Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/tbwTMiyfgYbQWoLPPDKXFW-BqRc.roa
File: tbwTMiyfgYbQWoLPPDKXFW-BqRc.roa (raw, json)
Hash identifier: nsw7N67hhj3hpFjecdT8YtglsST0A3OpflYRTelkIa0=
Subject key identifier: B5:BC:13:32:2C:9F:81:86:D0:5A:82:CF:3C:32:97:15:6F:81:A9:17
Certificate issuer: /CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Certificate serial: 0379AE7C
Authority key identifier: 1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/tbwTMiyfgYbQWoLPPDKXFW-BqRc.roa
Signing time: Sat 01 Jan 2022 01:59:17 +0000
ROA not before: Sat 01 Jan 2022 01:59:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20517
IP address blocks: 185.20.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58306172 (0x379ae7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Validity
Not Before: Jan 1 01:59:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5bc13322c9f8186d05a82cf3c3297156f81a917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:40:2d:54:8a:cf:49:01:bf:fe:78:ec:9c:af:
fd:2f:3c:01:0a:35:e7:41:79:cc:c9:88:43:34:d2:
60:b7:54:de:9b:f0:4c:fb:43:05:95:c1:f3:58:7d:
f9:65:41:22:4f:66:8b:82:42:5a:e3:1a:a4:08:d3:
9a:9c:5b:49:b4:a3:b4:9f:ac:61:e2:85:ae:96:68:
47:66:98:59:13:f7:a0:53:7d:fd:80:22:43:da:4b:
c1:ac:56:fc:3d:b5:e5:81:4e:fa:7f:8f:6b:34:6d:
28:a0:e2:b6:b4:91:bf:d7:e1:03:e7:12:ed:f7:17:
b3:91:fe:0f:4a:90:38:72:37:fc:5c:63:fd:89:91:
f4:43:9e:0f:9e:f8:aa:fb:4f:7a:5a:f4:f3:48:fc:
e3:0d:e1:e0:d5:25:db:9f:09:c7:52:5f:16:49:73:
bf:ca:12:46:bf:bf:a6:bb:ec:74:81:8d:eb:d4:4e:
35:b9:24:63:b0:b8:04:df:9f:18:d0:d2:19:1b:55:
76:32:da:40:7f:5a:dc:dd:26:ae:37:45:4a:d8:88:
67:4d:23:f1:ec:5f:38:85:45:bf:df:fa:46:16:10:
d6:d9:78:86:da:d8:5d:2b:44:0a:a0:f3:46:a1:a1:
c2:df:2a:ae:ce:c5:32:fa:b7:6b:f2:cf:71:36:42:
b7:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:BC:13:32:2C:9F:81:86:D0:5A:82:CF:3C:32:97:15:6F:81:A9:17
X509v3 Authority Key Identifier:
keyid:1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/tbwTMiyfgYbQWoLPPDKXFW-BqRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.20.254.0/24
Signature Algorithm: sha256WithRSAEncryption
17:b8:2a:63:0a:4f:ad:01:17:ee:e6:93:f2:eb:e0:48:ba:97:
25:93:41:0c:08:8f:8d:e8:53:d9:46:ab:69:68:be:c1:16:77:
5f:59:58:79:8f:f6:54:f0:e2:a4:29:c1:d0:66:1c:a4:13:e3:
97:80:ef:6d:83:61:be:2f:3c:bc:30:8b:91:cf:0b:aa:4f:83:
1a:c5:37:3c:86:79:62:03:11:92:76:af:7e:d9:05:f5:1a:f0:
d0:2b:bb:0e:4b:3f:89:6a:3a:53:6f:e5:e2:e0:e8:c4:95:4c:
c3:b7:7b:c3:36:fe:dd:97:f5:04:f5:a5:db:24:b2:a7:da:22:
86:64:71:d6:8c:7e:b9:28:ba:5d:12:c5:60:29:ab:a4:38:6d:
02:55:32:c4:82:0a:62:34:ec:7c:f8:68:e6:c5:5e:0a:03:43:
6b:80:03:5d:5c:a8:9d:5b:7a:16:e2:41:92:74:be:76:78:20:
da:7f:d7:6e:93:c3:9b:cc:54:d2:05:cb:5f:7e:f1:60:9c:c2:
57:6d:8d:06:40:e9:14:8b:66:68:30:5e:e1:66:65:64:35:5c:
e2:e7:88:44:b1:f9:0c:40:12:62:f8:21:9f:9d:79:ba:d2:a6:
94:cd:af:e6:ec:a1:df:8f:74:0d:f8:89:30:7b:71:0e:04:34:
ee:4f:44:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:47 2024 by rpki-client on console-fra.rpki-client.org