Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/TWJxefbNGBaJds6bzFLHAMny_kA.roa
File: TWJxefbNGBaJds6bzFLHAMny_kA.roa (raw, json)
Hash identifier: daFJ1XhLhZfpQbkhduvhomghghCgbf8rZ+oQwZr0+p0=
Subject key identifier: 4D:62:71:79:F6:CD:18:16:89:76:CE:9B:CC:52:C7:00:C9:F2:FE:40
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 018514E1B4022B4AFF63411961B0CD32A8B9
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/TWJxefbNGBaJds6bzFLHAMny_kA.roa
Signing time: Thu 15 Dec 2022 08:23:34 +0000
ROA not before: Thu 15 Dec 2022 08:23:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2287
IP address blocks: 90.84.157.0/24 maxlen: 24
90.84.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:14:e1:b4:02:2b:4a:ff:63:41:19:61:b0:cd:32:a8:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Dec 15 08:23:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d627179f6cd18168976ce9bcc52c700c9f2fe40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ba:da:66:76:db:bc:27:1f:a1:e1:f7:18:92:
12:b4:44:de:19:6f:15:d5:3f:69:ad:05:ca:72:26:
7e:a3:6e:94:73:aa:c5:59:91:97:4b:33:f4:4e:c5:
77:7b:3c:bf:43:88:f9:aa:6e:95:92:3c:22:35:b8:
cc:8c:57:b1:cb:b2:74:1f:1f:c5:19:a0:1f:59:4f:
c4:00:de:2a:91:d3:a4:2e:1a:23:5e:aa:06:9e:1b:
ea:9c:d7:39:db:79:05:24:55:bd:63:dd:1b:d8:1b:
af:14:26:de:05:9b:8b:b3:99:2e:0b:ca:2a:7e:34:
07:7f:b7:88:b0:57:08:b6:93:4c:10:d6:c2:2f:cf:
11:92:a3:3a:2c:e2:59:10:28:88:7f:52:5f:43:f8:
14:35:09:20:9d:71:bb:f3:19:f3:8a:05:f8:6d:2d:
c4:34:38:f0:b3:ad:6e:1a:80:03:fd:6c:e6:a2:94:
90:b0:c9:62:07:74:6a:f9:09:9e:02:b1:da:cc:df:
08:fd:d2:eb:04:ba:0a:25:21:24:da:70:18:21:68:
c2:69:68:cc:05:d3:ef:ce:5f:4f:ed:ab:28:80:ea:
cc:0d:27:3a:38:35:7a:62:75:79:a9:ab:29:dd:70:
fb:a7:f2:4a:e3:26:2d:5f:ab:14:b9:64:18:69:24:
a1:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:62:71:79:F6:CD:18:16:89:76:CE:9B:CC:52:C7:00:C9:F2:FE:40
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/TWJxefbNGBaJds6bzFLHAMny_kA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.84.157.0-90.84.158.255
Signature Algorithm: sha256WithRSAEncryption
01:68:e0:98:49:3a:b1:ba:c2:16:b8:b2:db:6a:1c:2a:61:83:
cf:56:d1:5f:95:91:d7:91:96:0b:d7:f0:24:83:c5:e5:33:b6:
92:24:7b:14:06:db:c1:49:c7:b2:c4:19:27:83:bc:6c:08:a3:
c3:96:8c:3b:7b:be:2b:fd:d4:f4:bc:92:bd:6f:92:bb:f6:01:
26:9b:8f:0e:f8:a7:b7:65:2c:68:05:51:79:65:d2:ce:24:bc:
74:03:6a:d5:ed:61:e0:d3:9b:0d:28:a0:03:20:36:9e:38:52:
09:a4:97:19:84:9a:9a:36:a3:6e:a5:96:d0:2e:8f:e2:61:9a:
78:36:06:e5:e4:02:7d:68:88:cc:1d:be:1b:95:96:4b:ce:9a:
46:8d:ed:90:b9:47:f0:45:1d:a4:54:bb:1d:2c:99:19:0b:64:
eb:94:1f:32:fc:e4:69:33:0e:4a:b7:a5:ce:c3:a9:98:c6:81:
1e:c2:42:12:d4:ec:38:78:58:2c:5e:52:4f:dc:67:50:62:05:
4a:2f:35:02:a1:d4:f1:b5:eb:19:d9:a0:40:f3:54:f3:c1:44:
68:a4:f0:7b:58:42:57:de:93:4d:26:c4:4a:ce:89:19:02:66:
18:3c:5c:00:1c:08:02:59:c1:ce:e5:9a:bb:11:5d:28:2d:ca:
9f:24:bc:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:19 2024 by rpki-client on console-ams.rpki-client.org