Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/TyY7VB_PJs1LreEU2_XF_4CzUt4.roa
File: TyY7VB_PJs1LreEU2_XF_4CzUt4.roa (raw, json)
Hash identifier: MNaQMBvkg1UqFMuvcMLqeP+kZdjLuc5TZVtzMXeZnSA=
Subject key identifier: 4F:26:3B:54:1F:CF:26:CD:4B:AD:E1:14:DB:F5:C5:FF:80:B3:52:DE
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2945B212
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/TyY7VB_PJs1LreEU2_XF_4CzUt4.roa
Signing time: Wed 23 Mar 2022 12:16:23 +0000
ROA not before: Wed 23 Mar 2022 12:16:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208946
IP address blocks: 93.171.158.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 692433426 (0x2945b212)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Mar 23 12:16:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f263b541fcf26cd4bade114dbf5c5ff80b352de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:14:77:15:aa:e2:bf:af:3f:fd:4a:b5:4a:d4:
bc:1f:63:f5:ab:fc:1b:3f:cf:54:89:d3:6b:53:d2:
44:6a:b5:b5:ae:b3:78:1b:7f:c6:8e:4d:52:b6:08:
86:ce:d1:9d:5a:18:03:10:b4:69:1a:c6:91:02:8f:
51:33:97:e1:8b:ea:16:0f:8f:78:a5:74:4d:0e:f6:
48:e3:e5:17:64:66:49:9f:1c:d9:83:85:0a:97:fc:
d6:de:fa:ad:19:23:37:26:2b:bb:03:c4:88:88:4b:
d4:b2:88:92:91:6a:3f:86:30:2d:62:26:29:64:27:
e1:2c:7d:72:40:1b:0b:cc:5a:ec:e3:89:00:f5:b3:
7d:7b:e9:d9:45:b0:9b:28:0e:1c:61:d9:3a:10:d7:
07:76:e8:b7:bc:92:cc:e3:70:a4:fb:02:9c:e0:bd:
e6:0f:75:19:68:e8:ac:2a:51:fa:7f:35:08:c7:12:
fc:b8:99:b0:a7:b0:de:62:ba:df:9c:94:7c:87:95:
3c:33:fb:e0:84:aa:16:80:dc:a9:24:f5:72:00:59:
90:67:c9:a2:e4:3b:c3:14:90:80:08:81:77:95:f1:
7b:98:97:12:c6:42:31:b1:f6:c4:09:0e:88:d8:dd:
84:97:1e:a7:c9:25:42:8f:f8:40:e5:71:ea:bf:49:
ec:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:26:3B:54:1F:CF:26:CD:4B:AD:E1:14:DB:F5:C5:FF:80:B3:52:DE
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/TyY7VB_PJs1LreEU2_XF_4CzUt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.158.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:f1:db:d0:1a:b3:c3:93:cf:ff:1f:9f:14:e9:2c:e9:52:b2:
86:f6:40:fe:a0:00:96:f7:66:f4:94:ea:33:16:5e:6a:e6:ef:
b5:44:44:bd:8e:cb:1c:cd:00:f2:49:cf:dd:0f:47:5a:4b:c3:
49:ac:d4:6d:fb:d1:f2:ab:f0:15:de:2c:96:eb:b3:53:96:6b:
b7:a2:6e:ed:6c:6b:7e:1c:b5:b7:79:00:67:ee:8d:a8:b1:34:
6b:51:66:27:fa:8b:40:fc:7d:b0:91:bd:ef:0c:be:2e:04:1e:
a3:54:d8:61:d8:53:7a:3f:e2:05:7f:95:27:7e:89:5a:e5:07:
f7:85:ca:d5:e4:cd:59:03:36:26:e5:83:51:02:df:65:6f:cf:
b0:aa:5f:a8:a8:70:f3:8a:7f:5f:2d:a0:84:e7:fe:9d:78:86:
19:3b:f0:51:c0:d6:fd:a3:49:9f:17:e7:0e:09:5c:55:cf:08:
68:f7:08:05:cb:53:fe:08:9c:9b:8d:cd:e3:a9:0a:43:aa:90:
2f:4d:62:81:81:8c:ec:a9:c9:4f:b1:9a:e0:9d:4f:ab:d1:b3:
8b:17:f7:05:5e:0b:37:bf:b4:84:01:18:e9:99:34:6f:90:16:
2b:7b:7c:78:cf:38:04:67:72:9f:73:eb:c3:3d:f8:c4:22:25:
75:6c:7e:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:24 2023 by rpki-client on console-ams.rpki-client.org