Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/d70262-f87c-4126-af85-a31853e6997a/1/TA1yy4d_F9GJ4HvF9KI76VtZMC4.roa
File: TA1yy4d_F9GJ4HvF9KI76VtZMC4.roa (raw, json)
Hash identifier: csbaNnYSKCV+Xk2VThEn1DU2qmBNi1I/8GfK2JjQOjc=
Subject key identifier: 4C:0D:72:CB:87:7F:17:D1:89:E0:7B:C5:F4:A2:3B:E9:5B:59:30:2E
Certificate issuer: /CN=23aee94d0fff6c6c752a6942ffa962ae37c7e6b6
Certificate serial: 090A7AE1
Authority key identifier: 23:AE:E9:4D:0F:FF:6C:6C:75:2A:69:42:FF:A9:62:AE:37:C7:E6:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I67pTQ__bGx1KmlC_6lirjfH5rY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/d70262-f87c-4126-af85-a31853e6997a/1/TA1yy4d_F9GJ4HvF9KI76VtZMC4.roa
Signing time: Sat 01 Jan 2022 15:02:47 +0000
ROA not before: Sat 01 Jan 2022 15:02:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56337
IP address blocks: 185.101.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151681761 (0x90a7ae1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23aee94d0fff6c6c752a6942ffa962ae37c7e6b6
Validity
Not Before: Jan 1 15:02:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c0d72cb877f17d189e07bc5f4a23be95b59302e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3a:94:f1:52:0e:d0:29:5d:20:3f:3b:0d:5e:
7f:0b:de:bf:dd:f3:f8:ce:9a:ae:b7:ce:ea:e9:f8:
ab:29:23:57:b5:e0:8e:0a:7b:6b:b5:09:5f:11:5b:
b0:cf:80:2a:e1:bc:92:96:45:6c:7d:41:c2:d0:16:
6a:2f:4f:9a:8d:f2:97:0f:07:bc:1b:25:b4:90:7e:
33:1b:42:07:1d:61:1b:e3:25:69:36:5b:d9:33:ca:
65:4e:43:ee:3b:e6:29:c8:19:5b:fc:ba:05:a9:2c:
5f:cf:a3:8f:0b:b9:ba:a2:52:d7:ae:04:8a:b3:2f:
52:bc:f8:16:25:b4:9d:57:3d:2f:57:ff:d7:b1:39:
93:15:13:a3:a8:54:8a:16:b3:0b:f2:2c:57:cf:46:
e0:76:73:e5:17:fa:7c:f2:e9:db:59:22:84:e2:69:
24:18:b8:4e:37:e3:7c:0b:c3:ab:6f:66:bd:de:d3:
77:f6:eb:34:14:f2:51:e4:52:c3:d6:7d:1e:71:00:
e5:ff:19:f6:8a:a2:fd:34:92:e0:66:47:d6:90:1d:
2c:d9:23:ae:6f:54:06:03:07:86:af:75:5e:ef:04:
24:e1:96:fe:56:f4:9e:e6:0f:98:bd:66:48:ff:24:
63:d9:aa:d8:6f:86:2e:da:97:ce:f9:38:30:97:c5:
88:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:0D:72:CB:87:7F:17:D1:89:E0:7B:C5:F4:A2:3B:E9:5B:59:30:2E
X509v3 Authority Key Identifier:
keyid:23:AE:E9:4D:0F:FF:6C:6C:75:2A:69:42:FF:A9:62:AE:37:C7:E6:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I67pTQ__bGx1KmlC_6lirjfH5rY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d70262-f87c-4126-af85-a31853e6997a/1/TA1yy4d_F9GJ4HvF9KI76VtZMC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d70262-f87c-4126-af85-a31853e6997a/1/I67pTQ__bGx1KmlC_6lirjfH5rY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.18.0/24
Signature Algorithm: sha256WithRSAEncryption
39:f7:44:6d:be:08:0a:87:da:13:e4:7c:fc:09:49:be:ec:0b:
a7:b1:28:22:8a:1f:f2:87:2d:be:ed:85:e6:fc:63:12:e4:f4:
be:07:f8:5a:86:00:55:66:5b:26:19:fb:09:66:84:54:3d:08:
e0:7f:76:9b:95:ec:7a:35:c5:b4:a2:ac:92:de:e8:55:0b:a4:
46:5a:5f:1b:d4:0a:39:de:93:33:7b:5c:40:a9:c0:4e:41:25:
8b:fb:b2:57:10:5a:0d:3a:d2:23:c9:5b:09:74:02:56:41:a0:
c4:51:4b:5a:d7:e2:eb:05:ec:12:90:74:ce:68:fb:05:cd:d9:
92:cb:3c:cc:b4:90:bf:6a:e4:d3:1c:58:95:f0:10:9b:f2:83:
9e:ee:4a:33:9d:ba:7c:e6:53:62:e9:06:ad:fc:92:44:f0:4f:
af:30:4f:c3:0a:8b:4b:83:7f:dc:45:11:4d:fd:18:fd:a0:f2:
a6:33:ae:d3:1c:d5:59:e2:3d:63:da:91:c6:e1:98:ed:05:13:
da:a0:de:0e:87:fb:14:a8:94:95:b1:83:c8:f0:56:bf:96:76:
7f:2a:08:e6:89:bb:37:50:e2:e2:93:1f:70:23:bc:62:c8:37:
69:7e:71:4d:75:07:30:fb:d5:47:11:85:9a:f8:9a:50:02:53:
01:df:f4:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:22 2023 by rpki-client on console-fra.rpki-client.org