Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/6a87f1-e197-4a23-953d-10fdfce94513/1/TF81vBGUnkB2qK06KOSYejVqCAI.roa
File: TF81vBGUnkB2qK06KOSYejVqCAI.roa (raw, json)
Hash identifier: CEQjV8OTg5G9/9SY3VDuB+KqW1acqnVh+eRGBgVR3Eo=
Subject key identifier: 4C:5F:35:BC:11:94:9E:40:76:A8:AD:3A:28:E4:98:7A:35:6A:08:02
Certificate issuer: /CN=cb6bf2b89584ec96080048dc3fdc2e3983c277f3
Certificate serial: 03CEC7F3
Authority key identifier: CB:6B:F2:B8:95:84:EC:96:08:00:48:DC:3F:DC:2E:39:83:C2:77:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2vyuJWE7JYIAEjcP9wuOYPCd_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/6a87f1-e197-4a23-953d-10fdfce94513/1/TF81vBGUnkB2qK06KOSYejVqCAI.roa
Signing time: Sat 01 Jan 2022 02:50:44 +0000
ROA not before: Sat 01 Jan 2022 02:50:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198012
IP address blocks: 178.255.24.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63883251 (0x3cec7f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb6bf2b89584ec96080048dc3fdc2e3983c277f3
Validity
Not Before: Jan 1 02:50:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c5f35bc11949e4076a8ad3a28e4987a356a0802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:52:8e:ca:1e:f4:f8:66:65:52:b6:59:eb:c6:
a7:86:0a:53:a5:a1:a4:2a:88:7a:38:e3:4c:b6:e2:
6d:a9:65:c8:8b:93:df:bb:91:6b:c6:88:e5:e2:91:
43:ed:5a:e6:fc:7e:c8:46:ec:b2:87:3b:da:a1:3d:
53:0e:52:9a:4a:79:3f:b4:88:ce:8a:54:f9:da:94:
02:a0:46:12:11:5d:5e:49:07:0d:21:91:2d:bf:1b:
e6:ed:46:54:96:db:0e:63:bd:5d:e3:2d:81:62:af:
03:91:93:cc:7a:29:d9:17:a3:f5:7f:e7:b3:83:fd:
c9:31:d0:db:1b:42:44:41:90:e0:d7:7f:05:7b:8c:
54:88:1c:91:44:d3:ed:3b:71:33:d7:13:fb:d2:dc:
08:20:63:40:9c:7a:01:49:66:d4:95:35:79:2f:bf:
97:63:b8:39:33:b6:34:e5:19:17:b4:96:c4:ba:27:
36:0e:3b:1e:5b:ad:88:23:d2:17:47:a3:4f:b5:b9:
73:96:3a:fb:83:28:87:9f:43:94:8f:4c:7b:27:7a:
65:bc:8d:b4:02:8a:df:61:51:56:cd:20:bd:a9:36:
61:22:e8:c7:98:45:25:d7:8f:0d:ea:bc:59:8f:0a:
5a:17:43:b4:7d:06:bc:b4:77:e1:eb:e9:ee:e8:ff:
be:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:5F:35:BC:11:94:9E:40:76:A8:AD:3A:28:E4:98:7A:35:6A:08:02
X509v3 Authority Key Identifier:
keyid:CB:6B:F2:B8:95:84:EC:96:08:00:48:DC:3F:DC:2E:39:83:C2:77:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2vyuJWE7JYIAEjcP9wuOYPCd_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/6a87f1-e197-4a23-953d-10fdfce94513/1/TF81vBGUnkB2qK06KOSYejVqCAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/6a87f1-e197-4a23-953d-10fdfce94513/1/y2vyuJWE7JYIAEjcP9wuOYPCd_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.24.0/21
Signature Algorithm: sha256WithRSAEncryption
93:f6:92:94:1e:7e:31:f8:65:41:89:6a:0b:14:10:c8:87:05:
92:66:14:5b:d2:1f:56:3c:9d:e1:54:cb:e9:09:c1:de:ae:b6:
25:d4:03:94:7b:08:30:3c:f0:d1:32:f5:db:47:ea:5f:bd:ed:
04:74:37:b0:ea:86:41:b3:ee:5e:2f:a1:b6:68:28:e3:b5:da:
4e:8a:d7:3d:1e:53:ac:81:99:92:76:f4:84:87:9a:b7:00:72:
7a:59:b5:2d:54:56:67:f7:ca:dd:0f:24:ab:14:1b:5c:ae:ee:
87:66:f3:a0:44:00:38:99:09:2f:18:59:eb:2d:40:3c:63:0d:
e3:f1:dd:9f:fe:8e:a4:90:17:c8:39:cd:8d:a6:3f:9e:36:b2:
7a:52:08:0d:ce:db:3f:ef:eb:5f:4b:2e:48:ab:af:b6:e7:60:
5d:71:12:32:23:00:6b:45:a3:e1:2e:18:b3:a3:f0:f0:f3:42:
44:01:0f:1b:18:65:18:82:3f:00:31:12:d1:0c:8c:a8:3d:01:
a5:27:cc:ae:23:3f:68:04:89:3e:ad:a1:c1:47:f6:93:37:98:
b9:fb:b9:a5:ce:7b:a4:96:8d:8b:a9:c1:12:09:d8:90:5e:41:
33:9a:83:49:a0:45:38:58:72:bd:bb:48:ba:ea:ac:24:47:38:
30:8f:2a:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:06 2024 by rpki-client on console-fra.rpki-client.org