Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/TU_3rG0Rd-hj-WptyGnRdj2wS64.roa
File: TU_3rG0Rd-hj-WptyGnRdj2wS64.roa (raw, json)
Hash identifier: zUdiPZxU6APPh2FdO4Ld/nBa5MfUalYaZMV1SeeiNu4=
Subject key identifier: 4D:4F:F7:AC:6D:11:77:E8:63:F9:6A:6D:C8:69:D1:76:3D:B0:4B:AE
Certificate issuer: /CN=f8a966664ec96edbd12e8e82e940bfb9faec105e
Certificate serial: 146FA78A
Authority key identifier: F8:A9:66:66:4E:C9:6E:DB:D1:2E:8E:82:E9:40:BF:B9:FA:EC:10:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/TU_3rG0Rd-hj-WptyGnRdj2wS64.roa
Signing time: Fri 01 Jul 2022 07:43:02 +0000
ROA not before: Fri 01 Jul 2022 07:43:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60729
IP address blocks: 185.177.207.0/24 maxlen: 24
2a0a:4587:2010::/46 maxlen: 46
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 342861706 (0x146fa78a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8a966664ec96edbd12e8e82e940bfb9faec105e
Validity
Not Before: Jul 1 07:43:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d4ff7ac6d1177e863f96a6dc869d1763db04bae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:db:22:22:cb:df:41:28:a7:51:b7:37:05:3d:
4b:e8:ae:0c:76:78:0d:e0:9f:31:61:cc:5e:ab:fb:
ba:41:c5:15:cc:4d:29:25:3d:7c:a6:2c:9a:d2:f6:
cb:b4:4b:de:e7:ae:a7:1e:d3:51:0d:7d:9a:2d:0c:
85:7e:57:1a:5e:12:ac:cb:1a:99:1e:07:de:63:fb:
6e:23:ab:f4:80:a0:b7:ba:e5:1a:f3:0b:74:77:44:
87:84:7c:80:ab:42:4a:91:aa:03:0a:9d:1d:a0:42:
09:1b:9b:f6:de:51:ac:31:0f:30:ef:c5:26:81:f6:
e8:eb:29:0b:59:8d:e3:52:b6:c4:0c:7f:73:f1:3e:
dc:d2:58:9f:0b:07:7b:67:cd:4e:a4:8b:de:a5:5a:
51:f7:d5:c8:c9:f4:14:67:8f:0d:11:65:24:4c:f9:
94:20:05:8c:48:3f:3b:1a:78:13:a6:06:29:a2:0b:
5a:5a:a8:7f:e9:d0:ae:52:61:9f:36:fd:64:7e:47:
3c:3f:80:56:16:6d:4f:f8:f7:6b:a8:4e:f3:51:2e:
71:7c:6b:48:0d:4b:d3:1f:92:1c:bc:cf:34:47:c0:
a7:b1:e4:b0:d1:af:7f:f1:ec:16:dd:72:e5:a7:c6:
c3:cc:e6:69:76:94:01:15:86:60:73:08:62:56:f5:
9d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:4F:F7:AC:6D:11:77:E8:63:F9:6A:6D:C8:69:D1:76:3D:B0:4B:AE
X509v3 Authority Key Identifier:
keyid:F8:A9:66:66:4E:C9:6E:DB:D1:2E:8E:82:E9:40:BF:B9:FA:EC:10:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/TU_3rG0Rd-hj-WptyGnRdj2wS64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.207.0/24
IPv6:
2a0a:4587:2010::/46
Signature Algorithm: sha256WithRSAEncryption
36:63:70:d8:c9:e6:fb:ca:73:41:15:c9:ec:52:d4:f3:d3:65:
ba:28:da:0b:d6:90:16:79:da:df:67:52:cf:28:b8:96:9c:22:
d1:52:78:17:3f:3a:96:38:a5:43:fc:80:a1:b5:f7:b9:c9:97:
b9:0f:c5:d6:bd:67:64:70:64:d9:34:f7:fc:67:f6:98:d0:c7:
91:d4:5e:c9:22:12:d1:19:3b:ed:33:3d:94:91:32:ce:d3:b9:
70:04:5b:2f:47:97:24:dc:75:39:59:11:b4:8a:f9:50:fd:ca:
69:e3:ff:dc:56:74:ee:0c:f5:f4:55:19:7f:ad:65:d1:ce:ab:
a0:03:47:a4:2b:ae:b1:50:c2:a8:3d:a7:6c:b8:bc:3b:bd:45:
aa:66:7c:6c:08:ed:b9:c6:f8:3c:93:97:a7:a7:8e:2a:41:ef:
8a:3c:41:2c:5b:c3:d0:b8:80:6d:43:e2:dc:0c:85:6c:a2:21:
3d:4d:7f:92:71:34:2e:f6:31:fe:b6:cc:ff:20:2f:37:f6:10:
81:19:6c:94:24:4a:17:b6:c3:0e:1e:57:7e:c0:b3:66:b6:ce:
0d:3e:f1:dd:5f:c9:6d:cd:5d:61:64:68:d8:2f:32:bc:10:1b:
45:42:b6:4f:b1:e6:35:44:36:60:07:4c:b1:4e:8f:88:c9:b6:
4c:53:6a:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:16 2023 by rpki-client on console-fra.rpki-client.org