Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/5a9b45-48dd-4d8e-bad2-d41ff858618a/1/Tw4JE-bRqUE2lXRRIwWHHPEXDLo.roa
File: Tw4JE-bRqUE2lXRRIwWHHPEXDLo.roa (raw, json)
Hash identifier: zV7PCZ8o2c2kGjbJF0fDT+Pp9NaXr5Ee2IoF4rp37VQ=
Subject key identifier: 4F:0E:09:13:E6:D1:A9:41:36:95:74:51:23:05:87:1C:F1:17:0C:BA
Certificate issuer: /CN=3be2ef09708a9459da5759f146f69a5d19ccfe75
Certificate serial: 39AA22
Authority key identifier: 3B:E2:EF:09:70:8A:94:59:DA:57:59:F1:46:F6:9A:5D:19:CC:FE:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O-LvCXCKlFnaV1nxRvaaXRnM_nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/5a9b45-48dd-4d8e-bad2-d41ff858618a/1/Tw4JE-bRqUE2lXRRIwWHHPEXDLo.roa
Signing time: Sat 01 Jan 2022 01:03:24 +0000
ROA not before: Sat 01 Jan 2022 01:03:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206980
IP address blocks: 185.169.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3779106 (0x39aa22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3be2ef09708a9459da5759f146f69a5d19ccfe75
Validity
Not Before: Jan 1 01:03:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f0e0913e6d1a941369574512305871cf1170cba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:87:bb:9e:a9:17:31:21:77:84:a4:b4:72:f6:
40:d6:d4:33:ce:0b:49:9e:9d:5a:d5:40:ed:94:60:
d8:59:5f:f6:4e:ad:bb:c0:e1:40:2e:a4:78:15:3a:
58:e6:86:a0:69:38:c4:48:e4:3b:a3:90:a9:4f:bb:
9d:d0:42:0d:6e:92:eb:26:01:d7:08:31:78:0b:3b:
22:c9:e9:0a:35:96:7f:c0:d7:d0:b6:7b:0f:98:ea:
62:86:35:3a:12:04:6e:91:76:ae:a9:ad:1b:81:05:
ba:ca:03:f4:29:7a:d6:b0:e3:7c:af:88:94:11:bc:
72:ce:5a:0d:f6:21:e1:00:99:64:36:ed:5c:b1:bf:
61:32:76:b8:6e:e7:2a:f0:f4:68:96:d8:16:52:9e:
cd:20:c5:b1:7c:a8:47:8e:c1:b4:82:30:2f:fe:b4:
5f:20:d8:65:b7:71:c1:f1:3a:32:cb:0d:cb:f0:a1:
d1:b2:23:b5:3a:4a:47:7e:8d:d8:98:45:ca:6b:5c:
44:39:1c:c7:4f:4c:e3:92:8d:6d:f7:43:b5:06:4a:
fb:6c:81:fd:ca:7d:b6:99:6b:e2:e5:5e:a6:09:f4:
5b:4b:0a:07:55:44:f0:6b:a7:f6:c0:cd:8c:2b:41:
cd:fa:91:f4:2a:ba:a1:1d:02:da:54:c6:6e:5f:93:
9b:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:0E:09:13:E6:D1:A9:41:36:95:74:51:23:05:87:1C:F1:17:0C:BA
X509v3 Authority Key Identifier:
keyid:3B:E2:EF:09:70:8A:94:59:DA:57:59:F1:46:F6:9A:5D:19:CC:FE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-LvCXCKlFnaV1nxRvaaXRnM_nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/5a9b45-48dd-4d8e-bad2-d41ff858618a/1/Tw4JE-bRqUE2lXRRIwWHHPEXDLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/5a9b45-48dd-4d8e-bad2-d41ff858618a/1/O-LvCXCKlFnaV1nxRvaaXRnM_nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.133.0/24
Signature Algorithm: sha256WithRSAEncryption
01:59:81:7c:82:7f:d0:0d:d2:1e:2f:99:68:fb:45:5b:4b:e3:
f8:07:7c:ad:68:b8:81:f4:c4:71:f8:f2:67:f6:1b:77:03:6c:
f1:c2:37:b9:45:ac:52:99:da:d0:d2:a0:8f:15:3f:80:65:77:
6d:2b:5a:41:6c:45:b5:5d:b7:f7:09:18:2a:15:fd:05:67:48:
c4:18:89:8a:6c:97:d1:f3:5d:9b:23:0f:45:89:9d:47:e1:96:
00:6d:28:95:db:84:c3:aa:68:15:49:cd:95:e8:94:44:b0:2e:
71:b9:63:25:2d:39:6b:d6:19:61:51:ee:5f:0a:00:7f:34:73:
b1:47:1f:9b:5d:db:90:23:d8:3c:ef:bb:eb:8f:be:33:74:1b:
70:b7:1e:93:11:60:95:45:6a:ff:ce:6a:92:ee:49:c3:7b:6a:
d0:dc:2b:63:aa:77:c2:e8:9c:1b:96:20:97:ba:92:63:d7:21:
36:6d:89:43:8d:30:8c:ec:37:93:c5:d4:2e:4b:ab:ae:d8:25:
ef:a1:5b:a5:6a:60:94:8c:17:3e:9a:50:85:f1:31:dd:bc:3e:
5a:69:14:13:0d:ea:9d:d9:a6:9b:e3:43:78:79:ef:20:9b:77:
13:dc:4d:fb:93:54:d7:2e:ad:84:93:72:bd:83:37:02:8b:10:
a2:de:8b:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:24 2024 by rpki-client on console-ams.rpki-client.org