Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/fd6069-4179-45be-b82a-af3f794ae607/1/TUQ8S8unk-jPxWi6ksk84bvnga8.roa
File: TUQ8S8unk-jPxWi6ksk84bvnga8.roa (raw, json)
Hash identifier: dr/vnzfaXHJav8ED8W97EgfwDUIee01DneHeQOpgvTU=
Subject key identifier: 4D:44:3C:4B:CB:A7:93:E8:CF:C5:68:BA:92:C9:3C:E1:BB:E7:81:AF
Certificate issuer: /CN=af121cd6e11da095f856d79deec469d0c6358494
Certificate serial: 02564821
Authority key identifier: AF:12:1C:D6:E1:1D:A0:95:F8:56:D7:9D:EE:C4:69:D0:C6:35:84:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rxIc1uEdoJX4Vted7sRp0MY1hJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/fd6069-4179-45be-b82a-af3f794ae607/1/TUQ8S8unk-jPxWi6ksk84bvnga8.roa
Signing time: Sat 01 Jan 2022 08:04:30 +0000
ROA not before: Sat 01 Jan 2022 08:04:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19005
IP address blocks: 185.146.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39208993 (0x2564821)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af121cd6e11da095f856d79deec469d0c6358494
Validity
Not Before: Jan 1 08:04:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d443c4bcba793e8cfc568ba92c93ce1bbe781af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:93:fe:b7:61:4a:cb:8d:3b:e6:26:bc:31:6c:
6b:e3:36:14:eb:60:64:1d:59:7d:8f:90:82:5f:0a:
bd:63:2a:a0:34:2f:46:55:ec:32:ee:41:2f:ff:0e:
e7:88:cd:96:89:47:f7:25:43:83:95:7b:03:16:a4:
dc:56:72:81:a6:b1:2e:52:36:ae:e1:41:eb:f0:49:
5d:a9:44:70:15:67:4d:95:84:0f:6b:72:49:5f:c0:
fa:db:55:07:16:b5:5b:67:b1:3b:b4:6c:9e:83:8f:
f4:5a:63:00:9e:46:4a:b6:3c:93:b9:56:07:a1:e1:
f8:20:11:32:2a:6a:e0:94:a6:52:46:72:4d:d7:2d:
03:d8:0b:8f:5f:83:80:46:8b:a5:9d:0b:31:d2:2a:
14:e5:0f:35:f7:e8:93:21:ed:c2:0c:e6:b0:3d:ba:
f7:f0:07:a2:9d:d8:d3:4b:41:4f:5f:ac:a4:72:7d:
2f:47:0f:6b:c2:8f:c7:74:1b:b9:da:35:57:d4:79:
aa:60:9b:8e:37:55:71:49:0f:01:90:9d:bd:6a:8f:
ed:db:c0:f7:0e:a3:61:61:aa:d7:7a:e4:6d:95:13:
d1:5f:7f:fb:77:00:9b:21:d1:08:33:6f:50:61:ae:
0c:6e:90:ab:0e:6e:21:c7:22:cf:41:51:9c:46:f3:
86:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:44:3C:4B:CB:A7:93:E8:CF:C5:68:BA:92:C9:3C:E1:BB:E7:81:AF
X509v3 Authority Key Identifier:
keyid:AF:12:1C:D6:E1:1D:A0:95:F8:56:D7:9D:EE:C4:69:D0:C6:35:84:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rxIc1uEdoJX4Vted7sRp0MY1hJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/fd6069-4179-45be-b82a-af3f794ae607/1/TUQ8S8unk-jPxWi6ksk84bvnga8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/fd6069-4179-45be-b82a-af3f794ae607/1/rxIc1uEdoJX4Vted7sRp0MY1hJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.28.0/22
Signature Algorithm: sha256WithRSAEncryption
12:fd:f4:57:78:79:b6:26:e2:16:39:0a:99:b3:84:63:8c:4e:
b2:8f:7b:4f:69:ba:06:b5:05:b5:2c:0a:83:99:bc:47:48:1b:
a6:86:8c:54:57:5e:c2:ae:93:15:6c:3d:ae:2e:1b:7c:c5:06:
f4:3e:fd:38:71:97:68:e1:ab:e1:99:08:f9:79:f9:d3:96:f4:
04:9f:02:35:f2:73:6a:b6:d5:76:1a:a7:69:c5:66:77:e1:ac:
26:63:d5:98:70:fe:8c:d7:55:f3:5d:06:38:65:82:78:ed:90:
2f:84:81:48:49:c7:28:42:92:43:05:cc:8f:a8:a8:85:20:1e:
d5:28:08:5a:f3:f7:0f:2a:33:a5:5f:91:8e:5b:33:ab:30:25:
11:01:a0:ad:42:12:13:0d:d0:53:84:87:8f:31:3f:2b:f4:6c:
d2:75:f6:88:7c:48:d4:ed:c9:e7:16:5a:a7:4d:17:22:ea:fa:
fc:e1:b6:12:15:48:ad:50:b6:f4:3a:77:e1:60:06:05:09:e0:
af:70:52:e9:96:6f:83:c9:1e:b2:d6:9c:48:38:cc:8a:1d:32:
af:79:b0:e0:a4:0f:e4:c8:f2:48:9f:a3:b9:58:46:bc:dc:02:
e9:56:85:25:63:cd:e6:00:4d:6c:69:18:71:df:39:6c:e3:93:
b4:58:89:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:06 2024 by rpki-client on console-fra.rpki-client.org