Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9ab3a5-1c46-4be0-8937-ad4bd7f23ce4/1/tc-87rN9KkUzJtIi5geiFh1MG0A.roa
File: tc-87rN9KkUzJtIi5geiFh1MG0A.roa (raw, json)
Hash identifier: Tp5OZW1sLkNzZaOp+JPLSiBzbfEUmiYWu+hwB306O5w=
Subject key identifier: B5:CF:BC:EE:B3:7D:2A:45:33:26:D2:22:E6:07:A2:16:1D:4C:1B:40
Certificate issuer: /CN=462231e713f0f834bd09c3f76e12e250e773c290
Certificate serial: 052F389B
Authority key identifier: 46:22:31:E7:13:F0:F8:34:BD:09:C3:F7:6E:12:E2:50:E7:73:C2:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RiIx5xPw-DS9CcP3bhLiUOdzwpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9ab3a5-1c46-4be0-8937-ad4bd7f23ce4/1/tc-87rN9KkUzJtIi5geiFh1MG0A.roa
Signing time: Sat 01 Jan 2022 13:59:00 +0000
ROA not before: Sat 01 Jan 2022 13:59:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42687
IP address blocks: 185.182.168.0/22 maxlen: 22
185.182.170.0/23 maxlen: 23
185.219.242.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86980763 (0x52f389b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=462231e713f0f834bd09c3f76e12e250e773c290
Validity
Not Before: Jan 1 13:59:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5cfbceeb37d2a453326d222e607a2161d4c1b40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:79:8f:6f:b8:98:3f:d0:c8:97:14:7b:4e:c1:
40:a9:fb:af:93:c9:be:4e:b5:a2:fd:fb:f9:8e:16:
26:9f:15:df:70:cb:fc:1c:a9:f6:e5:90:ba:bc:1c:
30:59:4e:02:7a:57:10:73:2c:31:69:74:22:ec:76:
22:8a:c8:d0:22:a8:6d:3b:b3:a8:a9:2b:ec:72:6d:
11:09:bb:8f:0b:b5:2a:b9:55:8b:89:77:12:9c:e5:
49:fe:98:82:38:16:a1:21:56:70:79:6a:f5:f4:3e:
04:a2:6e:2f:32:bb:6f:07:65:6f:d4:41:6b:8f:ea:
08:95:6b:08:c2:c9:97:46:7d:53:ad:76:eb:3a:dd:
95:89:7c:fd:af:6f:f1:d9:cc:7b:71:0a:7f:45:a6:
82:fc:41:37:37:b1:be:02:42:4a:cd:04:55:ad:9c:
25:9a:4b:f2:5f:57:2e:a3:6b:30:b6:82:30:29:41:
15:27:41:fb:21:00:95:1b:de:ce:90:57:e9:46:12:
ca:0c:71:3c:b1:ee:10:bb:1d:cb:2f:61:b5:4b:75:
a0:51:b7:d5:1d:ce:d6:4e:63:2b:e5:01:e1:12:eb:
b9:17:6e:b7:70:0e:24:b1:5a:1e:bb:85:e7:b4:13:
80:2f:26:92:92:b3:c3:65:cb:28:27:f8:13:0f:a4:
ab:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:CF:BC:EE:B3:7D:2A:45:33:26:D2:22:E6:07:A2:16:1D:4C:1B:40
X509v3 Authority Key Identifier:
keyid:46:22:31:E7:13:F0:F8:34:BD:09:C3:F7:6E:12:E2:50:E7:73:C2:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RiIx5xPw-DS9CcP3bhLiUOdzwpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9ab3a5-1c46-4be0-8937-ad4bd7f23ce4/1/tc-87rN9KkUzJtIi5geiFh1MG0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9ab3a5-1c46-4be0-8937-ad4bd7f23ce4/1/RiIx5xPw-DS9CcP3bhLiUOdzwpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.168.0/22
185.219.242.0/23
Signature Algorithm: sha256WithRSAEncryption
e0:96:ea:d0:a3:4c:72:c0:02:a6:49:59:6f:1c:77:8b:1d:5e:
7b:bb:3c:91:a0:4b:69:eb:f0:b7:d5:4a:d8:0e:d1:55:7e:9f:
bb:57:13:3d:6b:8c:f9:2f:d2:5e:0d:0f:bc:c7:54:8b:c3:67:
11:ad:82:d6:f0:18:1d:16:07:5b:9f:f3:b5:df:f4:af:68:3d:
27:0f:92:1c:c9:df:ab:d4:82:76:d6:ea:54:06:0a:de:b2:c7:
c7:b2:ee:1c:97:ad:48:14:7c:6d:73:f9:2f:33:fb:d4:d8:ef:
f6:8d:16:a2:06:37:3a:c7:e4:5e:03:c5:19:59:4c:f2:bb:6a:
15:0e:c9:56:73:70:d1:ac:cd:9e:c1:4a:83:f9:c2:e8:cb:1e:
b6:e9:0e:71:b1:59:38:49:df:4b:69:37:5b:6c:90:79:a9:51:
f9:89:db:9a:cf:e6:fe:0a:e0:4d:8b:2e:a1:b9:d1:97:21:11:
33:fb:a8:d4:92:f3:f4:5e:06:e4:cf:08:95:fa:11:d6:f8:ec:
b6:10:0e:00:05:a4:7c:7a:f2:e1:1b:d0:22:70:c4:bd:cb:a3:
a0:d2:00:08:04:f2:bf:2c:24:c5:90:ca:a4:21:32:ff:d4:34:
bf:af:1f:eb:2c:4b:d5:00:ac:7e:de:2a:d1:20:3f:ee:1a:4c:
f0:0e:4a:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:43 2023 by rpki-client on console-ams.rpki-client.org