Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/67e36c-cd55-4b59-aa12-7442f0e2bd17/1/TIMzgcVNByaHwX72L6Yro3o-CFU.roa
File: TIMzgcVNByaHwX72L6Yro3o-CFU.roa (raw, json)
Hash identifier: NidR/vAWz+cCLuooBuczrJrJoGsbS6t8euTe2lk0W3w=
Subject key identifier: 4C:83:33:81:C5:4D:07:26:87:C1:7E:F6:2F:A6:2B:A3:7A:3E:08:55
Certificate issuer: /CN=faf64476ef3945b344ffee38da56caccc5d039b0
Certificate serial: 37EE7B85
Authority key identifier: FA:F6:44:76:EF:39:45:B3:44:FF:EE:38:DA:56:CA:CC:C5:D0:39:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-vZEdu85RbNE_-442lbKzMXQObA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/67e36c-cd55-4b59-aa12-7442f0e2bd17/1/TIMzgcVNByaHwX72L6Yro3o-CFU.roa
Signing time: Tue 04 Jan 2022 13:19:42 +0000
ROA not before: Tue 04 Jan 2022 13:19:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49103
IP address blocks: 185.57.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938376069 (0x37ee7b85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faf64476ef3945b344ffee38da56caccc5d039b0
Validity
Not Before: Jan 4 13:19:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c833381c54d072687c17ef62fa62ba37a3e0855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8e:76:20:4a:d3:3e:e8:b8:bd:03:58:5b:09:
ef:b4:fb:02:2e:c6:26:ea:81:0f:78:7b:d8:35:26:
ba:26:9b:51:59:23:09:73:a3:34:a3:61:ee:01:d6:
df:90:7e:87:a0:2c:47:f0:06:a9:ae:84:00:77:22:
43:e3:34:26:9d:c0:0c:96:e5:84:86:61:5f:b6:06:
b6:07:b2:96:13:14:a5:91:47:35:cd:dd:85:55:4b:
54:c7:06:3b:84:21:02:85:a9:6a:1b:a8:5e:56:42:
ae:50:02:a3:8d:9c:a6:b0:d7:f7:d5:6a:ab:38:ee:
f7:b2:c4:24:ca:ec:b7:c0:a0:8c:28:8b:e2:6d:01:
7c:cb:39:84:1e:41:af:7b:f0:b8:55:f6:9f:fb:e3:
72:6b:ad:76:01:a9:19:c8:ff:a4:ea:8a:56:19:f8:
09:e1:40:20:e6:0f:96:d6:9c:e1:1c:cd:d1:bf:6e:
fe:0f:9c:60:cf:a6:6b:e9:28:dd:8b:9b:2a:d2:bf:
4f:95:b4:d8:2a:9e:cd:76:85:02:9a:c0:bf:e1:ef:
12:71:b9:a8:3e:45:c1:2f:be:8e:cd:23:52:47:60:
9b:73:d2:b0:10:f6:57:a2:42:3d:5d:06:f8:fa:59:
e8:e8:6a:e1:71:e6:a6:e7:0d:ce:d5:17:83:a5:69:
f9:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:83:33:81:C5:4D:07:26:87:C1:7E:F6:2F:A6:2B:A3:7A:3E:08:55
X509v3 Authority Key Identifier:
keyid:FA:F6:44:76:EF:39:45:B3:44:FF:EE:38:DA:56:CA:CC:C5:D0:39:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-vZEdu85RbNE_-442lbKzMXQObA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/67e36c-cd55-4b59-aa12-7442f0e2bd17/1/TIMzgcVNByaHwX72L6Yro3o-CFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/67e36c-cd55-4b59-aa12-7442f0e2bd17/1/1-vZEdu85RbNE_-442lbKzMXQObA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.164.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:ce:43:dd:09:8b:2a:ea:cb:95:9f:6c:c4:3f:e5:14:cd:b1:
aa:e7:24:66:92:62:fc:ad:c9:78:d4:c5:f9:b7:8a:4d:91:d1:
3a:c0:fd:85:ec:f1:af:e6:18:64:ef:4b:b9:a5:c0:3a:33:e8:
af:b7:ff:54:83:89:ff:f4:a2:75:07:3c:a5:87:9d:3e:d0:42:
89:1c:f7:1d:5e:9f:02:b1:ae:f3:63:24:19:f8:66:5a:0a:8c:
12:b7:77:a4:d9:3e:c6:d3:fb:f9:84:69:47:09:5f:89:b8:09:
ab:fb:06:8c:b4:27:e4:07:51:61:ae:d6:5d:f7:6f:85:47:3e:
8c:65:bd:79:94:65:1e:70:0a:08:33:2f:ef:b7:37:d4:4e:97:
e6:9d:75:73:44:b3:02:a0:49:0d:ba:8a:4e:87:07:20:c4:e5:
94:1a:88:73:eb:6c:38:46:2f:a5:e3:33:6a:74:de:f1:87:7e:
a3:9b:4c:92:20:1c:0c:64:81:0e:68:2f:70:3c:f4:e5:0a:5d:
75:40:93:b9:bc:1d:f1:c3:43:fe:47:2b:f5:a2:f2:0c:75:48:
ec:b7:4f:cb:88:c7:de:9d:21:a1:3f:6c:a8:7e:b0:f3:a8:5c:
02:8d:69:37:f1:1f:ce:12:a9:e3:22:1e:53:83:67:7a:07:5e:
aa:d8:40:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:47 2023 by rpki-client on console-fra.rpki-client.org