Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/tuqaAt_MQ6GS1Yj7Gn17uYCCA08.roa
File: tuqaAt_MQ6GS1Yj7Gn17uYCCA08.roa (raw, json)
Hash identifier: Cy+1USAXRPwNRsluxrUqAsFrF1q2EQZSjfTvGxHQ/9g=
Subject key identifier: B6:EA:9A:02:DF:CC:43:A1:92:D5:88:FB:1A:7D:7B:B9:80:82:03:4F
Certificate issuer: /CN=9eeac1cfbec494ae9457c866e6361865c4f30048
Certificate serial: 0182011ACDA2BE8FEB70C5EA78A6722814F3
Authority key identifier: 9E:EA:C1:CF:BE:C4:94:AE:94:57:C8:66:E6:36:18:65:C4:F3:00:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nurBz77ElK6UV8hm5jYYZcTzAEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/tuqaAt_MQ6GS1Yj7Gn17uYCCA08.roa
Signing time: Fri 15 Jul 2022 09:05:09 +0000
ROA not before: Fri 15 Jul 2022 09:05:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199951
IP address blocks: 185.41.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:01:1a:cd:a2:be:8f:eb:70:c5:ea:78:a6:72:28:14:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9eeac1cfbec494ae9457c866e6361865c4f30048
Validity
Not Before: Jul 15 09:05:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6ea9a02dfcc43a192d588fb1a7d7bb98082034f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3d:09:47:58:36:77:d8:b3:a5:a6:3c:b2:f6:
f1:ec:19:08:86:6a:04:8b:f4:f8:91:a9:60:69:42:
fb:36:da:81:5b:19:69:0d:9f:29:84:1e:dd:59:c4:
9c:43:25:90:6f:c3:7c:5d:de:d3:31:27:93:43:b8:
9d:bb:9f:ec:c3:fe:05:e8:64:26:3b:5e:f2:7f:fe:
bb:62:5b:d0:40:a3:42:90:da:fd:f7:a3:3a:bd:61:
48:d2:47:7c:06:cc:37:fc:fe:d9:e2:38:75:c7:6d:
c1:1e:f7:8f:f8:ab:98:d1:c7:8a:c8:40:1e:53:46:
e7:5c:af:3e:2b:16:db:65:c8:1d:49:fc:31:50:a1:
41:19:69:11:26:58:0b:52:b5:20:7e:42:11:a6:41:
c4:f2:83:a9:14:1e:2c:f2:22:42:c6:5e:83:77:b8:
35:a6:b2:b6:02:c1:b7:01:90:ed:1f:80:4c:00:20:
16:d9:3f:ae:e5:88:58:7e:78:b0:05:63:44:c3:e9:
1d:28:09:d1:38:b1:12:38:5e:ca:04:62:f9:10:0d:
d5:2b:da:e6:f7:e9:58:c8:82:99:e1:6d:99:6b:a9:
6e:a2:67:19:e4:c6:9c:77:dd:3f:78:09:26:1b:a7:
5a:40:7f:9d:b2:1e:87:ad:6e:90:33:90:a2:92:ea:
ad:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:EA:9A:02:DF:CC:43:A1:92:D5:88:FB:1A:7D:7B:B9:80:82:03:4F
X509v3 Authority Key Identifier:
keyid:9E:EA:C1:CF:BE:C4:94:AE:94:57:C8:66:E6:36:18:65:C4:F3:00:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nurBz77ElK6UV8hm5jYYZcTzAEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/tuqaAt_MQ6GS1Yj7Gn17uYCCA08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.176.0/22
Signature Algorithm: sha256WithRSAEncryption
24:e2:01:c6:a1:3b:cd:88:6c:4a:e4:11:ab:65:60:49:be:5e:
c8:ae:6e:78:5e:8e:4e:3c:0a:82:4c:f8:46:2e:83:66:e8:eb:
0c:4d:e6:2d:a8:40:c1:85:6c:e6:5a:79:ad:84:d7:05:52:a9:
8c:eb:cf:41:4a:6c:69:8a:00:5e:d6:cd:22:e9:7b:c0:bd:98:
3d:33:5a:e6:c7:19:8a:ab:74:71:2f:ec:45:2d:7e:67:a2:77:
07:fe:0f:fb:ee:4f:35:af:0c:18:d7:5c:22:8b:ab:db:03:b1:
a3:59:f7:3c:87:d8:e0:e7:8d:fc:fe:55:71:bd:54:aa:27:eb:
3e:f5:53:06:58:9f:1c:b8:6f:d6:5c:52:d8:67:36:b7:0b:30:
5b:22:f5:c4:8e:ba:93:37:63:ca:d1:1c:cf:3d:92:93:40:bf:
33:76:8d:74:fa:7d:69:c3:d0:37:1c:b0:78:66:d0:61:27:5e:
19:df:72:1a:d8:78:91:ac:1a:20:d8:d5:a5:ed:77:41:b4:65:
19:5b:5b:b8:62:c7:80:8c:4e:0f:ba:39:ac:f9:8f:48:f8:93:
ff:66:25:0b:fb:69:ee:ba:66:f4:bc:d8:ab:5f:4d:e8:0a:16:
b9:5a:e5:9e:66:87:71:7e:1c:0d:24:ae:d2:a2:24:4f:2c:cd:
7d:26:73:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:07 2024 by rpki-client on console-ams.rpki-client.org