Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/84887c-6809-4425-bce9-3b5b71cbb322/1/tyiLie_G2MUzRQDwH58n-60IxYs.roa
File: tyiLie_G2MUzRQDwH58n-60IxYs.roa (raw, json)
Hash identifier: r+aQ73bxCv2osN+SpamugYF3fYzpA1+oMiU155jMIsQ=
Subject key identifier: B7:28:8B:89:EF:C6:D8:C5:33:45:00:F0:1F:9F:27:FB:AD:08:C5:8B
Certificate issuer: /CN=dd4e3892f46b107852c3eae1b27dccf60fab99bd
Certificate serial: EBA284
Authority key identifier: DD:4E:38:92:F4:6B:10:78:52:C3:EA:E1:B2:7D:CC:F6:0F:AB:99:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3U44kvRrEHhSw-rhsn3M9g-rmb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/84887c-6809-4425-bce9-3b5b71cbb322/1/tyiLie_G2MUzRQDwH58n-60IxYs.roa
Signing time: Sat 01 Jan 2022 05:59:29 +0000
ROA not before: Sat 01 Jan 2022 05:59:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206988
IP address blocks: 141.98.200.0/22 maxlen: 22
141.98.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15442564 (0xeba284)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd4e3892f46b107852c3eae1b27dccf60fab99bd
Validity
Not Before: Jan 1 05:59:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7288b89efc6d8c5334500f01f9f27fbad08c58b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:db:f0:65:20:be:3d:7d:8a:e8:9e:5c:8e:11:
67:51:94:0f:00:ba:ff:30:e6:48:87:d1:56:7a:83:
96:55:14:4b:0c:40:83:83:58:2b:97:c2:46:6e:59:
f0:4f:40:ac:70:95:1c:b2:f2:c2:07:17:2b:f0:b4:
a0:eb:6c:ba:48:b4:4b:60:48:64:f9:a1:37:31:16:
4a:d5:50:32:74:16:d2:15:98:99:ed:b9:59:93:50:
71:51:d7:35:21:bc:e7:9b:97:38:cb:ce:95:52:29:
e0:8e:33:ac:ac:15:9e:5e:79:c2:7a:c6:55:17:47:
4e:bd:5f:c4:f2:fe:2d:b9:f8:b7:68:fa:17:da:e7:
5e:e6:4a:41:96:d9:ce:fd:1a:4d:52:5e:c1:e8:b5:
ed:fa:ef:e3:dc:d3:9b:33:bb:2a:6d:39:e7:f9:5c:
fe:53:c0:1f:2c:9a:3a:82:bd:ac:2c:b9:50:5c:fe:
16:4b:cb:43:da:56:56:60:2f:07:f7:f6:10:b2:55:
f8:83:b6:02:1f:fd:05:c4:89:59:7e:5d:a9:10:21:
69:12:4d:b1:72:c9:b6:b1:95:40:6d:d7:78:a9:8e:
ac:62:f1:2f:9a:26:0c:c7:2f:bc:fb:47:27:88:52:
f7:b8:56:3d:33:09:48:dc:5a:a1:5a:e9:b3:bd:e4:
2a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:28:8B:89:EF:C6:D8:C5:33:45:00:F0:1F:9F:27:FB:AD:08:C5:8B
X509v3 Authority Key Identifier:
keyid:DD:4E:38:92:F4:6B:10:78:52:C3:EA:E1:B2:7D:CC:F6:0F:AB:99:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3U44kvRrEHhSw-rhsn3M9g-rmb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/84887c-6809-4425-bce9-3b5b71cbb322/1/tyiLie_G2MUzRQDwH58n-60IxYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/84887c-6809-4425-bce9-3b5b71cbb322/1/3U44kvRrEHhSw-rhsn3M9g-rmb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.200.0/22
Signature Algorithm: sha256WithRSAEncryption
bf:fa:c5:e0:a0:e4:ed:c9:d4:32:99:39:f4:3a:2c:c0:92:f4:
eb:99:84:88:09:fe:05:09:60:43:12:d7:cb:96:27:d9:cf:b5:
29:54:90:86:49:fa:77:ba:b2:d5:7e:1a:b6:a3:cd:5e:3e:9b:
54:cd:02:12:12:0d:98:ee:8a:65:d8:bc:fa:2c:ea:ff:96:34:
27:17:65:f3:45:b3:0d:35:f8:1d:45:22:d4:8a:0c:ad:bc:6e:
e0:3f:59:77:da:d4:b4:6c:a8:0a:2e:e6:2c:b1:67:2c:85:20:
82:30:6b:dc:c7:4d:92:84:2c:34:3a:f0:a6:bf:7e:80:84:e8:
3e:e6:2d:93:c8:fd:62:58:da:77:d4:77:37:eb:e1:47:e2:77:
f1:a8:cc:23:88:01:4b:fe:19:d2:0a:bf:d2:6c:26:f5:57:1b:
de:55:2e:2b:98:d0:17:32:fd:ff:97:7d:91:33:2d:64:a1:74:
56:a8:59:a7:82:c4:c3:a3:95:5c:19:d4:e5:b6:b6:33:f0:84:
da:3f:c3:83:56:df:da:f0:c3:56:c7:a7:c6:72:cc:44:ce:e6:
5d:64:f2:b3:81:11:15:f0:83:e7:34:4d:1a:22:37:67:f4:9b:
51:ea:74:a9:f8:bc:22:66:0f:6a:80:90:ee:08:08:a0:a5:b8:
b6:6d:93:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:48 2025 by rpki-client