Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/tf-62l5jisOZ_Vveg8-SV7GbprA.roa
File: tf-62l5jisOZ_Vveg8-SV7GbprA.roa (raw, json)
Hash identifier: u/BsidFUlBLZbvCj82jwiy4+A/jaS3NaAbawhWPGPe4=
Subject key identifier: B5:FF:BA:DA:5E:63:8A:C3:99:FD:5B:DE:83:CF:92:57:B1:9B:A6:B0
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0515AF3D
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/tf-62l5jisOZ_Vveg8-SV7GbprA.roa
Signing time: Wed 29 Jun 2022 14:02:02 +0000
ROA not before: Wed 29 Jun 2022 14:02:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212219
IP address blocks: 212.68.34.0/24 maxlen: 24
78.135.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85307197 (0x515af3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jun 29 14:02:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5ffbada5e638ac399fd5bde83cf9257b19ba6b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:75:a9:63:74:aa:75:f6:6d:90:7d:da:41:4c:
a6:58:52:26:3c:70:8f:42:df:bc:a7:68:03:04:22:
60:04:93:1c:75:67:66:c4:4e:2e:18:21:c3:33:c3:
88:2f:10:41:a4:0f:9c:9d:a1:1e:02:d1:3b:c6:3d:
6b:31:2f:27:52:a3:3e:21:e2:3d:a5:d0:46:14:5e:
07:63:6b:63:e1:ca:63:40:92:82:38:48:c5:9c:85:
22:d8:79:28:58:23:a2:17:aa:39:df:4d:d3:5f:03:
9f:50:2d:b0:98:c2:56:8a:d8:52:1c:0b:9a:26:a2:
dc:6c:45:e4:a9:d0:8c:2f:ac:76:32:fd:5e:a5:84:
8d:2c:80:cf:2e:a5:48:ca:59:0d:71:3e:4f:73:66:
71:13:71:e9:1f:df:74:1c:49:0a:b8:cc:84:8c:f2:
df:0c:43:0e:47:8f:16:17:72:15:48:36:d4:39:d9:
d2:ec:57:d7:91:02:13:f9:45:0b:d7:52:67:41:87:
4c:05:1d:8f:5d:df:60:f9:82:cd:d4:25:01:55:92:
46:98:7f:65:77:56:b7:dd:95:5f:7c:3e:cb:23:0a:
8c:3b:68:88:1c:45:11:25:09:86:2a:82:78:52:6e:
db:af:81:a6:02:e9:a3:25:dd:7b:d2:a0:0c:f0:83:
77:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:FF:BA:DA:5E:63:8A:C3:99:FD:5B:DE:83:CF:92:57:B1:9B:A6:B0
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/tf-62l5jisOZ_Vveg8-SV7GbprA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.85.0/24
212.68.34.0/24
Signature Algorithm: sha256WithRSAEncryption
66:d7:5e:89:95:f9:31:e6:ef:2a:89:50:ef:fd:ca:57:58:a3:
df:db:2f:f9:8a:c3:3a:02:94:10:6c:b4:10:ce:4d:75:7d:b2:
ec:58:66:71:6c:8a:b4:d0:db:0e:fe:48:f6:68:78:c3:34:1a:
67:e9:01:b7:72:60:3d:3d:ab:a0:2c:cc:8e:38:c9:a9:0e:b8:
f5:c5:b2:df:da:87:0d:31:82:0c:82:e3:1c:a8:b0:87:8c:38:
88:b0:80:63:c7:33:bb:68:cd:a3:21:0e:cb:fa:fd:90:0f:ff:
a4:7c:d7:48:81:a5:cd:45:04:33:99:1b:ae:a0:98:89:8f:ba:
9a:37:c5:6a:4a:bf:1b:37:09:31:7d:34:1e:de:cb:0c:a5:69:
b2:38:ef:9c:ee:5a:92:3c:f9:82:30:7a:0d:31:9d:51:db:dd:
50:7e:ad:cb:1c:06:e0:e9:f0:96:ac:0f:7f:4f:86:bd:95:27:
df:24:51:0d:cb:22:85:91:78:de:b2:db:9a:0b:98:b5:5c:b9:
e3:35:de:34:fc:88:af:41:2e:27:c1:8c:31:46:b5:7f:2d:ee:
44:b9:85:c4:39:b6:d3:19:26:a7:bf:60:50:28:29:a1:ec:d9:
b3:0c:7f:e3:86:b1:bb:af:70:3b:c4:9c:e4:d9:54:a0:55:fb:
86:9e:bb:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org