0e:7e:2a:eb:0b:
01:84:55:59:12:1c:e4:fa:c2:89:9d:92:02:cd:7a:
55:90:fd:87:bf:23:b7:44:11:fa:87:52:09:cf:41:
53:96:8d:68:20:d7:38:79:f3:a0:f2:5f:91:e8:32:
6a:da:ff:b4:3e:26:36:b5:35:37:8b:4f:9a:27:42:
9c:f6:d7:31:4f:bb:c4:3e:6f:4e:c9:f1:bf:62:bb:
8b:2a:c4:4e:77:49:7e:fb:ea:45:11:85:3d:a1:56:
e1:f7:b7:02:e7:3e:f1:d1:c5:d3:ee:a0:3d:e4:36:
52:e4:f0:cf:bf:a0:63:df:b7:0d:be:bd:33:5a:18:
8c:0a:c3:90:5a:5c:74:cf:31:2e:07:0c:52:57:d5:
ab:9c:a5:74:dd:16:11:c7:4c:a8:0a:01:ac:d8:88:
06:49:7d:bd:f3:87:dc:21:0d:56:dd:a5:ca:ba:65:
a9:b0:48:01:fe:a6:2b:8d:2a:af:55:d3:e0:66:12:
5b:0c:30:f8:9b:89:4d:d2:21:21:5e:5f:b8:f4:ce:
af:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:A3:56:4F:55:70:CA:7F:8B:5B:2D:8D:9A:F3:87:11:8D:70:63:EA
X509v3 Authority Key Identifier:
keyid:D1:7B:F4:FB:EA:89:4F:43:EE:B3:DB:1B:21:6E:57:76:6E:01:AB:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Xv0--qJT0Pus9sbIW5Xdm4Bq4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/421529-73e2-4916-8bd2-2c201d30ae05/1/TaNWT1Vwyn-LWy2NmvOHEY1wY-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/421529-73e2-4916-8bd2-2c201d30ae05/1/0Xv0--qJT0Pus9sbIW5Xdm4Bq4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.172.0/22
Signature Algorithm: sha256WithRSAEncryption
14:0e:44:08:22:f5:b6:4b:40:97:d0:e8:da:e9:ab:15:41:09:
72:c5:ad:be:95:be:b8:c9:b8:3f:9f:12:b1:08:84:cb:bb:0b:
f3:fa:ee:b4:61:f3:4b:e3:e8:34:40:78:04:35:99:31:f3:70:
c8:eb:5f:98:8f:8f:3e:e2:0d:76:b0:08:fe:7a:d7:29:e5:66:
94:65:41:c9:60:56:88:e4:29:bf:92:08:aa:df:5c:53:b2:b8:
c1:1c:14:90:24:2a:64:bc:04:82:01:40:0c:ed:3e:95:e6:12:
ab:3f:63:3b:53:cd:99:16:31:2c:6a:04:5a:64:27:b5:04:b4:
a2:71:eb:7a:40:fb:2f:1b:58:8a:7f:e1:bf:a0:5e:27:40:02:
d8:b7:5f:69:af:87:ef:08:77:88:84:b3:14:54:1b:f4:ca:e0:
ba:84:5b:56:4c:88:4b:05:d4:fe:10:12:bf:51:54:ef:50:2d:
69:68:eb:1b:b5:41:90:c3:e1:f8:0d:32:09:fc:09:89:c3:fd:
53:05:06:a0:03:5e:ed:d7:80:82:2e:f5:b7:40:8d:a1:1f:b0:
97:bd:35:e9:d0:62:b4:a0:04:fa:af:5e:c0:c7:4a:d7:c0:7a:
54:98:db:7d:cc:6b:93:70:65:16:f5:d4:13:bd:1f:17:6d:de:
11:f2:0c:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:44 2023 by rpki-client on console-ams.rpki-client.org