Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/7b6677-d2c4-4191-9fee-bd19b0836151/1/TiS_slPquAOcA5BRCxECRNzJrUI.roa
File: TiS_slPquAOcA5BRCxECRNzJrUI.roa (raw, json)
Hash identifier: U9TKtGc7FKMfUkTpJYIliNMgjHslcBwCY3DY6giU91o=
Subject key identifier: 4E:24:BF:B2:53:EA:B8:03:9C:03:90:51:0B:11:02:44:DC:C9:AD:42
Certificate issuer: /CN=9258825767fbc083732a96e1812ccc5bfe150185
Certificate serial: 082B8EFE
Authority key identifier: 92:58:82:57:67:FB:C0:83:73:2A:96:E1:81:2C:CC:5B:FE:15:01:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kliCV2f7wINzKpbhgSzMW_4VAYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/7b6677-d2c4-4191-9fee-bd19b0836151/1/TiS_slPquAOcA5BRCxECRNzJrUI.roa
Signing time: Sat 01 Jan 2022 05:03:19 +0000
ROA not before: Sat 01 Jan 2022 05:03:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48803
IP address blocks: 185.67.56.0/22 maxlen: 22
217.73.96.0/20 maxlen: 20
2a00:c740::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137072382 (0x82b8efe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9258825767fbc083732a96e1812ccc5bfe150185
Validity
Not Before: Jan 1 05:03:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e24bfb253eab8039c0390510b110244dcc9ad42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c8:01:54:10:61:a6:66:09:91:33:12:2d:e5:
ad:b5:e0:8a:85:9b:de:7d:73:22:bf:3f:37:2c:90:
2d:cd:ce:27:2d:21:8a:c1:30:f4:44:a6:01:dc:3b:
2e:78:4b:21:49:ae:12:c5:55:e7:4c:73:08:9c:66:
ad:95:f8:a6:11:97:d3:34:c8:95:59:62:d8:19:e3:
fe:24:de:25:3d:c4:ed:aa:5c:39:06:8c:82:4a:47:
b4:58:10:45:1a:34:47:fe:cb:cf:96:92:f2:e8:54:
06:db:fe:56:3f:25:95:98:3f:9f:e4:3c:fe:08:7a:
5e:89:2f:8c:37:c5:d6:7b:54:e1:d9:5b:48:47:c8:
1d:c5:87:7b:4b:81:cb:f0:31:20:b3:af:d0:35:23:
11:b9:25:6e:c2:26:fb:04:17:79:79:e8:14:62:77:
61:cb:34:f6:89:67:8a:1d:1e:65:c8:8d:6c:27:40:
e4:7d:a6:19:25:79:7d:d9:bb:e7:b2:bc:12:d5:43:
08:b1:29:c0:48:b3:e5:1d:5a:d9:28:ab:56:18:a5:
b5:33:c2:d2:f9:1c:89:7e:e6:be:2c:57:cc:cf:db:
ab:ae:c8:86:35:e0:a5:82:9a:25:59:2b:84:49:88:
39:58:e0:6d:b0:2f:cf:bf:02:22:a8:1c:bc:14:8e:
b0:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:24:BF:B2:53:EA:B8:03:9C:03:90:51:0B:11:02:44:DC:C9:AD:42
X509v3 Authority Key Identifier:
keyid:92:58:82:57:67:FB:C0:83:73:2A:96:E1:81:2C:CC:5B:FE:15:01:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kliCV2f7wINzKpbhgSzMW_4VAYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/7b6677-d2c4-4191-9fee-bd19b0836151/1/TiS_slPquAOcA5BRCxECRNzJrUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/7b6677-d2c4-4191-9fee-bd19b0836151/1/kliCV2f7wINzKpbhgSzMW_4VAYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.56.0/22
217.73.96.0/20
IPv6:
2a00:c740::/32
Signature Algorithm: sha256WithRSAEncryption
94:5d:7a:31:06:38:bc:df:61:7b:87:9b:91:b1:47:40:95:8d:
5f:c8:90:af:cd:23:e9:52:a2:23:39:63:c7:e7:ca:db:39:62:
0d:0e:b2:50:a3:9b:0b:44:37:14:da:f1:62:80:1e:91:b5:2a:
14:4d:33:89:ed:ec:47:4e:bc:d0:43:00:76:d2:59:91:43:fb:
68:b0:a9:e9:69:f3:88:9a:64:e9:b3:85:aa:a3:a3:3d:cb:cb:
8f:0b:4a:92:02:3b:80:ff:ac:dd:92:41:dd:48:37:85:12:ae:
09:1d:d3:d0:c5:16:43:2b:f0:0a:c5:d5:39:23:b7:3a:ab:20:
f8:2e:d5:df:99:48:b0:dc:fe:03:7d:bc:2e:e1:e6:92:2d:14:
5d:53:0a:a3:17:ac:9d:b2:04:12:a5:ee:d9:fe:43:7a:a6:5e:
af:46:3b:ca:d9:d7:7a:d1:80:09:0f:18:85:c1:b1:2a:e2:a3:
8a:13:21:b5:ab:07:b1:40:fe:c2:55:42:3b:79:d8:e4:c6:0e:
6b:12:c7:5d:66:5c:54:8d:21:2e:c0:a0:25:42:ac:b6:a8:b9:
68:25:e4:8a:65:8f:be:f5:8d:29:83:13:62:a2:89:db:68:59:
8a:0e:30:25:38:d2:95:f5:47:1d:83:a9:4c:f3:0a:fc:81:7a:
22:af:ff:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-ams.rpki-client.org