Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/4f8e76-59e5-40d1-a13e-71f4c47f506e/1/TSyxhBeVynfBOgCk7DzQp_Np9OU.roa
File: TSyxhBeVynfBOgCk7DzQp_Np9OU.roa (raw, json)
Hash identifier: k2agNO5KiCKOMea2ezNInaAB8/ulLMISIxJRgFX9NOY=
Subject key identifier: 4D:2C:B1:84:17:95:CA:77:C1:3A:00:A4:EC:3C:D0:A7:F3:69:F4:E5
Certificate issuer: /CN=a8539f9355d3eb778b1bb8ee2723326011a1229b
Certificate serial: 069827A6
Authority key identifier: A8:53:9F:93:55:D3:EB:77:8B:1B:B8:EE:27:23:32:60:11:A1:22:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qFOfk1XT63eLG7juJyMyYBGhIps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/4f8e76-59e5-40d1-a13e-71f4c47f506e/1/TSyxhBeVynfBOgCk7DzQp_Np9OU.roa
Signing time: Sat 01 Jan 2022 10:57:51 +0000
ROA not before: Sat 01 Jan 2022 10:57:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 559
IP address blocks: 148.187.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110634918 (0x69827a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8539f9355d3eb778b1bb8ee2723326011a1229b
Validity
Not Before: Jan 1 10:57:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d2cb1841795ca77c13a00a4ec3cd0a7f369f4e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:8c:ed:a7:50:b4:bf:c3:1d:50:45:09:f1:47:
99:ce:95:c7:92:a1:b7:99:05:00:8d:a8:cd:3d:4c:
c9:80:0e:b7:74:a9:01:c9:5a:ad:87:c5:ca:65:26:
45:db:41:57:ce:52:1a:12:ae:dd:04:84:90:d0:4b:
41:d7:f4:78:7f:38:8d:4b:75:0f:bb:90:ed:2d:7f:
7f:07:af:b2:ca:a6:c5:cc:a6:1b:39:36:ca:1e:a6:
47:a7:59:c7:89:ec:24:e2:2b:66:be:10:c3:ea:7b:
77:c9:fa:24:88:24:56:32:be:6d:dd:3e:d4:d4:8a:
e7:56:80:96:0f:9b:79:3e:0f:90:8b:3c:2d:24:47:
18:86:9a:a1:4d:cd:b4:06:fc:41:42:00:ee:61:90:
84:ca:8f:7e:37:e2:fc:38:78:61:e5:3b:b4:1c:c2:
9f:01:29:f5:a6:62:da:d5:31:87:33:20:da:9f:f4:
41:19:ad:22:0a:94:81:4f:45:b3:ce:2c:5b:1c:33:
e2:1f:25:22:7c:2c:9d:b6:d5:1d:20:b4:60:39:a2:
37:fe:f6:6e:3b:32:5d:ab:10:d2:75:8d:a3:f6:90:
57:57:b0:10:25:fc:44:4d:ae:ab:d8:85:76:c6:b4:
f0:83:b8:51:66:cc:a7:05:98:e8:5a:e8:20:7c:ca:
09:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:2C:B1:84:17:95:CA:77:C1:3A:00:A4:EC:3C:D0:A7:F3:69:F4:E5
X509v3 Authority Key Identifier:
keyid:A8:53:9F:93:55:D3:EB:77:8B:1B:B8:EE:27:23:32:60:11:A1:22:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qFOfk1XT63eLG7juJyMyYBGhIps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/4f8e76-59e5-40d1-a13e-71f4c47f506e/1/TSyxhBeVynfBOgCk7DzQp_Np9OU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/4f8e76-59e5-40d1-a13e-71f4c47f506e/1/qFOfk1XT63eLG7juJyMyYBGhIps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.187.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4b:59:a6:65:e3:af:f3:d3:93:40:38:68:65:89:ad:9e:26:9c:
1e:85:05:c4:a4:30:22:b5:38:fd:e4:23:77:b2:23:64:51:57:
e7:7e:60:51:bb:b8:a4:0d:e7:45:bd:fe:a8:59:9d:48:7f:ed:
50:01:ec:8e:c6:65:61:f0:31:de:17:8a:43:b2:86:02:54:0d:
7a:d7:d3:89:c0:6d:7e:3c:91:ee:32:94:9d:85:ea:6c:5a:6e:
9f:92:17:5f:dc:0c:59:76:09:8b:c9:2a:2b:25:93:db:15:48:
9e:fe:b5:9f:3b:bc:78:7f:a3:d3:73:4a:1f:04:29:f6:03:90:
43:b6:bf:10:7d:90:2c:d4:9e:e2:72:bb:d5:d0:59:a3:64:f0:
ef:d9:74:ab:0f:41:92:98:27:28:f9:e4:ea:4e:50:92:03:de:
de:ca:52:3e:8c:18:90:fb:48:bd:1d:f9:a7:68:c6:02:c1:1d:
21:d4:c2:8a:ca:13:be:59:fc:71:3b:50:9d:35:78:1c:2e:e6:
74:ed:4f:d1:b4:12:8b:bb:dd:7c:1f:b6:59:c5:d9:18:49:b5:
68:fc:ec:00:e6:0b:f5:ec:72:da:1d:bc:53:e4:a5:98:e5:66:
03:1f:c1:39:56:4e:85:dc:5c:05:2a:ab:7c:4c:f0:8d:c7:73:
08:0a:31:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:33 2024 by rpki-client on console-fra.rpki-client.org