Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/TWN6TzwN1HynWakMTWgGgluuj50.roa
File: TWN6TzwN1HynWakMTWgGgluuj50.roa (raw, json)
Hash identifier: mdwzBI3AEoUe0dpqEtPuJuicLmcw7Ac9vamha3THL+I=
Subject key identifier: 4D:63:7A:4F:3C:0D:D4:7C:A7:59:A9:0C:4D:68:06:82:5B:AE:8F:9D
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 01837A477D7CB2B9FEDB9DEDE1129C60438D
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/TWN6TzwN1HynWakMTWgGgluuj50.roa
Signing time: Mon 26 Sep 2022 14:50:48 +0000
ROA not before: Mon 26 Sep 2022 14:50:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204872
IP address blocks: 45.15.244.0/22 maxlen: 22
45.150.180.0/22 maxlen: 22
195.216.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7a:47:7d:7c:b2:b9:fe:db:9d:ed:e1:12:9c:60:43:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Sep 26 14:50:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d637a4f3c0dd47ca759a90c4d6806825bae8f9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:05:e3:1b:8a:25:09:36:52:38:32:47:c4:44:
37:a0:2c:0e:a0:2d:65:c6:e1:ec:e6:69:3c:de:50:
18:39:eb:ce:ae:81:39:3e:d7:af:51:cd:d2:a8:dd:
2d:13:1d:37:28:e7:84:c3:30:72:90:51:eb:46:3c:
3e:05:ac:5a:5e:87:b0:ad:06:f4:23:00:59:6b:1b:
fc:83:0d:52:d5:ee:99:70:36:c9:28:b3:8e:17:d3:
dd:33:19:85:14:1e:ac:10:c7:dc:dc:ba:d9:8f:43:
e8:69:8f:3f:21:4c:15:b4:73:3d:d8:b2:b8:42:22:
ab:68:af:06:8a:fc:ce:30:1b:89:0e:b0:28:89:20:
1c:9f:0d:a0:bd:f1:ba:58:54:18:c3:8f:0e:56:2e:
e6:d7:ff:fe:ed:62:82:6a:b5:6c:2d:ec:9e:ce:76:
67:8a:22:d5:46:fe:b9:f0:f6:3f:94:59:ec:c8:ae:
eb:f1:3c:a2:a5:2c:2f:84:52:f9:62:6c:7b:d9:3d:
7e:b8:db:ef:a7:42:4a:b6:b5:c8:4a:b3:97:28:1b:
de:a4:82:e6:07:60:65:29:57:e4:0c:b7:13:c1:48:
06:4f:d6:5f:d2:1f:10:c7:37:15:ae:6a:25:86:cb:
9b:05:58:64:f9:23:4d:7b:42:b5:3d:31:bb:03:2e:
3b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:63:7A:4F:3C:0D:D4:7C:A7:59:A9:0C:4D:68:06:82:5B:AE:8F:9D
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/TWN6TzwN1HynWakMTWgGgluuj50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.244.0/22
45.150.180.0/22
195.216.156.0/22
Signature Algorithm: sha256WithRSAEncryption
04:2e:12:d7:9f:4f:24:c2:b1:fd:43:55:6a:af:51:c4:d4:6f:
07:b6:35:f7:b5:4c:63:e0:a5:63:a5:cc:72:e6:f3:93:aa:e0:
cf:10:20:a9:52:fb:da:9a:f5:4f:04:05:a6:7f:f0:91:17:66:
7c:38:de:1f:d8:a6:d4:06:b7:f3:3a:3c:31:77:c1:6e:1a:46:
24:9a:40:d8:96:7a:d0:27:3e:3e:1f:e1:df:e1:9c:3b:96:92:
49:10:e3:24:e7:98:c7:24:65:58:bb:31:85:10:94:37:57:65:
2c:ab:67:30:b1:ca:17:fe:01:ae:e5:7a:cb:2c:29:6e:e0:98:
23:ed:0c:5d:b9:ee:1f:fd:eb:f0:7c:07:7d:41:2d:6a:bf:14:
d6:09:a0:e7:0e:fc:4c:28:71:96:56:c3:d0:47:1d:b1:18:b2:
2a:52:f6:f9:94:8e:12:10:07:db:2c:a6:61:28:2c:6d:4c:7b:
cb:39:d2:44:32:49:18:5c:0c:d2:3e:29:ae:e7:ab:c2:79:00:
70:d9:dd:e1:3a:03:a8:28:9e:0e:54:7f:d1:5b:fe:3f:c2:eb:
37:4b:b0:51:6c:cd:4b:3a:98:74:16:d4:02:e1:1d:95:7c:b4:
8a:71:ed:d6:8e:1a:9f:6c:b8:a7:f8:b0:51:f0:8a:eb:66:95:
3a:bf:e9:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:36 2023 by rpki-client on console-ams.rpki-client.org