Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/851e84-2f1a-4c77-b1f2-d5865041a14f/1/tt5MNoLl0Gggb6z0wULOglWk37A.roa
File: tt5MNoLl0Gggb6z0wULOglWk37A.roa (raw, json)
Hash identifier: r1IL4SBdqT0NU2CBOLfdXYetTlxEcpCisCxwV2H2zHQ=
Subject key identifier: B6:DE:4C:36:82:E5:D0:68:20:6F:AC:F4:C1:42:CE:82:55:A4:DF:B0
Certificate issuer: /CN=ca91c42dfa6afbc11e78ee9de2e785f8a20b5043
Certificate serial: 028BF8
Authority key identifier: CA:91:C4:2D:FA:6A:FB:C1:1E:78:EE:9D:E2:E7:85:F8:A2:0B:50:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypHELfpq-8EeeO6d4ueF-KILUEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/851e84-2f1a-4c77-b1f2-d5865041a14f/1/tt5MNoLl0Gggb6z0wULOglWk37A.roa
Signing time: Wed 27 Apr 2022 09:53:42 +0000
ROA not before: Wed 27 Apr 2022 09:53:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25540
IP address blocks: 217.147.192.0/22 maxlen: 22
217.147.196.0/22 maxlen: 22
217.147.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166904 (0x28bf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca91c42dfa6afbc11e78ee9de2e785f8a20b5043
Validity
Not Before: Apr 27 09:53:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6de4c3682e5d068206facf4c142ce8255a4dfb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:94:62:b0:49:e3:71:50:6d:d8:9e:a4:d0:ce:
ab:80:ac:15:04:4b:1b:f8:56:fb:ae:f6:2e:59:61:
69:da:77:f2:94:cb:7f:4a:6a:28:9c:b2:8a:8d:7d:
be:1f:9a:c9:af:4d:8f:0a:f6:6e:8b:87:68:2e:b2:
71:62:56:13:f4:81:93:0d:b5:c6:40:2a:10:f4:de:
cb:ab:1a:07:9d:67:33:ad:1e:a4:43:5a:7a:19:37:
f7:2b:41:e1:ce:05:ce:42:90:84:9c:ae:06:00:71:
71:1d:36:d6:28:17:3b:45:d4:33:a1:37:b2:d8:8e:
1d:5f:f3:6b:08:df:a8:c6:2e:c5:42:6d:26:06:18:
60:1f:91:b4:2a:de:24:71:3a:33:d1:2f:36:f6:5b:
a0:d0:28:1b:61:36:26:c4:6f:e1:b0:9f:13:9e:24:
d3:d4:8f:7f:72:9c:58:8a:c3:bd:f2:20:ac:4c:2e:
1c:8e:b0:7d:19:aa:01:cf:c6:8f:bc:e4:9e:da:2e:
2a:14:31:62:52:39:e3:3e:c8:85:d4:65:44:7a:ec:
84:88:c3:e7:45:58:14:79:9f:5a:c3:31:9b:96:06:
f0:6c:04:db:e0:07:b9:7b:dc:61:b4:c0:4a:29:fd:
7e:ea:94:a2:c2:ef:67:26:c0:1e:16:ad:a3:81:45:
cd:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:DE:4C:36:82:E5:D0:68:20:6F:AC:F4:C1:42:CE:82:55:A4:DF:B0
X509v3 Authority Key Identifier:
keyid:CA:91:C4:2D:FA:6A:FB:C1:1E:78:EE:9D:E2:E7:85:F8:A2:0B:50:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypHELfpq-8EeeO6d4ueF-KILUEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/851e84-2f1a-4c77-b1f2-d5865041a14f/1/tt5MNoLl0Gggb6z0wULOglWk37A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/851e84-2f1a-4c77-b1f2-d5865041a14f/1/ypHELfpq-8EeeO6d4ueF-KILUEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.147.192.0-217.147.203.255
Signature Algorithm: sha256WithRSAEncryption
92:e5:bc:37:4d:19:3b:22:64:9f:80:1f:99:a1:90:5c:ce:27:
3c:ce:c5:cc:00:54:38:a6:a5:c7:b1:2c:3a:a0:16:0b:df:f0:
7e:9a:dd:d8:43:2e:d6:e9:56:50:95:fd:48:6e:2f:cd:23:b7:
4a:25:8d:76:7b:49:c8:fd:4a:f5:e1:48:dd:df:92:b2:53:42:
9a:b3:56:68:a2:62:4d:c4:61:6e:8a:4c:1e:85:d7:13:6a:73:
b7:b5:fd:f2:5f:82:77:39:7e:7d:25:67:db:18:eb:67:90:b4:
7a:f5:df:04:60:99:2c:aa:e6:4f:b7:e6:f8:d6:bb:b2:4d:ad:
59:ab:4f:ed:f5:54:e8:5a:80:0f:18:9f:3a:9b:bc:8a:28:0a:
f1:d9:c7:b4:26:6e:72:5b:c3:05:7f:a1:5c:b4:38:21:fa:49:
e3:a3:29:4d:5c:0e:bb:2d:e8:bc:81:f5:40:ba:36:b6:18:e7:
5f:a0:21:97:99:5e:74:b9:cb:bb:9d:1d:bd:6b:a5:1a:f4:d5:
a3:21:4e:77:ac:1c:8e:8b:d4:35:a4:ef:a5:d2:ed:61:92:aa:
a5:9d:56:db:40:39:7f:50:7b:16:bd:21:37:0b:19:44:b7:a5:
1d:e5:c3:4c:a9:0b:a1:ed:7c:bc:27:b0:37:99:d7:60:e6:5c:
aa:55:e0:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:31 2024 by rpki-client on console-fra.rpki-client.org