Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/TutqESWwgTAvAv-IOoBAvEtugXk.roa
File: TutqESWwgTAvAv-IOoBAvEtugXk.roa (raw, json)
Hash identifier: 0lseHxJyovousHMha1C3ia1h8c54mAdJyZal0g7PXb8=
Subject key identifier: 4E:EB:6A:11:25:B0:81:30:2F:02:FF:88:3A:80:40:BC:4B:6E:81:79
Certificate issuer: /CN=7c772e1e26e6c23f40ad6668c85fe950da1063fc
Certificate serial: 01849B65E1A9A5F8AC09D01E61A57116BC95
Authority key identifier: 7C:77:2E:1E:26:E6:C2:3F:40:AD:66:68:C8:5F:E9:50:DA:10:63:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fHcuHibmwj9ArWZoyF_pUNoQY_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/TutqESWwgTAvAv-IOoBAvEtugXk.roa
Signing time: Mon 21 Nov 2022 18:14:16 +0000
ROA not before: Mon 21 Nov 2022 18:14:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16276
IP address blocks: 185.135.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9b:65:e1:a9:a5:f8:ac:09:d0:1e:61:a5:71:16:bc:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c772e1e26e6c23f40ad6668c85fe950da1063fc
Validity
Not Before: Nov 21 18:14:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4eeb6a1125b081302f02ff883a8040bc4b6e8179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a4:65:aa:f1:d9:96:6a:e3:68:92:ea:cd:40:
5d:ef:b0:9a:c4:42:d5:1e:be:8a:fa:95:ba:bf:20:
8a:c4:ba:cf:4e:95:61:61:eb:29:be:50:81:da:c4:
51:dd:0d:88:20:53:c0:7a:59:7f:a4:f7:d8:ca:5b:
fa:b2:f4:da:8f:83:11:84:3a:b4:51:b2:87:24:85:
c3:fb:e3:f8:5b:95:25:80:39:56:31:83:02:8e:a1:
67:c8:8d:f9:d7:ad:9c:be:ae:42:ab:22:ae:01:1b:
d3:a4:1e:df:54:10:c3:e6:2f:ee:76:bd:77:29:ca:
41:d6:1a:8c:29:c8:58:95:3e:3b:7a:7d:ba:66:57:
f7:ce:55:91:78:c8:ff:29:4b:08:b2:fd:dc:08:b1:
0d:c6:af:61:54:44:47:6b:b6:1c:53:02:57:ec:21:
5c:c7:52:06:06:fe:46:89:d5:35:57:b9:b8:40:a6:
42:70:18:4e:c4:1d:36:21:93:5d:b8:e2:52:8c:97:
3b:7c:8b:ee:d6:e7:8b:6c:f3:f2:10:be:23:3f:4f:
dc:29:bb:da:9f:75:05:18:5f:eb:99:41:03:fa:db:
9a:ac:a4:29:e1:5c:75:28:da:08:df:9d:32:0a:57:
df:ae:b9:22:de:ee:96:6e:26:5e:47:86:4f:df:81:
bf:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:EB:6A:11:25:B0:81:30:2F:02:FF:88:3A:80:40:BC:4B:6E:81:79
X509v3 Authority Key Identifier:
keyid:7C:77:2E:1E:26:E6:C2:3F:40:AD:66:68:C8:5F:E9:50:DA:10:63:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fHcuHibmwj9ArWZoyF_pUNoQY_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/TutqESWwgTAvAv-IOoBAvEtugXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/fHcuHibmwj9ArWZoyF_pUNoQY_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.188.0/24
Signature Algorithm: sha256WithRSAEncryption
35:bf:3f:1e:ef:4c:45:06:aa:8c:ea:3a:10:fe:d5:25:e2:6f:
2d:6c:03:ab:15:3e:64:8c:a4:78:1c:bf:6b:d6:cf:ad:76:10:
31:2f:30:3e:d1:8b:a5:6e:73:d2:93:a3:d6:a9:c8:4a:f6:04:
b6:76:28:2d:c3:07:24:ef:59:10:39:f3:84:e8:27:70:7b:2f:
3c:1b:53:ba:39:e7:85:2b:09:ff:4f:83:15:a5:08:7d:aa:24:
f7:ed:20:23:ec:3d:a3:bd:53:f8:7c:0d:dd:c1:48:64:2e:df:
9a:7f:16:65:e7:0c:44:40:c6:df:9b:3b:9d:e2:9a:47:68:e3:
83:32:c4:cf:33:e8:43:db:56:2b:fc:0c:3f:96:aa:70:60:c4:
88:73:1b:14:ef:67:51:0c:80:68:c7:4b:cb:fe:69:4f:ac:fc:
53:57:d9:f6:ea:b0:d1:77:37:52:e5:c1:5f:f6:6e:c8:0c:d1:
8f:23:92:47:5f:3e:59:0f:88:66:e6:82:84:69:d4:34:de:43:
85:22:11:e6:2e:24:6c:ab:6a:cd:01:e7:23:de:69:16:8e:80:
6b:61:d2:24:ed:83:98:02:c1:54:46:8e:ba:53:e6:a9:1b:4e:
71:22:f0:ba:ce:b2:2f:ea:7a:6f:2d:29:81:6b:9b:d4:16:3e:
06:62:1a:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:24 2024 by rpki-client on console-fra.rpki-client.org