Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/tcjiy8WPWdN5S9-3qp6mijegtLk.roa
File: tcjiy8WPWdN5S9-3qp6mijegtLk.roa (raw, json)
Hash identifier: +I+sfj6jECqg+qvYYf0xgC+ZYYRRtx+JiySVXaqueFM=
Subject key identifier: B5:C8:E2:CB:C5:8F:59:D3:79:4B:DF:B7:AA:9E:A6:8A:37:A0:B4:B9
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 38C9DB31
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/tcjiy8WPWdN5S9-3qp6mijegtLk.roa
Signing time: Sat 01 Jan 2022 07:55:09 +0000
ROA not before: Sat 01 Jan 2022 07:55:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1133
IP address blocks: 145.90.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 952752945 (0x38c9db31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 07:55:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5c8e2cbc58f59d3794bdfb7aa9ea68a37a0b4b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:c4:f5:11:e3:71:b2:18:49:b5:40:1d:02:e1:
13:f3:7a:e1:47:53:25:f0:8c:b0:2e:0e:06:cd:55:
8b:05:c2:44:3b:1b:fa:ec:be:10:cd:e3:0a:cd:7c:
39:48:ad:f3:80:fc:88:f3:a0:a8:7e:b5:d2:d9:2e:
05:5e:e6:12:43:51:16:30:12:5b:c3:53:05:1a:48:
33:ee:52:33:1e:48:ca:6a:22:98:e7:fc:3a:40:7b:
4b:23:50:d8:df:74:1c:0b:2f:54:9f:a8:d6:b7:1f:
79:38:b8:4e:99:0a:c6:4a:55:31:93:84:b3:f5:2b:
ad:cc:6d:ff:59:bc:aa:37:b0:01:a9:79:3e:2e:dc:
92:57:61:fa:40:4d:32:85:80:45:fd:b7:31:13:a1:
e3:c7:1d:e5:d2:52:22:bf:24:09:b5:9e:0b:f0:a2:
b5:a6:b9:00:ec:3d:20:73:28:95:f2:d1:dc:d6:85:
f7:e5:98:2f:31:38:a0:5c:82:84:93:fa:7e:96:af:
c2:7e:6a:d3:0d:b4:c1:1d:0b:ca:b9:7f:30:cd:87:
d8:d0:0d:6c:66:50:43:04:95:b4:5d:2d:4a:57:b1:
2d:e6:24:e9:29:36:07:08:43:08:cc:e0:54:e5:9f:
87:47:5a:a6:81:50:05:23:43:21:df:12:d9:f3:53:
5c:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:C8:E2:CB:C5:8F:59:D3:79:4B:DF:B7:AA:9E:A6:8A:37:A0:B4:B9
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/tcjiy8WPWdN5S9-3qp6mijegtLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.90.8.0/24
Signature Algorithm: sha256WithRSAEncryption
17:b6:c4:f1:3d:30:1f:b5:dd:f7:ad:d9:c0:d8:70:a3:63:b9:
11:58:d0:4f:7f:db:5c:cb:84:b8:90:7f:71:dc:61:e0:ee:ce:
40:66:66:53:72:8e:fe:ac:32:c7:fd:55:d9:4e:4a:18:1e:d5:
98:f3:42:fe:4c:95:2e:f3:f2:09:36:6e:1d:c4:53:5d:22:5e:
c9:07:6c:bb:c5:fe:71:9b:ca:bc:79:48:9e:00:23:ed:62:ea:
0c:b6:b4:22:68:34:55:c9:ae:32:35:68:df:c0:92:fd:f9:fa:
5d:39:07:6c:cc:5c:b6:47:65:bf:87:7d:84:07:ed:80:56:8b:
a4:69:49:dc:e0:cb:d3:16:9f:2c:ca:8c:2a:11:b1:a8:df:f6:
8e:70:b6:b7:81:2c:c4:a5:45:ac:9e:39:dc:ca:64:42:fd:7e:
81:b5:ce:aa:f4:0f:01:19:a7:a6:6b:f6:f7:a1:9a:8d:70:03:
08:3c:30:45:d0:8b:69:5b:cb:be:47:1a:ce:de:e0:8f:bc:c9:
70:88:19:34:57:e4:98:50:63:78:45:78:f4:17:7b:d7:3f:67:
d0:0b:53:11:0f:7d:4c:35:4d:16:d7:89:48:1b:2e:9e:35:39:
ae:ca:2c:30:93:f3:15:d5:c9:fb:45:5d:84:99:a2:14:65:b6:
73:c7:25:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:44 2024 by rpki-client on console-ams.rpki-client.org