Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/TYyAW-HiLA4uZBsq_oHnSblhGXI.roa
File: TYyAW-HiLA4uZBsq_oHnSblhGXI.roa (raw, json)
Hash identifier: kEUIkt+OHuKyI8KSj9DeuZYi0aChuxuZVnxRyZDwwxU=
Subject key identifier: 4D:8C:80:5B:E1:E2:2C:0E:2E:64:1B:2A:FE:81:E7:49:B9:61:19:72
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 01846699C06D4779B96844DF80F6F9C8108D
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/TYyAW-HiLA4uZBsq_oHnSblhGXI.roa
Signing time: Fri 11 Nov 2022 12:11:03 +0000
ROA not before: Fri 11 Nov 2022 12:11:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 141.226.242.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:66:99:c0:6d:47:79:b9:68:44:df:80:f6:f9:c8:10:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Nov 11 12:11:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d8c805be1e22c0e2e641b2afe81e749b9611972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b9:37:ab:83:95:e7:b2:9f:8f:00:0d:51:13:
7e:a8:09:6c:a6:2c:b8:22:a2:58:dd:bf:9a:94:33:
2c:7a:3e:73:54:cf:47:ac:b4:99:a0:36:1d:f8:c6:
15:cb:a2:98:10:aa:2f:45:7f:44:6f:55:b2:b4:20:
18:ca:92:47:d3:aa:29:68:fc:55:54:c5:d3:99:40:
20:36:9e:1b:6c:33:03:4b:36:ea:b2:d2:cc:9b:8f:
a4:cd:bf:36:f6:4d:21:32:2d:8b:70:ad:b1:38:62:
28:ab:3e:37:72:ea:21:38:3e:b1:6e:15:9f:40:d2:
5b:85:fd:cf:e0:ae:d2:01:2a:76:57:78:c5:1a:3d:
b1:6c:01:f7:38:a4:c7:6a:0f:c9:ea:da:b1:96:99:
18:db:be:5c:4f:b0:59:27:cf:f8:dc:3f:65:18:bf:
4a:58:a6:93:cb:6c:f9:99:35:b2:4b:a5:8d:37:8c:
41:df:4d:05:9e:17:40:67:76:f0:42:ca:4b:c4:02:
9e:26:fa:b1:0f:8d:91:1f:09:2a:fd:5c:3f:7b:cc:
69:b7:05:4a:e7:bc:db:2f:22:ce:95:9a:47:77:89:
10:a0:5d:47:85:a9:2c:df:3c:76:5c:cf:da:6e:05:
29:32:f9:7a:d5:31:3a:44:b8:6c:20:e3:0f:fc:2e:
3a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:8C:80:5B:E1:E2:2C:0E:2E:64:1B:2A:FE:81:E7:49:B9:61:19:72
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/TYyAW-HiLA4uZBsq_oHnSblhGXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.242.0/23
Signature Algorithm: sha256WithRSAEncryption
97:f1:c5:af:de:83:a0:de:1f:69:4b:28:9a:65:6a:18:26:4d:
ab:1d:28:c5:f0:fa:3c:90:82:90:d9:dc:dd:95:80:10:a6:65:
a9:b1:dc:db:e6:8c:12:13:d6:90:d3:7b:a0:f5:86:83:df:aa:
a0:67:f4:dd:0d:d5:ad:0a:58:df:19:08:4f:85:c3:8d:1d:f4:
a0:ab:9e:f8:00:dc:d6:3b:16:38:aa:b3:cc:11:f1:e0:95:33:
68:f6:70:72:d7:6b:81:59:46:73:92:d1:82:48:b5:5a:41:76:
98:95:e5:d2:89:0d:2d:47:d9:85:b5:40:df:d5:c1:ec:b0:f3:
4b:a6:9f:b2:08:e8:0f:8b:66:81:78:d3:23:dd:a5:b3:67:94:
7d:a2:22:0a:44:06:83:bf:86:07:44:fc:64:1d:81:de:fe:ca:
9c:51:a0:12:b9:c6:1d:1f:f2:e8:ba:69:f2:a4:3b:d8:b3:8d:
eb:8d:e9:ab:2a:c0:55:0a:84:a4:29:79:19:9f:1a:0e:68:6a:
f4:8b:6d:bc:5f:3a:f9:29:6f:e0:7f:d8:ec:01:fe:96:b5:42:
f5:43:b3:38:42:23:53:57:0d:58:44:dc:31:67:e5:f9:78:d3:
ba:27:f9:6c:82:80:0b:2f:dc:5e:2e:bc:63:42:e5:02:fb:57:
71:0b:ca:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:38 2024 by rpki-client on console-ams.rpki-client.org