Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/TIYHmmxNyxJEya0vQbwukUUMRoo.roa
File: TIYHmmxNyxJEya0vQbwukUUMRoo.roa (raw, json)
Hash identifier: J3bqP0cyAzl1cDGBoR+boFJDE+AfuyGg3sK7UowTuP4=
Subject key identifier: 4C:86:07:9A:6C:4D:CB:12:44:C9:AD:2F:41:BC:2E:91:45:0C:46:8A
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 07F1D896
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/TIYHmmxNyxJEya0vQbwukUUMRoo.roa
Signing time: Thu 02 Jun 2022 10:19:20 +0000
ROA not before: Thu 02 Jun 2022 10:19:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 194.15.96.0/22 maxlen: 24
188.209.128.0/20 maxlen: 24
188.209.136.0/22 maxlen: 24
45.154.156.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133290134 (0x7f1d896)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jun 2 10:19:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c86079a6c4dcb1244c9ad2f41bc2e91450c468a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:2b:46:54:ff:6c:a8:6e:4c:5c:84:53:1a:84:
e7:da:fd:f3:58:ce:18:2e:07:fd:9d:ee:8e:56:3a:
a8:5e:11:af:b3:9e:b6:70:bc:87:55:32:03:03:47:
7a:df:f9:c6:81:e7:6f:fa:ac:d0:7a:f9:ca:de:1d:
fe:65:5f:ab:c8:93:f7:bc:bf:e8:d7:6a:77:ef:e5:
86:53:54:fc:f5:de:08:6a:2f:30:c8:c0:90:5c:d5:
ac:35:5e:c4:21:a9:10:89:cc:93:17:47:80:fe:17:
c5:52:b9:c9:c6:d9:8a:28:cb:c5:b4:22:57:fa:02:
f4:54:a7:a1:ed:76:3a:cb:b2:f0:10:19:f1:af:1e:
a9:9d:37:e1:91:91:48:90:0c:73:9c:af:39:7d:99:
95:ba:c1:6e:28:38:c3:04:1e:95:f5:11:51:f3:1b:
be:be:85:34:f8:3c:d3:88:01:8f:51:12:50:87:96:
15:29:3d:08:ab:e2:96:5d:65:cf:0c:22:ba:db:1f:
3c:ab:ab:6c:84:da:09:c2:6a:fa:05:4d:ca:79:4f:
b7:54:08:bd:09:fb:8c:8f:2b:d5:64:cc:b0:bb:df:
21:9a:00:a2:59:5c:b2:06:12:d8:3c:5e:2a:af:89:
1d:f4:6e:e4:72:8f:ad:68:37:6e:20:7d:3d:8d:99:
b3:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:86:07:9A:6C:4D:CB:12:44:C9:AD:2F:41:BC:2E:91:45:0C:46:8A
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/TIYHmmxNyxJEya0vQbwukUUMRoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.156.0/22
188.209.128.0/20
194.15.96.0/22
Signature Algorithm: sha256WithRSAEncryption
50:f0:0a:03:99:a5:a4:41:7c:3c:ab:48:e4:c6:8f:81:51:00:
82:3b:be:5b:d0:62:bd:db:9c:8f:ec:78:ae:6b:82:1f:ca:66:
34:54:7e:b4:91:9e:24:c2:5b:63:a4:ba:71:40:cd:a5:03:99:
30:81:0b:f4:8f:47:48:03:82:6c:5b:22:f6:12:b1:37:a0:93:
a2:8b:f5:48:2f:44:fe:b5:15:62:cf:11:ba:88:e1:2e:c8:6e:
10:3a:a7:5d:27:cf:ea:d6:14:7d:de:49:d0:05:3e:df:9b:33:
8d:93:12:04:f2:36:1c:d0:8e:99:1a:8c:c9:f1:eb:62:75:b3:
5b:7c:a0:a8:91:5d:a1:32:31:1e:3c:5f:16:19:47:7c:bd:1f:
b5:f0:4c:30:b4:31:6c:5e:67:09:a7:7f:87:95:70:3c:b5:1d:
08:9e:b9:84:c7:16:78:bc:de:71:1c:0c:b6:37:1e:5a:cb:ad:
79:8b:f8:48:b1:bf:fd:de:ab:79:6a:e7:d5:16:ae:86:ea:f4:
39:16:85:86:9c:07:47:0c:e2:5b:34:7b:4a:46:a0:dc:08:29:
ef:d5:98:8d:38:44:77:f0:c4:a4:9e:0d:00:97:36:97:a9:6d:
b2:bf:4b:be:02:5b:ac:ad:e1:67:a1:ce:a8:c3:42:e1:c0:39:
79:ab:cd:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:13 2023 by rpki-client on console-fra.rpki-client.org