Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/c63f9e-9e7b-46dc-a402-879979d29e1e/1/TMZMZsmuwznvx_R9zLdG78jfpaM.roa
File: TMZMZsmuwznvx_R9zLdG78jfpaM.roa (raw, json)
Hash identifier: 6wMPJNcCgsZe6d5TjjC2j7SS8wFCcbJcNaedjKK437c=
Subject key identifier: 4C:C6:4C:66:C9:AE:C3:39:EF:C7:F4:7D:CC:B7:46:EF:C8:DF:A5:A3
Certificate issuer: /CN=1bb45744a541285eea0e4e04e5de766a9c823b53
Certificate serial: 0D495FB1
Authority key identifier: 1B:B4:57:44:A5:41:28:5E:EA:0E:4E:04:E5:DE:76:6A:9C:82:3B:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G7RXRKVBKF7qDk4E5d52apyCO1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/c63f9e-9e7b-46dc-a402-879979d29e1e/1/TMZMZsmuwznvx_R9zLdG78jfpaM.roa
Signing time: Sat 01 Jan 2022 05:03:56 +0000
ROA not before: Sat 01 Jan 2022 05:03:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43689
IP address blocks: 185.100.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222912433 (0xd495fb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bb45744a541285eea0e4e04e5de766a9c823b53
Validity
Not Before: Jan 1 05:03:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4cc64c66c9aec339efc7f47dccb746efc8dfa5a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:54:d2:d8:a5:9a:e9:c8:69:ee:1e:21:fb:0d:
0b:09:7b:ca:38:70:40:f6:e6:fb:99:34:89:5b:ce:
40:3a:d7:d9:7e:8c:10:06:78:50:e1:d7:fd:a3:6f:
fd:52:a1:d2:c1:94:6a:62:d5:b1:85:fb:54:d6:75:
cd:c1:c6:c3:aa:8d:8c:7a:8e:2b:47:c3:aa:75:2d:
e3:8d:94:fb:f0:4c:5c:cf:55:de:62:f7:74:db:04:
08:da:ff:ba:dc:59:ab:93:4d:29:d6:21:7a:4a:f4:
c0:59:4e:e7:52:71:71:c7:ef:44:76:2c:c0:77:b0:
2d:de:7c:c8:3b:53:5e:9d:e4:80:ef:9f:28:03:dc:
13:84:95:8d:a3:b8:d7:21:bc:07:47:3a:9a:42:2a:
75:13:97:72:d8:30:4f:f1:66:c3:0c:91:52:6e:ea:
6e:1a:53:01:fe:ca:ec:96:24:1c:9e:37:a6:87:d2:
01:de:2d:d8:36:2d:ec:ed:fc:a3:4a:25:24:3c:0a:
b3:58:bb:50:93:a8:92:65:13:cf:eb:53:9f:6e:d3:
74:c3:05:91:7d:bf:67:ee:a1:3f:91:54:fc:de:a9:
4e:16:ef:85:2b:bb:b9:73:c6:a8:12:cc:76:9d:ad:
ba:dc:8d:4d:58:d9:77:c5:83:89:b3:42:3a:4b:5f:
ce:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:C6:4C:66:C9:AE:C3:39:EF:C7:F4:7D:CC:B7:46:EF:C8:DF:A5:A3
X509v3 Authority Key Identifier:
keyid:1B:B4:57:44:A5:41:28:5E:EA:0E:4E:04:E5:DE:76:6A:9C:82:3B:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G7RXRKVBKF7qDk4E5d52apyCO1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c63f9e-9e7b-46dc-a402-879979d29e1e/1/TMZMZsmuwznvx_R9zLdG78jfpaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c63f9e-9e7b-46dc-a402-879979d29e1e/1/G7RXRKVBKF7qDk4E5d52apyCO1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.248.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:a4:27:c5:5b:90:a2:06:45:7f:01:80:11:0f:4a:3f:a2:db:
f3:c9:1d:04:bc:93:ec:4a:f1:b7:0d:ba:0a:eb:85:5d:65:02:
0b:df:41:b8:c7:e8:70:a1:d2:ce:a5:47:a7:8f:f2:f8:b1:98:
47:0e:ce:2f:1d:24:e8:df:de:1f:a6:c9:60:16:9c:b9:46:4d:
c0:a6:8a:fe:73:6c:7e:53:0b:ac:b5:b9:33:e5:e3:2e:6f:61:
63:5b:f2:ce:b1:e9:ab:c0:ef:c0:18:0b:1e:db:db:8c:2c:31:
89:fd:55:7b:a3:66:e7:c5:8e:0a:3d:64:c5:e4:a7:a9:bc:4d:
5d:26:ce:f0:77:0a:3d:df:6c:e6:7e:6b:66:a4:97:0d:d3:e8:
05:fc:ea:a6:cb:49:0b:a4:85:54:0d:56:a4:0b:e4:27:2e:45:
ee:6d:43:5b:fe:a3:05:1c:f8:82:35:3a:bd:cf:87:b6:0d:8e:
20:af:14:04:1b:ea:f2:ae:f7:70:65:48:9d:b8:8a:09:e6:df:
e5:fe:0f:d6:8c:31:8e:5e:75:6e:53:bc:e1:f3:f0:6d:c4:fc:
d2:a2:59:24:6b:0e:70:b2:d9:a8:c4:14:cb:01:5f:c6:2d:36:
ca:1e:47:1d:d4:ed:7a:72:be:a9:58:09:9e:d4:68:06:ab:6d:
8e:65:e8:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:29 2024 by rpki-client on console-ams.rpki-client.org