Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/Tf1RrrfA1UHRytWCSYScdATGN8o.roa
File: Tf1RrrfA1UHRytWCSYScdATGN8o.roa (raw, json)
Hash identifier: x5I2rKeWuV6znpGgV7uLUr8Jz+sNamKpec6hIH2mDOo=
Subject key identifier: 4D:FD:51:AE:B7:C0:D5:41:D1:CA:D5:82:49:84:9C:74:04:C6:37:CA
Certificate issuer: /CN=d283616f1362c25d82ec2a70c4b9750565b1197f
Certificate serial: 03C7A8D0
Authority key identifier: D2:83:61:6F:13:62:C2:5D:82:EC:2A:70:C4:B9:75:05:65:B1:19:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0oNhbxNiwl2C7CpwxLl1BWWxGX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/Tf1RrrfA1UHRytWCSYScdATGN8o.roa
Signing time: Sat 01 Jan 2022 08:57:25 +0000
ROA not before: Sat 01 Jan 2022 08:57:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.54.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63416528 (0x3c7a8d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d283616f1362c25d82ec2a70c4b9750565b1197f
Validity
Not Before: Jan 1 08:57:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4dfd51aeb7c0d541d1cad58249849c7404c637ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:92:61:30:de:6a:69:56:ec:72:89:0b:d9:43:
14:ed:dc:a8:1f:64:32:ba:8c:44:7b:b1:bb:e1:19:
98:9d:d1:8b:50:d3:19:3a:1a:47:84:a5:ba:1f:95:
47:8d:d2:5a:cb:76:64:7f:01:18:2a:3a:f8:7e:96:
2b:95:d5:97:34:a6:b6:ec:cb:4b:4c:80:d5:30:50:
b0:1e:3e:6b:50:68:73:fc:ca:3e:1e:03:d4:26:46:
d9:0d:41:28:0b:e4:5f:12:ab:0b:d7:f8:38:3a:b3:
c3:e9:a2:d6:55:bb:58:30:20:10:db:42:fa:0f:20:
a9:fa:d9:e6:a8:71:3c:46:2f:cf:42:72:0b:f3:78:
f8:20:86:de:a2:03:4d:d9:10:0b:0e:bb:23:12:03:
eb:b6:79:5e:31:05:e8:6f:5f:cc:50:c0:d3:41:c7:
19:5f:f7:46:7b:92:11:88:ea:ba:68:55:b9:89:9e:
6a:ed:8d:3d:e6:8d:4f:b4:38:6e:eb:43:95:08:55:
b4:72:99:02:6b:f6:17:b4:fa:b2:46:f0:b0:98:33:
f9:e1:99:d0:ac:0a:fa:38:55:e4:f0:9c:71:72:d3:
a0:d7:c0:fa:f6:dd:93:e1:d7:89:c1:dc:19:97:02:
c8:3e:d0:3c:32:6c:65:29:27:4f:25:c5:01:5e:6c:
63:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:FD:51:AE:B7:C0:D5:41:D1:CA:D5:82:49:84:9C:74:04:C6:37:CA
X509v3 Authority Key Identifier:
keyid:D2:83:61:6F:13:62:C2:5D:82:EC:2A:70:C4:B9:75:05:65:B1:19:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0oNhbxNiwl2C7CpwxLl1BWWxGX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/Tf1RrrfA1UHRytWCSYScdATGN8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/0oNhbxNiwl2C7CpwxLl1BWWxGX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.72.0/22
Signature Algorithm: sha256WithRSAEncryption
66:22:09:f3:aa:dd:2d:9d:4e:15:ca:f7:d3:b6:23:22:bb:80:
b1:d0:68:a6:4d:87:bc:07:1b:37:f0:1c:f0:ba:bb:8e:ee:88:
2e:54:16:27:1f:ab:54:8a:82:e6:c1:89:b6:52:10:9b:bc:67:
dc:40:50:cd:cb:3b:69:77:af:76:63:ec:1f:3a:f8:6f:24:bf:
fc:dc:b8:33:29:0b:9e:d8:c4:de:96:63:86:c4:f7:ce:cd:12:
33:60:fa:7a:8e:2e:e6:6d:f5:e5:97:9b:8e:48:bc:d5:42:f9:
ba:f2:30:b2:20:f1:3b:62:e5:a6:d2:89:a5:ff:be:b6:23:7a:
9a:e5:a8:ce:d4:6a:4a:9f:79:af:d8:ba:6a:74:c1:fc:6a:86:
0c:56:3e:bc:ea:44:f6:11:1f:b7:f9:1e:5e:52:b9:a5:a9:ed:
b5:ec:23:d6:53:80:ff:cc:75:f3:d9:69:54:8f:02:fc:dc:cc:
e7:85:6e:9c:64:76:47:62:e1:5d:a0:36:e0:36:5c:a6:78:33:
c7:b3:ad:7a:82:c5:ea:41:27:e9:a2:10:db:b2:99:c0:ca:f0:
52:7f:ad:61:55:e4:e9:3a:2b:88:d0:d1:00:6e:fc:a4:1c:77:
57:7c:d5:b5:a4:f4:02:d3:1f:a6:6b:b6:8b:ec:54:bd:3c:ad:
6e:bc:eb:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:38 2024 by rpki-client on console-fra.rpki-client.org