Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/400686-8c75-42d0-8bd1-00044757fe8a/1/TkYrbU8tDi2det2XpciF-FfRaXk.roa
File: TkYrbU8tDi2det2XpciF-FfRaXk.roa (raw, json)
Hash identifier: RV1x4NsbVYDBr6sYIh02gzCzVJhoi2FAgDhSSvIJiaE=
Subject key identifier: 4E:46:2B:6D:4F:2D:0E:2D:9D:7A:DD:97:A5:C8:85:F8:57:D1:69:79
Certificate issuer: /CN=bf73a3f21a1944421b4ddba7ecbc8360cca5e6fc
Certificate serial: 11E79479
Authority key identifier: BF:73:A3:F2:1A:19:44:42:1B:4D:DB:A7:EC:BC:83:60:CC:A5:E6:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v3Oj8hoZREIbTdun7LyDYMyl5vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/400686-8c75-42d0-8bd1-00044757fe8a/1/TkYrbU8tDi2det2XpciF-FfRaXk.roa
Signing time: Sat 01 Jan 2022 05:01:37 +0000
ROA not before: Sat 01 Jan 2022 05:01:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8757
IP address blocks: 185.146.124.0/22 maxlen: 24
212.58.128.0/19 maxlen: 24
2a07:7b80::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 300389497 (0x11e79479)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf73a3f21a1944421b4ddba7ecbc8360cca5e6fc
Validity
Not Before: Jan 1 05:01:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e462b6d4f2d0e2d9d7add97a5c885f857d16979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:74:e2:30:94:b3:73:e0:49:59:44:54:6c:ab:
f4:4c:49:ab:9b:5a:81:fd:23:9a:f8:fd:78:71:b5:
91:e6:91:93:32:db:31:cd:1d:9c:3e:f0:94:c2:74:
e5:18:85:cc:4d:e9:b8:ad:f0:14:26:49:0a:84:cd:
8d:b6:69:40:78:a2:26:f6:fc:f1:98:75:16:e0:fa:
07:85:e4:d6:87:09:ac:3f:cb:e6:38:ae:eb:52:28:
33:17:31:de:ec:a0:fc:85:46:91:2f:6b:df:5f:4d:
64:e2:fb:6a:34:7c:42:79:31:ce:1d:21:ce:ca:43:
ed:9d:12:1f:d2:35:eb:40:1a:6e:d0:8c:88:c2:9b:
40:e8:eb:65:29:5c:f7:59:13:98:f6:45:03:f5:f4:
50:0e:b9:51:06:ca:e9:b3:31:c7:87:9b:fe:9c:80:
60:8b:c9:1b:32:eb:13:a0:21:1d:7f:bc:64:cd:0c:
0e:fa:4d:31:ca:a2:87:92:18:0d:cf:1d:33:7b:36:
dc:9b:e9:7e:4c:f6:d0:03:52:d6:66:be:d5:8a:43:
f3:26:cc:5c:e2:93:e5:e1:04:39:c8:94:19:82:75:
fb:93:20:3e:96:e3:01:89:11:2f:5e:f8:7b:c2:f7:
de:84:33:6c:03:04:86:30:9e:71:13:a8:d5:e0:23:
d7:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:46:2B:6D:4F:2D:0E:2D:9D:7A:DD:97:A5:C8:85:F8:57:D1:69:79
X509v3 Authority Key Identifier:
keyid:BF:73:A3:F2:1A:19:44:42:1B:4D:DB:A7:EC:BC:83:60:CC:A5:E6:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v3Oj8hoZREIbTdun7LyDYMyl5vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/400686-8c75-42d0-8bd1-00044757fe8a/1/TkYrbU8tDi2det2XpciF-FfRaXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/400686-8c75-42d0-8bd1-00044757fe8a/1/v3Oj8hoZREIbTdun7LyDYMyl5vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.124.0/22
212.58.128.0/19
IPv6:
2a07:7b80::/29
Signature Algorithm: sha256WithRSAEncryption
b0:c9:9c:4d:93:a1:77:23:c3:44:44:de:ad:c0:80:f0:b9:f8:
5e:36:a3:f0:1c:56:e5:8f:f7:d8:fb:1e:0c:43:18:d2:f1:9d:
72:b8:0a:bd:8d:94:9f:92:a8:8e:cc:70:cb:10:06:a0:53:83:
79:4b:b4:90:bf:be:60:d4:b6:3f:f4:17:fe:8f:be:10:25:72:
41:f2:a5:b8:74:f1:bd:5c:59:52:d3:8f:96:38:3a:69:26:cb:
50:97:24:e4:53:c1:c5:89:91:53:08:81:f1:b7:d5:30:17:13:
d8:76:bc:8e:d9:b8:2a:9d:31:2c:05:c8:6c:5d:5c:ad:d7:ca:
6b:2f:56:8f:32:09:76:34:fa:2c:90:81:99:b8:2f:7c:6a:d0:
46:35:f0:1b:c8:78:d1:27:dc:bb:84:0e:4d:43:cd:06:b8:ac:
27:e8:8e:5b:39:02:32:ae:8a:d1:f6:36:6d:25:47:26:f9:10:
bd:d0:b4:f9:0c:39:6f:16:21:8b:54:8e:42:f6:48:37:fa:c3:
52:04:38:b1:29:0c:ed:0e:09:00:f2:ad:7d:af:4c:de:eb:00:
9c:8f:36:95:b6:a1:9b:83:43:0e:6c:20:76:aa:1f:3e:2c:bd:
e9:1f:3b:53:b3:28:46:f0:bd:ca:82:7e:31:c6:fc:68:b2:d7:
d6:dc:b7:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:27 2024 by rpki-client on console-ams.rpki-client.org