Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/TVXhuV4e8R4-jq59NVdnVz_DH-w.roa
File: TVXhuV4e8R4-jq59NVdnVz_DH-w.roa (raw, json)
Hash identifier: dDe1/CCvbWumoeMkqJdW+GYMAlqGTiryQNdse+FN+eo=
Subject key identifier: 4D:55:E1:B9:5E:1E:F1:1E:3E:8E:AE:7D:35:57:67:57:3F:C3:1F:EC
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 03BEA1FF
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/TVXhuV4e8R4-jq59NVdnVz_DH-w.roa
Signing time: Mon 21 Feb 2022 13:34:16 +0000
ROA not before: Mon 21 Feb 2022 13:34:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201978
IP address blocks: 188.132.128.0/24 maxlen: 24
185.241.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62824959 (0x3bea1ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Feb 21 13:34:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d55e1b95e1ef11e3e8eae7d355767573fc31fec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2c:6f:f2:66:74:15:fa:b3:d4:e9:1f:55:77:
b7:6f:ca:07:b8:d7:64:2d:1e:9e:d6:df:21:78:bd:
10:54:c6:ca:ee:be:c6:d9:9b:62:cd:09:95:84:eb:
cb:aa:0f:75:b2:72:70:46:dd:49:20:bd:7f:e7:d5:
8d:fe:55:30:9d:32:c3:db:5e:28:57:80:af:be:38:
ef:31:84:f5:6a:8b:33:1d:89:8e:5f:d8:7f:31:7c:
12:e8:0a:75:34:ed:d5:32:d8:a1:6b:72:fe:f5:8c:
80:98:ec:83:97:45:b1:11:9c:72:5a:3b:1e:0d:92:
d8:e9:69:3f:d9:31:b1:10:7c:d0:5c:c6:1e:92:6e:
76:3f:9a:ef:43:fb:00:f7:d9:b1:9f:65:d9:7b:fb:
44:63:c0:9e:da:01:60:a2:b8:88:39:59:0a:80:e2:
8c:54:95:50:91:50:21:92:75:c9:11:45:6e:12:26:
fb:29:43:d1:8c:0f:18:57:0c:72:d7:ce:18:20:7e:
89:34:54:77:0f:a8:a2:09:aa:4c:2e:c5:47:63:76:
ca:b7:85:4c:11:e4:43:c4:68:1d:37:bd:01:9d:92:
a3:6f:cc:79:73:9c:4a:74:5b:0d:a3:f1:83:8f:55:
61:50:f1:d5:19:3b:78:5b:83:be:15:60:10:19:38:
4d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:55:E1:B9:5E:1E:F1:1E:3E:8E:AE:7D:35:57:67:57:3F:C3:1F:EC
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/TVXhuV4e8R4-jq59NVdnVz_DH-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.10.0/24
188.132.128.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:e1:c3:1d:93:cb:c3:23:ad:af:ab:eb:c7:96:f0:d4:42:8c:
53:f8:f0:7f:ae:23:8d:73:cf:ea:56:5c:bd:29:2f:ab:3f:bb:
d6:53:ab:a6:8a:41:f4:56:e5:7c:f5:2d:a7:86:10:de:0a:5a:
39:41:4a:61:4a:8e:ad:b4:bf:7d:df:ec:9c:89:08:13:b8:c1:
69:5c:c4:b4:47:f8:10:ab:61:49:23:5f:b2:22:55:ec:dd:da:
81:82:a2:23:a3:ff:97:8b:0f:5e:44:f0:d2:92:4d:19:5b:6c:
f8:af:78:d3:5e:a2:12:d3:7a:e0:d4:f4:03:92:51:36:03:3c:
c8:05:cb:6d:54:54:c7:f4:4b:3c:24:f4:76:5d:3f:d9:57:81:
8c:57:c4:1d:43:a4:2e:ae:a6:27:4d:87:c6:6d:42:6b:63:d9:
b6:15:99:4d:70:ad:2d:1a:2c:a2:b7:8d:3a:cc:f4:44:71:0e:
41:ef:27:03:46:f1:1a:70:68:44:6c:63:52:54:35:b8:c8:eb:
d5:a3:b6:e0:93:7d:6e:b2:1a:76:f1:14:b1:a8:db:ae:63:cb:
7b:71:36:ac:98:d8:f8:da:7d:9d:36:a7:e5:c7:6b:36:89:eb:
c8:d4:51:59:dd:d2:1f:87:a9:a6:7e:93:cd:a6:9f:ad:91:3b:
bc:64:d9:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org