Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/ad0f1a-6b94-4e0d-8a4a-d2fd9ffc31bf/1/TUpGW8W9W5dbwS-4edeVD160HIA.roa
File: TUpGW8W9W5dbwS-4edeVD160HIA.roa (raw, json)
Hash identifier: L9pnb0lhkY+kb7kkiJAAx3yc3TU+GZxf4+oR741MmaY=
Subject key identifier: 4D:4A:46:5B:C5:BD:5B:97:5B:C1:2F:B8:79:D7:95:0F:5E:B4:1C:80
Certificate issuer: /CN=f2382375966948e21688e8ba1383a4a309e0562f
Certificate serial: 0BF06617
Authority key identifier: F2:38:23:75:96:69:48:E2:16:88:E8:BA:13:83:A4:A3:09:E0:56:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8jgjdZZpSOIWiOi6E4OkowngVi8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/ad0f1a-6b94-4e0d-8a4a-d2fd9ffc31bf/1/TUpGW8W9W5dbwS-4edeVD160HIA.roa
Signing time: Sat 01 Jan 2022 16:02:29 +0000
ROA not before: Sat 01 Jan 2022 16:02:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206261
IP address blocks: 185.190.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200304151 (0xbf06617)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2382375966948e21688e8ba1383a4a309e0562f
Validity
Not Before: Jan 1 16:02:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d4a465bc5bd5b975bc12fb879d7950f5eb41c80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f3:4a:19:fd:e9:ef:9b:4d:b4:8b:77:e4:3a:
be:ab:d4:ad:61:11:c3:00:0f:bc:cd:9d:14:30:51:
ac:99:f5:eb:99:11:d1:87:1d:02:87:b0:df:67:12:
3f:03:27:93:ab:b4:d1:55:2e:ba:32:0e:6f:eb:7f:
25:dd:30:8f:24:84:49:07:46:af:f2:cd:bd:d9:da:
60:13:f3:35:1e:a2:3b:15:e2:f2:f7:fa:97:6e:22:
8c:f3:cb:57:08:e8:70:95:12:87:c6:c0:86:bf:1a:
82:25:01:98:aa:d9:fa:75:1d:73:93:5c:be:0f:ba:
b0:e7:32:3d:ee:03:9d:68:ad:de:71:89:0f:9a:eb:
3b:64:0b:22:0f:81:f4:0f:b5:d5:2e:37:7b:ee:60:
70:ca:81:4c:f9:9f:e3:36:84:2f:12:0e:b6:c5:df:
a9:49:66:42:0d:70:bd:74:a7:ab:e2:7f:28:01:57:
92:2f:0b:32:cd:f0:07:8d:22:de:cb:d4:90:51:bf:
a6:b4:70:40:b2:bc:0e:60:e8:8d:e8:17:18:5a:37:
dd:50:0c:99:93:30:fe:83:11:7d:92:bb:28:5f:17:
e5:b5:6c:0b:26:67:2d:9c:93:60:b5:17:6a:d6:a1:
51:b4:f6:44:a0:9a:29:ed:af:f6:86:7c:25:05:b6:
f2:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:4A:46:5B:C5:BD:5B:97:5B:C1:2F:B8:79:D7:95:0F:5E:B4:1C:80
X509v3 Authority Key Identifier:
keyid:F2:38:23:75:96:69:48:E2:16:88:E8:BA:13:83:A4:A3:09:E0:56:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8jgjdZZpSOIWiOi6E4OkowngVi8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ad0f1a-6b94-4e0d-8a4a-d2fd9ffc31bf/1/TUpGW8W9W5dbwS-4edeVD160HIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ad0f1a-6b94-4e0d-8a4a-d2fd9ffc31bf/1/8jgjdZZpSOIWiOi6E4OkowngVi8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.244.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:f4:3d:ef:72:ec:f9:11:a0:16:33:bc:c0:c6:66:01:0e:0a:
28:1a:44:cd:47:ce:5e:9e:60:df:c1:45:85:94:e9:81:af:7e:
27:b3:db:ce:d1:5b:c0:68:ff:e3:e9:d8:00:14:4e:ca:f0:65:
d2:22:fe:67:47:20:d8:a4:dc:d1:5d:45:fa:c6:2d:9b:ab:38:
cc:15:64:d3:43:cc:40:76:0d:c0:26:cf:b5:c2:98:e3:bc:05:
fa:88:0c:94:a5:a5:06:8e:e2:30:53:46:cc:96:4c:55:c1:a7:
2f:29:92:0f:1d:fb:65:be:c8:ee:2c:dc:ef:aa:42:94:df:d7:
69:66:02:5c:64:0f:ec:bd:da:b3:f9:0b:d5:96:13:76:f4:72:
1b:99:34:46:4a:b8:c3:d5:b9:a2:c0:62:31:44:ef:25:0f:79:
a5:c0:f4:f7:d8:09:40:d0:90:91:b3:a3:2b:cc:de:71:fe:70:
f9:30:de:89:9a:25:3f:39:78:48:27:6a:bd:7d:e5:13:a0:cd:
d9:e8:eb:92:53:e6:95:03:7a:20:31:56:d0:d3:f6:97:75:2a:
94:53:36:c6:52:d5:ed:90:18:57:cf:72:a7:c9:5f:47:0e:d1:
cc:ca:89:80:18:9d:53:b8:06:6a:d0:b0:bc:d6:ba:26:87:77:
43:f7:bf:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:36 2024 by rpki-client on console-ams.rpki-client.org