Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/af15eb-7a4d-4b0e-bebb-e9bede00c6af/1/TThBZGz7dGGIdukeeKU_EJwb1E8.roa
File: TThBZGz7dGGIdukeeKU_EJwb1E8.roa (raw, json)
Hash identifier: SHDNdWJUgA+HYKrsJZBy/xra3vxvIlD6oHI2tcGwo9E=
Subject key identifier: 4D:38:41:64:6C:FB:74:61:88:76:E9:1E:78:A5:3F:10:9C:1B:D4:4F
Certificate issuer: /CN=9d7bb004201fd05b49d1221fce4759ea70bec684
Certificate serial: 06953903
Authority key identifier: 9D:7B:B0:04:20:1F:D0:5B:49:D1:22:1F:CE:47:59:EA:70:BE:C6:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nXuwBCAf0FtJ0SIfzkdZ6nC-xoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/af15eb-7a4d-4b0e-bebb-e9bede00c6af/1/TThBZGz7dGGIdukeeKU_EJwb1E8.roa
Signing time: Sat 01 Jan 2022 12:06:48 +0000
ROA not before: Sat 01 Jan 2022 12:06:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44842
IP address blocks: 185.86.48.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110442755 (0x6953903)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d7bb004201fd05b49d1221fce4759ea70bec684
Validity
Not Before: Jan 1 12:06:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d3841646cfb74618876e91e78a53f109c1bd44f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b8:80:d3:46:02:9c:d6:ed:7d:8c:d6:58:70:
2b:97:4e:af:59:f9:7f:02:e2:f5:a4:ae:41:4c:43:
26:a5:14:f4:0f:c6:33:a4:56:8c:10:e9:b6:8a:e0:
a4:d3:13:68:05:20:87:6e:c1:3f:b4:c0:7d:0e:56:
19:05:c5:a2:33:b6:10:bd:25:cc:21:50:a9:31:af:
e0:9c:5e:2c:ec:c4:b5:85:54:56:c3:c6:a6:35:0e:
e5:2f:f3:b8:e8:c1:49:e8:a5:a6:ba:92:c7:74:78:
b5:81:32:a1:16:13:25:48:12:7a:0a:57:fc:de:3e:
82:c6:be:15:61:93:94:74:8a:d9:4a:bb:34:0a:4b:
55:b3:2a:c6:56:64:ed:7b:f2:f1:6f:0c:45:38:b2:
27:9c:2a:4c:a9:cf:43:6d:f6:2d:8c:81:56:e3:10:
b3:f2:b7:1c:2e:73:20:20:7c:ef:3e:08:37:1d:9f:
90:37:d7:ca:d0:b3:14:ee:fd:7a:78:a1:fd:5b:18:
59:95:6b:78:7d:43:f1:28:ec:07:20:ee:a0:f4:8b:
55:3e:6d:cb:0f:e4:02:d1:e7:c9:fb:75:b0:45:d4:
0a:8d:ba:61:e9:6f:1b:4e:fc:5d:91:66:4f:08:8b:
85:41:47:1c:bf:df:34:50:c2:aa:88:89:66:57:08:
b9:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:38:41:64:6C:FB:74:61:88:76:E9:1E:78:A5:3F:10:9C:1B:D4:4F
X509v3 Authority Key Identifier:
keyid:9D:7B:B0:04:20:1F:D0:5B:49:D1:22:1F:CE:47:59:EA:70:BE:C6:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nXuwBCAf0FtJ0SIfzkdZ6nC-xoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/af15eb-7a4d-4b0e-bebb-e9bede00c6af/1/TThBZGz7dGGIdukeeKU_EJwb1E8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/af15eb-7a4d-4b0e-bebb-e9bede00c6af/1/nXuwBCAf0FtJ0SIfzkdZ6nC-xoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.48.0/22
Signature Algorithm: sha256WithRSAEncryption
52:0d:8d:10:36:3a:f1:46:e5:9e:62:f1:cf:b7:04:a9:80:3b:
d2:c6:41:19:47:5d:d5:ed:0c:00:0c:23:21:bf:dd:c2:e4:88:
79:de:0a:2d:84:b5:23:19:82:7a:cc:98:52:ce:9e:fd:5c:5d:
0c:02:7b:4f:70:0e:f3:07:0a:ec:5d:e0:49:7d:fb:18:a9:a6:
25:d6:09:97:45:ba:cb:de:9a:f3:da:7e:85:83:84:e3:b2:80:
d0:23:2c:15:c0:35:f4:ab:58:7d:c8:e6:e4:eb:2c:01:60:16:
f2:10:61:7c:10:e9:fd:7f:2b:38:b2:08:ff:fd:7c:e0:99:c1:
52:e4:d2:1a:b4:27:a7:8b:8d:26:6c:17:ed:f8:d9:af:69:56:
b9:10:0f:12:32:00:f5:58:b7:eb:0c:a9:58:3b:5f:1e:33:c2:
bb:35:69:84:33:9d:bb:c3:19:0d:da:9f:d9:dc:5d:a5:1e:fa:
32:36:40:a6:3a:6d:f1:2f:e0:57:85:a5:0f:33:3c:f1:f3:58:
02:73:3c:28:3a:23:50:84:c7:da:0b:3c:c4:b8:e6:92:b9:28:
c2:87:de:ec:ab:7e:af:70:39:64:78:52:6f:70:fe:e9:b5:5f:
69:5f:c9:ab:db:cc:f1:0e:2c:65:b0:10:68:7b:d6:6c:b6:76:
7b:81:a3:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:50 2023 by rpki-client on console-ams.rpki-client.org