Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/TJuaQo_ETu7etrdYkxLJUtNJAz8.roa
File: TJuaQo_ETu7etrdYkxLJUtNJAz8.roa (raw, json)
Hash identifier: EXoOSL3/mmTiLpzoWvhinWXEil2DrOYFCBo0Gkc04ws=
Subject key identifier: 4C:9B:9A:42:8F:C4:4E:EE:DE:B6:B7:58:93:12:C9:52:D3:49:03:3F
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 04E9C23C
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/TJuaQo_ETu7etrdYkxLJUtNJAz8.roa
Signing time: Sat 01 Jan 2022 07:56:32 +0000
ROA not before: Sat 01 Jan 2022 07:56:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 185.112.58.0/23 maxlen: 24
185.177.238.0/23 maxlen: 24
185.177.236.0/23 maxlen: 24
185.79.138.0/24 maxlen: 24
185.100.159.0/24 maxlen: 24
185.168.208.0/23 maxlen: 24
185.24.108.0/23 maxlen: 24
185.77.138.0/23 maxlen: 24
89.19.56.0/22 maxlen: 24
185.113.138.0/23 maxlen: 24
185.175.224.0/23 maxlen: 24
185.95.230.0/23 maxlen: 24
185.68.244.0/23 maxlen: 24
185.105.46.0/23 maxlen: 24
213.170.223.0/24 maxlen: 24
185.102.114.0/23 maxlen: 24
185.182.130.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82428476 (0x4e9c23c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jan 1 07:56:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c9b9a428fc44eeedeb6b7589312c952d349033f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:97:68:a6:90:54:31:b8:61:be:6c:7e:ea:ce:
01:25:5d:9c:82:ec:a1:ee:7b:80:09:93:20:9f:38:
81:17:96:10:f0:af:16:84:63:0a:e7:99:bb:d2:cc:
00:a4:4b:cc:32:52:99:60:47:e9:03:46:09:c3:ee:
e3:b2:73:6a:33:aa:d1:69:a7:46:d0:01:be:2c:c0:
c3:7d:7c:76:1c:cd:f4:05:b3:70:2d:32:66:8e:95:
42:28:4d:68:8d:2a:9e:18:fb:99:0d:9a:3e:49:e9:
8d:bc:f1:74:a4:f4:80:2c:6d:b0:d8:d7:4b:a2:6d:
b6:90:71:3d:a7:fb:50:87:9f:15:82:42:e0:9b:42:
f0:8a:c9:fb:9a:2e:9e:e4:bc:ac:03:a3:1f:d3:ef:
cb:86:a7:6d:64:30:e9:f8:b0:68:4a:75:0c:22:d5:
5b:76:aa:63:96:1e:92:41:b3:ae:84:ce:37:58:cf:
e7:e7:74:12:1d:4f:ac:6f:34:d9:2e:a2:d3:3d:76:
ae:e8:8c:7b:f5:92:d9:74:76:0f:94:4f:58:f3:f0:
67:ca:10:a1:a8:c6:f7:f3:f5:54:62:0e:04:06:26:
08:dd:bf:27:93:16:62:35:2e:75:26:44:d2:1c:8d:
a3:96:63:8a:5e:10:92:96:4b:34:89:00:ac:f9:69:
59:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:9B:9A:42:8F:C4:4E:EE:DE:B6:B7:58:93:12:C9:52:D3:49:03:3F
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/TJuaQo_ETu7etrdYkxLJUtNJAz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.19.56.0/22
185.24.108.0/23
185.68.244.0/23
185.77.138.0/23
185.79.138.0/24
185.95.230.0/23
185.100.159.0/24
185.102.114.0/23
185.105.46.0/23
185.112.58.0/23
185.113.138.0/23
185.168.208.0/23
185.175.224.0/23
185.177.236.0/22
185.182.130.0/23
213.170.223.0/24
Signature Algorithm: sha256WithRSAEncryption
65:05:19:67:5d:ec:c1:b5:19:e5:38:ca:43:18:50:d1:ab:52:
84:7f:05:dd:98:15:ec:91:65:ef:94:2c:3e:26:36:de:24:c4:
64:cd:b3:da:25:03:d0:42:9a:0c:1e:66:8a:3f:b2:3c:2c:a5:
e2:32:02:3a:b6:3c:53:6c:da:49:e4:c2:d7:e1:f7:39:5a:e5:
2c:83:aa:37:47:ac:32:df:68:03:ef:7f:74:90:81:7e:87:6a:
5e:c0:b4:e0:49:a9:0f:ab:bb:ab:42:cf:99:2a:73:3b:61:ad:
69:4d:b5:c1:fc:f8:bf:aa:56:31:7a:9d:b8:90:a4:8d:5b:32:
ec:47:cd:dc:0d:9d:95:c7:74:68:75:fe:8d:c9:b7:02:e6:30:
e6:12:15:b4:4b:14:89:dd:b4:64:59:1a:70:19:19:5b:86:b1:
1d:9e:04:ff:1e:42:ac:06:95:f1:14:a6:79:1d:94:ba:3c:2d:
ac:38:ff:df:ae:53:24:d8:26:ea:f7:c1:aa:41:47:9c:9e:f4:
e6:36:90:7c:30:ce:32:bb:f2:3e:ef:1a:23:76:19:af:a2:2e:
43:a8:c7:b8:13:ee:a9:60:0a:2e:cd:7a:77:f3:a4:e2:ad:6b:
e6:72:b7:84:c7:09:42:86:44:e2:65:fa:c9:60:98:22:0f:c8:
ad:6a:0d:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org