Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/TLTqBtvXC46GBVxSZecy-GB5PAg.roa
File: TLTqBtvXC46GBVxSZecy-GB5PAg.roa (raw, json)
Hash identifier: zk8AXke5mnNW2YlJZ952iw6fPwMba+gA3n2I0I0DKuo=
Subject key identifier: 4C:B4:EA:06:DB:D7:0B:8E:86:05:5C:52:65:E7:32:F8:60:79:3C:08
Certificate issuer: /CN=78b1dbe2faf2a6e7dfa574ce55190963015f1c53
Certificate serial: 018B48B668E3A9A5777EDB8707000D2B4D63
Authority key identifier: 78:B1:DB:E2:FA:F2:A6:E7:DF:A5:74:CE:55:19:09:63:01:5F:1C:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eLHb4vrypuffpXTOVRkJYwFfHFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/TLTqBtvXC46GBVxSZecy-GB5PAg.roa
Signing time: Thu 19 Oct 2023 16:13:15 +0000
ROA not before: Thu 19 Oct 2023 16:13:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197972
IP address blocks: 82.144.95.0/24 maxlen: 29
82.144.95.16/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:48:b6:68:e3:a9:a5:77:7e:db:87:07:00:0d:2b:4d:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78b1dbe2faf2a6e7dfa574ce55190963015f1c53
Validity
Not Before: Oct 19 16:13:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cb4ea06dbd70b8e86055c5265e732f860793c08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:83:1a:90:3a:1b:2f:64:ed:f5:f7:8a:36:cf:
d6:bf:80:e1:f1:2d:e5:d0:b1:c8:f7:67:54:49:49:
86:e0:03:b9:80:21:4c:c8:a8:03:1a:13:7e:a1:1b:
94:3d:7a:60:3a:5c:a0:bd:b4:cf:1c:c7:ad:6c:86:
0e:c8:35:f0:dc:7d:e1:af:d7:70:9a:74:27:0d:78:
01:29:e4:ba:c2:b5:06:44:35:58:71:c1:00:70:8e:
68:50:c0:b3:17:e7:02:25:6c:ee:cb:94:aa:a7:52:
ef:a6:a2:f4:de:9f:c2:0e:84:2d:e9:82:c8:26:3a:
26:76:0c:93:4b:49:53:a2:05:9d:3f:45:2f:dd:32:
41:0c:c0:e7:af:5d:be:64:c7:65:32:c8:33:4b:b5:
a3:eb:48:b6:64:f4:bd:a3:cd:07:c2:bd:4e:2e:dd:
21:ea:5f:08:a9:eb:1e:89:77:2a:ba:6f:84:2a:36:
7b:b8:29:58:96:00:c1:1b:12:e9:2c:83:df:e4:5e:
9e:6d:81:f0:7f:95:80:f2:b8:62:f0:3f:16:38:f0:
86:86:e2:67:6f:86:35:c9:e5:40:96:ca:33:10:1c:
fc:08:c4:7f:82:03:12:21:e8:0b:17:85:c8:22:73:
b9:d2:82:7c:3b:3c:8a:a6:37:e5:50:bf:06:87:c0:
c7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B4:EA:06:DB:D7:0B:8E:86:05:5C:52:65:E7:32:F8:60:79:3C:08
X509v3 Authority Key Identifier:
keyid:78:B1:DB:E2:FA:F2:A6:E7:DF:A5:74:CE:55:19:09:63:01:5F:1C:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eLHb4vrypuffpXTOVRkJYwFfHFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/TLTqBtvXC46GBVxSZecy-GB5PAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/eLHb4vrypuffpXTOVRkJYwFfHFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.144.95.0/24
Signature Algorithm: sha256WithRSAEncryption
64:fc:82:8f:01:3c:f1:9a:ed:54:a6:78:9c:9c:7d:4e:ea:5b:
70:b0:bb:d7:bc:cb:86:06:9b:4f:08:f5:d6:e9:e3:cd:6e:03:
a8:00:94:8f:dc:92:54:f7:10:05:dc:cc:d9:f8:17:a0:1b:b3:
ec:3f:68:aa:8d:c8:bf:4a:fa:99:03:8d:40:da:06:ce:3a:fb:
67:8e:1c:4b:0d:3a:a1:ea:48:72:fb:d8:f7:b1:06:76:67:1e:
5c:af:fa:6a:4c:71:1e:f7:7f:fd:cc:f2:5d:6e:52:bc:71:58:
0e:67:1d:e0:b7:8f:d7:ca:58:fa:32:1e:e0:b8:28:c3:16:07:
d4:b1:45:22:ac:84:54:c9:ef:fe:3b:9a:ef:7d:26:d7:a9:d1:
7d:8f:b8:de:61:e3:0d:bf:e7:d0:15:2f:0b:04:cb:d5:40:df:
fb:86:83:35:99:49:c7:ba:8e:cd:49:37:13:a3:ac:3c:a2:73:
af:aa:68:d0:e6:1f:10:47:f3:7d:26:8a:05:06:6f:fd:c9:07:
dc:f3:4a:61:99:60:61:2a:43:79:c0:d7:62:85:91:12:37:6f:
14:a4:3e:dc:05:23:b6:81:d7:9b:62:30:50:7a:ca:64:29:ca:
d5:38:7c:08:99:15:86:25:3a:36:9e:71:d6:5c:71:49:77:d6:
ab:c9:a9:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:21 2025 by rpki-client