Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/e80231-53b8-4225-8523-947de3868cd5/1/TpD5Q5-G360X2r5sUGwztiorWtQ.roa
File: TpD5Q5-G360X2r5sUGwztiorWtQ.roa (raw, json)
Hash identifier: FDXEAVdn6L3bbuV11n5YWNuVsOktyiZKVilMYpfUAYM=
Subject key identifier: 4E:90:F9:43:9F:86:DF:AD:17:DA:BE:6C:50:6C:33:B6:2A:2B:5A:D4
Certificate issuer: /CN=d78ac174e852b71c31163ec1d8649fff6b07ba79
Certificate serial: 0799730A
Authority key identifier: D7:8A:C1:74:E8:52:B7:1C:31:16:3E:C1:D8:64:9F:FF:6B:07:BA:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/14rBdOhStxwxFj7B2GSf_2sHunk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/e80231-53b8-4225-8523-947de3868cd5/1/TpD5Q5-G360X2r5sUGwztiorWtQ.roa
Signing time: Sat 01 Jan 2022 15:06:08 +0000
ROA not before: Sat 01 Jan 2022 15:06:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8822
IP address blocks: 195.182.224.0/24 maxlen: 24
195.182.225.0/24 maxlen: 24
195.182.224.0/19 maxlen: 19
195.182.226.0/24 maxlen: 24
2a0f:4c00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127496970 (0x799730a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d78ac174e852b71c31163ec1d8649fff6b07ba79
Validity
Not Before: Jan 1 15:06:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e90f9439f86dfad17dabe6c506c33b62a2b5ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:50:df:8d:ec:38:44:15:e0:b3:88:1b:6e:2c:
8a:64:37:af:40:b2:7d:61:a7:81:0f:b0:69:a8:f0:
2a:bf:dc:3c:1e:3f:17:c3:fb:0a:2f:5a:ff:ff:bf:
29:d7:97:c7:89:40:d8:29:3c:a3:23:51:70:59:8f:
01:1f:8b:b7:08:17:6c:14:45:00:a0:d3:e8:e1:a9:
ce:2e:91:56:7d:72:50:8e:56:c2:72:e7:bc:6e:32:
56:26:fe:b7:f0:be:cf:ad:e5:53:c7:e9:85:ab:b3:
46:82:93:dc:ac:17:98:35:87:fc:70:61:64:48:02:
88:e1:6b:09:3d:5a:2a:ce:dc:79:2a:6f:68:7d:d7:
84:ac:5d:58:ef:0f:c3:87:33:0d:06:fc:bd:57:ad:
92:1d:e2:61:f5:28:a3:60:f9:3a:7f:4a:39:8f:32:
d3:17:02:38:89:65:c5:77:9f:34:c1:db:83:5e:fe:
2c:64:1c:5f:6e:5c:f8:13:c9:87:ad:ea:1d:29:80:
ad:aa:a1:2b:b0:87:97:14:13:e6:d0:e1:8a:06:f8:
cc:1e:50:61:ed:c7:3d:bd:91:99:d7:93:87:8e:b3:
c9:64:92:67:93:c7:98:0e:6f:ee:d8:07:35:4c:b0:
76:c5:c6:cb:5b:5f:53:4c:5e:bd:76:54:87:70:e1:
de:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:90:F9:43:9F:86:DF:AD:17:DA:BE:6C:50:6C:33:B6:2A:2B:5A:D4
X509v3 Authority Key Identifier:
keyid:D7:8A:C1:74:E8:52:B7:1C:31:16:3E:C1:D8:64:9F:FF:6B:07:BA:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/14rBdOhStxwxFj7B2GSf_2sHunk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e80231-53b8-4225-8523-947de3868cd5/1/TpD5Q5-G360X2r5sUGwztiorWtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e80231-53b8-4225-8523-947de3868cd5/1/14rBdOhStxwxFj7B2GSf_2sHunk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.182.224.0/19
IPv6:
2a0f:4c00::/29
Signature Algorithm: sha256WithRSAEncryption
af:e2:b2:06:0b:6a:d3:50:49:fe:67:4b:ef:5a:57:c2:5d:cc:
59:50:3a:b1:12:82:eb:b4:83:37:a9:c9:f0:45:2a:ff:40:e0:
44:68:54:12:fe:50:9e:69:0d:7b:32:68:90:6b:89:01:e7:f3:
ca:03:4b:60:8f:fa:54:e7:71:e3:76:12:c9:c8:7f:50:8d:16:
7f:0e:f1:2f:d9:18:b3:1f:07:d3:92:fe:f1:0c:1e:a2:1f:f6:
c5:49:cf:c4:61:fd:45:29:81:5a:57:9b:cf:ad:5d:c7:29:1d:
e3:d9:b8:63:fd:cf:a0:c0:3d:3b:73:82:f9:6e:c1:60:86:e5:
a5:e8:7f:f7:23:61:15:eb:47:bb:76:a8:f3:6d:91:86:92:d2:
fe:a7:89:4a:00:8a:9e:b2:7d:f7:ac:f6:93:c6:70:f9:f7:4e:
ae:f0:2f:7a:fa:01:a2:3f:19:0c:af:6d:ec:f8:03:9c:fc:70:
e1:f5:87:60:03:de:db:c0:7f:0f:c5:a0:1d:55:12:54:f5:84:
49:d1:be:56:df:7b:af:87:12:63:19:4b:84:0a:77:d7:23:88:
ed:c0:71:34:b9:05:aa:ea:86:57:3b:a7:7b:e9:ff:b5:22:69:
b6:a5:f4:c5:f0:08:38:12:e2:63:92:5d:31:5d:b9:f0:ff:03:
4c:56:2a:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:04 2023 by rpki-client on console-ams.rpki-client.org