Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/TZsdQPb0tE8TauT5OHY6tlFwJes.roa
File: TZsdQPb0tE8TauT5OHY6tlFwJes.roa (raw, json)
Hash identifier: IVWz2Y8KeYns0pKTznxUm4HwMCak7e5x/1HFzjvnfsU=
Subject key identifier: 4D:9B:1D:40:F6:F4:B4:4F:13:6A:E4:F9:38:76:3A:B6:51:70:25:EB
Certificate issuer: /CN=15982be200f2ed9be40fc983d94d9c726350a9d9
Certificate serial: 014180
Authority key identifier: 15:98:2B:E2:00:F2:ED:9B:E4:0F:C9:83:D9:4D:9C:72:63:50:A9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/TZsdQPb0tE8TauT5OHY6tlFwJes.roa
Signing time: Wed 29 Jun 2022 08:25:02 +0000
ROA not before: Wed 29 Jun 2022 08:25:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.13.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82304 (0x14180)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15982be200f2ed9be40fc983d94d9c726350a9d9
Validity
Not Before: Jun 29 08:25:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d9b1d40f6f4b44f136ae4f938763ab6517025eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:58:94:b5:32:19:67:c2:92:ce:59:a4:d7:1d:
8f:22:d8:86:53:51:c3:e0:ac:cd:a2:54:4b:6f:b1:
89:36:a8:05:43:e9:df:db:d6:39:a2:52:4f:86:df:
5b:43:7f:54:b5:38:20:0b:08:b8:13:48:b7:c7:40:
1e:aa:e0:f0:ef:e1:aa:a7:b6:bb:d4:ff:19:b1:af:
4f:81:f0:59:2d:d9:ec:9d:48:85:ec:60:95:16:c7:
46:87:5b:0c:2b:18:cc:15:73:cd:a3:34:e0:f3:b1:
9f:3e:a2:7a:e7:ac:f0:06:df:fa:e6:55:ca:df:d0:
96:a6:4e:73:7f:c6:fc:cb:13:11:ec:17:11:0f:69:
c5:fd:15:a9:d2:2b:71:48:19:e2:05:fa:1f:b6:df:
e5:58:1f:74:fa:15:5e:82:6d:cb:2b:24:da:02:41:
69:b8:de:56:53:d8:c5:89:e6:ae:f0:f2:9c:3b:94:
85:48:0a:f7:94:68:21:07:ef:63:84:85:06:13:f2:
78:cc:c1:a4:5e:3e:68:20:a1:d9:2e:70:b4:61:03:
43:13:7c:b4:3f:91:91:24:3c:4b:d0:1e:00:40:09:
c8:58:3d:c0:05:92:b6:cb:f9:e1:e5:f5:2e:1c:c8:
3d:cf:95:f2:75:7a:19:ff:b0:c7:bd:57:1d:b0:ee:
2e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:9B:1D:40:F6:F4:B4:4F:13:6A:E4:F9:38:76:3A:B6:51:70:25:EB
X509v3 Authority Key Identifier:
keyid:15:98:2B:E2:00:F2:ED:9B:E4:0F:C9:83:D9:4D:9C:72:63:50:A9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/TZsdQPb0tE8TauT5OHY6tlFwJes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.224.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:21:54:7f:8b:1b:66:16:3c:4b:fb:80:93:cf:77:07:42:10:
d6:f0:7f:a1:ba:ad:de:92:be:c2:c3:b0:1e:99:9e:77:c7:4d:
a8:7d:b4:69:8a:05:2b:c4:94:51:4b:61:dc:23:e4:4e:28:14:
be:7b:bc:52:f5:c7:19:91:7a:64:47:19:1d:bf:6d:31:fa:27:
a8:d4:4c:52:ad:86:98:5f:2c:d7:6b:f2:fb:f2:c0:c4:1d:aa:
ab:2f:73:cc:e5:ed:f1:6a:95:5f:7c:cd:f7:69:6a:85:4b:9c:
dc:97:da:27:45:e2:cf:1e:bf:94:5c:ec:fb:41:88:6d:cf:56:
1f:59:0a:de:db:cf:05:2d:73:e1:32:c1:7b:50:b7:aa:61:e7:
83:a1:cb:e1:75:4d:29:52:c8:56:e9:33:df:74:a6:f6:94:09:
fd:29:df:da:a5:38:81:a6:08:ed:5e:60:13:2f:f1:db:41:9b:
db:60:77:a5:f7:18:f6:22:16:de:c1:51:64:74:62:99:7a:d4:
04:81:35:1d:f6:93:f2:13:4c:af:02:8e:fe:ad:e5:e5:29:ef:
3a:71:0e:f1:dc:16:50:a5:3b:7e:2b:e7:e4:79:8a:bc:f3:54:
eb:cb:7a:c6:39:2b:6f:42:72:3c:b8:11:84:ec:4d:73:ba:04:
23:4c:92:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:06 2023 by rpki-client on console-fra.rpki-client.org