Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/tzhSaRadMUnmMNtvCfted79-NOc.roa
File: tzhSaRadMUnmMNtvCfted79-NOc.roa (raw, json)
Hash identifier: KwVKAkrBsSWTI9iwo6nJixkQ9XSdaxO4orOBSozmelM=
Subject key identifier: B7:38:52:69:16:9D:31:49:E6:30:DB:6F:09:FB:5E:77:BF:7E:34:E7
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 07AE48F0
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/tzhSaRadMUnmMNtvCfted79-NOc.roa
Signing time: Sat 01 Jan 2022 05:57:02 +0000
ROA not before: Sat 01 Jan 2022 05:57:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57207
IP address blocks: 188.255.128.0/23 maxlen: 23
188.255.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128862448 (0x7ae48f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 1 05:57:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7385269169d3149e630db6f09fb5e77bf7e34e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cd:8e:c4:b9:af:13:09:4e:59:a8:31:57:ca:
bc:e6:92:c5:4f:ef:74:75:fc:22:7f:da:37:f2:1d:
8a:04:19:07:8f:9e:92:1d:3f:9a:54:30:dd:86:57:
28:81:25:8b:0f:29:0c:54:aa:87:94:b6:e5:30:35:
8c:a0:9d:59:35:ce:0e:44:e3:80:ac:49:ac:be:c2:
cd:be:c7:15:36:de:8b:5a:f6:ed:6f:01:20:28:62:
37:2d:21:6c:0e:45:0a:c9:07:61:32:5d:9f:e3:d7:
e9:8c:51:c1:89:be:be:ce:e9:16:55:7e:6f:be:ba:
1c:71:f7:f8:9b:47:b0:ca:d1:82:aa:6f:1a:af:9a:
90:e1:69:64:18:27:7e:b5:39:81:28:45:f9:37:1c:
fb:17:10:bc:15:c2:c4:d3:8c:04:80:1c:e7:5d:fd:
f0:eb:2c:39:d8:51:c9:77:75:75:ec:27:08:c2:d3:
a1:5d:a7:56:9f:86:c1:85:55:1a:aa:06:b7:95:98:
cb:5e:8b:6d:f3:e1:38:41:c0:d2:2c:0d:d0:28:89:
f6:3b:66:1f:05:34:d9:40:ee:1c:9a:8e:dd:47:d8:
c4:33:bf:c6:d0:0b:26:05:01:9b:ca:c7:c3:3d:e7:
39:03:8a:21:2a:57:86:1b:a3:03:f4:d0:f9:e3:01:
cc:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:38:52:69:16:9D:31:49:E6:30:DB:6F:09:FB:5E:77:BF:7E:34:E7
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/tzhSaRadMUnmMNtvCfted79-NOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.255.128.0/23
188.255.134.0/24
Signature Algorithm: sha256WithRSAEncryption
36:f6:16:97:e3:a0:37:bb:cc:4a:1b:3e:5d:a8:0c:b5:1b:65:
6b:6b:95:95:d5:f9:1c:61:8b:6c:d5:c8:12:77:53:b5:78:f2:
dc:7b:43:b9:c1:38:01:81:0a:a2:34:64:3e:9f:cd:a1:2a:a1:
7d:fb:93:8a:ff:ec:f5:41:e7:03:dc:8b:0a:f8:9d:94:db:78:
60:80:70:4f:ab:bc:e8:15:2e:70:00:b9:94:d6:6d:a6:0b:85:
fd:d0:10:f8:ef:19:c5:13:a6:f1:3d:ce:53:c2:82:f5:be:c8:
3b:96:83:db:77:c2:60:df:50:a5:d3:6c:19:d0:40:46:3b:9d:
8a:2c:8b:02:d2:77:c8:13:23:00:3c:db:9c:e2:90:0a:80:e7:
1e:69:5f:4a:14:f2:c7:77:ee:84:ca:d8:4c:9e:b6:ec:0a:a5:
48:9f:2e:8c:35:38:2c:3c:da:81:6c:15:2a:fa:fb:be:0e:90:
f1:3a:20:8d:ca:87:b3:3b:60:57:73:20:10:63:06:66:2b:d5:
17:ba:25:9a:3b:d6:7f:01:9a:dc:f9:55:e7:9a:02:7d:13:16:
54:8f:72:7f:fc:7f:91:11:0d:d1:95:da:32:b5:88:fd:84:c5:
61:7d:54:3c:c9:d7:c9:48:9b:3b:be:95:ae:f8:14:cd:3d:84:
79:e1:8a:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:05 2024 by rpki-client on console-ams.rpki-client.org