Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/TG_aTNJZ04rTkcbT91qi0sSUkV0.roa
File: TG_aTNJZ04rTkcbT91qi0sSUkV0.roa (raw, json)
Hash identifier: gA5PCNjczRTkQhNed9UrAArsm5+P/80Az3siRULuTWM=
Subject key identifier: 4C:6F:DA:4C:D2:59:D3:8A:D3:91:C6:D3:F7:5A:A2:D2:C4:94:91:5D
Certificate issuer: /CN=ccbf95b47ab2b99c222bfe54521efd1ab67d267f
Certificate serial: 06D6567E
Authority key identifier: CC:BF:95:B4:7A:B2:B9:9C:22:2B:FE:54:52:1E:FD:1A:B6:7D:26:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/TG_aTNJZ04rTkcbT91qi0sSUkV0.roa
Signing time: Mon 28 Mar 2022 11:58:51 +0000
ROA not before: Mon 28 Mar 2022 11:58:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 213.170.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114710142 (0x6d6567e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccbf95b47ab2b99c222bfe54521efd1ab67d267f
Validity
Not Before: Mar 28 11:58:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c6fda4cd259d38ad391c6d3f75aa2d2c494915d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:74:6e:03:61:9c:0f:6a:33:9b:a0:4f:87:36:
fd:f5:a2:bd:39:3b:26:8a:1c:05:5c:fb:8f:31:07:
42:11:3e:48:d2:ab:80:bf:76:5e:de:1e:00:a7:b8:
0f:83:c9:05:48:e6:01:bf:d4:3d:1d:9f:70:8d:1c:
55:a9:b3:87:3d:ce:19:46:7a:db:69:5f:91:65:eb:
b8:58:fc:8f:1b:95:52:58:8d:d7:17:60:98:72:60:
9b:42:8e:a2:3f:b6:32:de:da:26:31:4c:06:17:96:
59:55:ae:f3:ea:00:98:54:50:95:78:08:13:b7:d8:
22:25:62:79:6a:9f:74:4a:65:29:d0:39:2c:55:a5:
83:c3:96:2f:ce:4b:4a:50:8e:fb:15:b6:b0:60:d2:
69:2f:3e:e4:e1:d8:e3:0d:3e:88:5b:0f:49:d1:5c:
08:b6:56:47:c7:97:75:ae:d5:e3:bb:af:92:e5:43:
9e:13:9d:76:ff:90:cb:11:29:f2:2a:e3:0f:b8:32:
d7:98:d1:bd:ce:40:39:fa:aa:7c:18:b3:77:07:d3:
1c:1e:ea:88:68:f9:e8:50:92:81:f3:69:29:a2:df:
73:91:53:ed:75:69:93:47:96:d5:e7:a9:db:de:d4:
de:1c:e6:f0:e6:2d:9a:2c:89:4f:69:09:60:be:6a:
2d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:6F:DA:4C:D2:59:D3:8A:D3:91:C6:D3:F7:5A:A2:D2:C4:94:91:5D
X509v3 Authority Key Identifier:
keyid:CC:BF:95:B4:7A:B2:B9:9C:22:2B:FE:54:52:1E:FD:1A:B6:7D:26:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/TG_aTNJZ04rTkcbT91qi0sSUkV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.170.202.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:21:22:5f:96:4f:6e:4c:f6:77:17:07:a8:e6:37:9e:76:da:
63:90:d7:de:da:ef:51:74:94:9e:ba:22:80:2d:9b:1c:71:d1:
86:53:44:d0:c3:1f:d1:41:e2:7d:25:c0:3e:35:d2:37:c9:37:
79:72:07:f4:db:ae:8a:39:6d:42:81:f0:c9:ab:a5:6f:f3:b2:
47:5d:71:6f:44:18:a3:59:52:3d:46:81:c0:52:b1:be:35:dc:
5b:b5:33:a9:d5:79:a3:10:70:8e:42:a3:81:f1:f8:1b:51:22:
92:42:0f:0b:8d:91:42:d5:2c:69:eb:f6:28:f6:ef:37:13:55:
e8:45:d7:b0:98:86:fc:5f:f2:0a:2c:3d:24:2f:3c:3d:c2:57:
e5:dc:a3:4d:6d:05:63:98:ad:8f:25:c1:a2:0e:3b:4b:54:69:
63:d9:75:0c:33:7a:6a:2b:0c:ab:bf:95:ba:93:ba:07:24:f5:
7a:6a:41:da:9d:2a:06:8d:f9:53:10:89:44:44:de:41:e9:20:
94:a1:5d:6d:66:9f:15:6f:92:7b:ef:29:ec:f8:41:d0:da:c1:
2c:ed:23:e5:46:d8:ba:bb:90:b7:df:67:36:ff:da:2d:39:80:
61:fd:f6:1e:ef:6f:bc:62:4a:9e:8f:2c:36:e4:0c:d2:d6:d4:
c0:c9:fe:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:58 2024 by rpki-client on console-ams.rpki-client.org