Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/TFWQM0NjAAMH4ySXnO8DdBsOug4.roa
File: TFWQM0NjAAMH4ySXnO8DdBsOug4.roa (raw, json)
Hash identifier: zy++Z7T+RAKknwNIbGz0066bWF0p37R+JNE5OuchLD0=
Subject key identifier: 4C:55:90:33:43:63:00:03:07:E3:24:97:9C:EF:03:74:1B:0E:BA:0E
Certificate issuer: /CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Certificate serial: 03BC1FB9
Authority key identifier: AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/TFWQM0NjAAMH4ySXnO8DdBsOug4.roa
Signing time: Sat 01 Jan 2022 14:05:05 +0000
ROA not before: Sat 01 Jan 2022 14:05:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50819
IP address blocks: 2a00:1480:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62660537 (0x3bc1fb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Validity
Not Before: Jan 1 14:05:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c5590334363000307e324979cef03741b0eba0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:fd:a0:ec:d4:aa:3f:78:ea:19:b4:7e:e4:27:
bb:fb:6b:0a:70:4f:38:a2:bb:9a:23:ba:2f:63:4e:
42:71:e1:0c:95:9c:0c:c1:77:63:26:2b:66:13:c7:
33:f5:07:8b:0c:4e:94:7c:eb:fb:8f:bc:1a:97:b8:
48:3c:a0:83:52:6a:40:ed:e1:9e:d5:82:24:27:89:
ef:04:2b:95:a1:60:27:c4:d1:da:4d:17:2f:3c:81:
94:7e:fd:36:29:b1:98:cc:ca:cb:b7:9c:97:85:f7:
0b:e7:90:f3:11:53:23:6a:96:46:18:4b:2c:da:9f:
85:d6:49:8d:25:ee:ca:9a:21:bb:28:cf:f5:c3:a7:
56:8c:fe:95:2f:61:3d:12:2a:8e:aa:af:d0:bf:42:
99:c2:b3:75:c7:07:15:d6:ce:45:d6:fc:c5:e1:50:
5e:e4:0f:20:1e:f4:59:2d:67:7f:88:c4:50:eb:a2:
2b:b3:cf:b5:1a:b3:ca:bd:da:0e:62:06:40:1d:81:
aa:79:e9:13:dd:f8:c7:32:49:b5:82:83:26:7e:78:
0f:5a:6f:50:a4:a7:5e:e6:c0:14:2b:d4:f3:72:55:
ad:a5:54:51:21:0e:31:1d:be:77:d0:bc:f5:17:d6:
d2:d8:54:52:8c:be:3a:6b:d2:c7:23:67:4b:5f:48:
81:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:55:90:33:43:63:00:03:07:E3:24:97:9C:EF:03:74:1B:0E:BA:0E
X509v3 Authority Key Identifier:
keyid:AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/TFWQM0NjAAMH4ySXnO8DdBsOug4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/q4xsWLYH_yOucXWmFoLHVIDx4hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1480:3::/48
Signature Algorithm: sha256WithRSAEncryption
e2:3e:88:fb:21:67:d0:6b:ba:ad:76:36:24:8b:c7:bb:20:e4:
89:70:66:df:4a:dd:4c:95:c9:c5:0b:6b:60:bd:62:f6:0c:01:
6b:c4:48:bd:f3:b3:3a:62:e8:9c:ef:91:11:de:9e:08:fe:f9:
3f:23:3b:bc:96:ac:08:f6:49:d7:27:57:4b:d2:3a:b9:36:8e:
0d:f5:91:c1:6f:6a:57:23:a9:a7:7c:2d:bb:27:cf:47:cc:cc:
21:75:1a:c6:70:3c:f8:96:95:53:0b:fa:78:d9:a0:21:63:ae:
80:71:b6:19:c8:5c:30:9a:9f:30:21:8c:0d:24:c4:3d:82:3a:
62:20:d6:44:ea:19:56:84:d7:72:e2:a2:3c:64:78:f3:ba:03:
4a:ed:8d:75:6c:d5:cc:e5:10:ad:ad:c0:6f:55:62:fa:b6:04:
8b:72:14:31:3d:b9:03:53:b0:c1:9a:d4:2c:1e:68:0a:f0:93:
5c:9c:5d:9d:fe:17:bc:18:47:66:f9:9c:d2:a2:b9:de:2c:09:
fb:b1:87:bd:80:53:f5:84:c8:b6:b8:ba:3f:04:7b:17:ae:a4:
e7:e9:4c:24:ee:10:93:1c:50:1f:ed:c7:4f:af:1e:8e:a4:bc:
b8:92:f6:22:73:cf:be:69:82:3e:ce:ed:89:37:9d:bb:ee:fe:
ee:bf:0a:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:23 2024 by rpki-client on console-fra.rpki-client.org