Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/TVdf2ceoZ5G--QYZmvNfCAileb4.roa
File: TVdf2ceoZ5G--QYZmvNfCAileb4.roa (raw, json)
Hash identifier: vnHcBOKmpudvX+L0odJMKjOkLYnoAhPJeNIu0rPr8+w=
Subject key identifier: 4D:57:5F:D9:C7:A8:67:91:BE:F9:06:19:9A:F3:5F:08:08:A5:79:BE
Certificate issuer: /CN=6dbd51576b4a93460a465af35e6bf550f5548894
Certificate serial: 082EC8
Authority key identifier: 6D:BD:51:57:6B:4A:93:46:0A:46:5A:F3:5E:6B:F5:50:F5:54:88:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/TVdf2ceoZ5G--QYZmvNfCAileb4.roa
Signing time: Thu 28 Apr 2022 11:32:57 +0000
ROA not before: Thu 28 Apr 2022 11:32:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207103
IP address blocks: 79.172.16.0/21 maxlen: 24
185.5.140.0/24 maxlen: 24
185.5.141.0/24 maxlen: 24
188.68.88.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 536264 (0x82ec8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dbd51576b4a93460a465af35e6bf550f5548894
Validity
Not Before: Apr 28 11:32:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d575fd9c7a86791bef906199af35f0808a579be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e6:f3:eb:fc:2b:da:aa:16:3e:82:21:48:01:
2d:f7:00:31:ed:aa:2e:16:1d:5e:d1:74:7f:12:b2:
fc:36:58:11:d7:82:99:93:ef:4d:67:b8:48:5b:c1:
bf:cd:6c:fe:15:a1:b9:be:bf:5e:ea:65:48:04:64:
40:f8:b2:38:fa:e4:db:3a:b9:6f:65:a6:63:10:6d:
72:77:06:8f:13:70:d7:f7:97:3d:35:b0:fb:65:d1:
26:25:99:d6:7f:08:44:fc:bc:13:46:53:54:21:14:
13:cd:36:61:83:05:34:1d:48:1e:b4:ef:2e:fb:66:
7c:75:17:58:c1:c8:c6:76:28:ae:d5:9c:8e:0b:88:
8c:a9:53:30:ac:65:00:3a:7b:e8:6c:c6:b1:2a:be:
6a:8f:31:bf:1a:9c:cb:62:f4:88:1c:e0:44:55:ee:
6e:56:94:5b:9f:56:a1:88:f8:52:f3:5e:2d:32:6a:
5a:13:66:27:46:96:8f:d5:ec:8b:e1:d4:32:6b:09:
54:ee:3d:ed:cf:53:80:d4:44:7a:d9:f2:ee:73:df:
09:84:3d:5e:56:33:9e:d9:be:e0:ba:81:84:f3:fa:
b8:1d:d7:b1:1a:b7:95:16:7b:4f:aa:72:ab:5d:61:
16:94:23:88:04:58:8c:d6:9e:f2:f9:a1:ab:95:24:
96:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:57:5F:D9:C7:A8:67:91:BE:F9:06:19:9A:F3:5F:08:08:A5:79:BE
X509v3 Authority Key Identifier:
keyid:6D:BD:51:57:6B:4A:93:46:0A:46:5A:F3:5E:6B:F5:50:F5:54:88:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/TVdf2ceoZ5G--QYZmvNfCAileb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.16.0/21
185.5.140.0/23
188.68.88.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:51:4d:fd:e2:dd:16:65:67:ee:5e:0b:d1:82:c0:2a:97:12:
a4:71:c3:c3:04:73:94:86:e9:ad:15:d0:86:c3:ad:6e:74:9c:
70:00:31:cd:9d:88:38:f6:14:fc:81:10:f7:75:e2:65:5a:49:
f5:67:dc:d8:32:cd:1a:28:43:25:30:6f:d2:eb:d4:d0:f9:8d:
54:60:d3:85:7e:34:81:5e:1c:a4:61:25:13:54:84:4d:12:6d:
0b:73:17:11:c5:b2:47:a3:ba:ad:27:35:5b:63:2f:61:35:51:
59:b3:c1:5d:23:1d:a6:8c:46:6a:43:5e:34:bf:00:58:6e:e4:
25:2e:54:fd:60:79:a1:2b:6d:14:ed:b5:e6:f0:c2:2f:4d:ab:
43:6e:9d:8f:0a:96:d3:59:74:03:46:6a:90:f4:22:6e:1e:5d:
12:ee:28:e0:91:93:e6:05:7e:21:72:a9:ba:40:12:53:24:a5:
27:36:ba:79:5b:98:9e:77:a3:21:e3:0b:15:eb:61:bc:40:25:
3a:57:07:31:60:c3:36:a9:8d:e3:82:29:24:8f:9a:5d:a4:6e:
7f:12:a9:46:b2:6a:2c:6f:f6:9f:c9:e8:b2:2d:ad:b1:c5:19:
36:17:51:d2:4a:73:1a:6b:93:5b:9d:b4:97:19:0f:ac:2d:11:
90:02:d1:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:42 2024 by rpki-client on console-ams.rpki-client.org