Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/372079-8901-4526-8d5a-c1f0eaeed8ce/1/Tps1VPP-4Aq8BWn8xojoFoPl8LE.roa
File: Tps1VPP-4Aq8BWn8xojoFoPl8LE.roa (raw, json)
Hash identifier: ukrSFQHuF/2FszcgRbeWKUdLmbzHtJNiLlSzDoKyFN4=
Subject key identifier: 4E:9B:35:54:F3:FE:E0:0A:BC:05:69:FC:C6:88:E8:16:83:E5:F0:B1
Certificate issuer: /CN=02c37210ed8a56ce0edd4574bf736b63245e5823
Certificate serial: 059B5FA7
Authority key identifier: 02:C3:72:10:ED:8A:56:CE:0E:DD:45:74:BF:73:6B:63:24:5E:58:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AsNyEO2KVs4O3UV0v3NrYyReWCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/372079-8901-4526-8d5a-c1f0eaeed8ce/1/Tps1VPP-4Aq8BWn8xojoFoPl8LE.roa
Signing time: Sat 01 Jan 2022 04:02:17 +0000
ROA not before: Sat 01 Jan 2022 04:02:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207430
IP address blocks: 31.14.4.0/22 maxlen: 22
31.14.6.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94068647 (0x59b5fa7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02c37210ed8a56ce0edd4574bf736b63245e5823
Validity
Not Before: Jan 1 04:02:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e9b3554f3fee00abc0569fcc688e81683e5f0b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:74:c1:a9:22:ce:24:c7:c7:d2:bf:20:cf:3c:
55:ed:f7:bf:67:b4:65:29:9c:45:86:99:e7:ef:d4:
ab:85:15:83:06:26:4b:1f:68:97:ff:57:96:08:41:
b7:a0:6b:bd:2e:19:a7:b2:9a:65:45:8d:be:e1:15:
27:91:c2:e7:0d:d4:8f:43:6d:ef:e8:28:94:5c:66:
08:b3:53:c1:53:63:ae:1e:c3:5c:d0:ca:a8:b5:a8:
a9:b6:1c:84:91:f7:1a:0b:39:84:d2:73:b6:31:1f:
2f:74:e2:36:21:db:e8:17:11:f8:01:f2:5b:c2:c5:
21:10:d1:06:f6:93:5f:75:bc:b0:0b:c5:27:71:91:
b5:0a:e4:62:92:4f:58:84:1c:4c:94:67:46:e9:cd:
3c:d6:34:46:c3:f9:e6:3e:65:49:7b:ad:5a:b9:05:
69:75:dc:e3:ab:50:4a:0f:52:c1:64:37:99:7e:90:
27:4f:69:f2:74:59:94:fc:74:87:c7:70:a2:3f:2d:
19:5f:04:14:dd:63:4b:cc:5e:bd:78:2a:ba:1f:35:
43:14:bb:48:d2:28:d6:b2:b1:8b:26:cd:11:29:27:
6d:a6:69:7f:ad:87:0a:1a:42:06:b0:a2:5f:9b:67:
01:4e:70:91:ea:3f:01:29:2d:82:54:ee:f2:68:3e:
6e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:9B:35:54:F3:FE:E0:0A:BC:05:69:FC:C6:88:E8:16:83:E5:F0:B1
X509v3 Authority Key Identifier:
keyid:02:C3:72:10:ED:8A:56:CE:0E:DD:45:74:BF:73:6B:63:24:5E:58:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AsNyEO2KVs4O3UV0v3NrYyReWCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/372079-8901-4526-8d5a-c1f0eaeed8ce/1/Tps1VPP-4Aq8BWn8xojoFoPl8LE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/372079-8901-4526-8d5a-c1f0eaeed8ce/1/AsNyEO2KVs4O3UV0v3NrYyReWCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.4.0/22
Signature Algorithm: sha256WithRSAEncryption
25:9e:90:b7:5c:43:c9:0b:a3:65:1f:19:d7:c0:cc:24:38:0e:
c8:ba:d2:ca:2e:e0:e2:ab:55:5d:e2:a4:1b:bc:b1:57:20:f8:
b3:74:66:e8:92:28:c4:d0:2d:4a:6c:ec:bb:7e:ee:c3:b2:f9:
37:59:e3:d4:5a:99:46:2c:99:db:de:c8:4d:56:fa:35:03:c4:
df:7c:bc:b7:38:16:11:c6:49:da:2a:8e:79:00:dd:0c:73:24:
af:45:0e:de:ed:9c:63:e0:5d:92:7f:40:bc:91:2b:cd:e7:ca:
94:67:98:60:a6:34:4e:46:33:04:1e:0b:13:31:98:17:31:98:
da:e0:4e:0b:a8:cc:51:e0:b0:a5:c0:68:3b:27:75:c6:12:ec:
30:ee:5c:9a:e1:99:0b:40:60:d5:44:7c:75:f8:fe:12:58:8d:
ad:77:eb:89:42:ce:c7:37:d6:3f:82:81:0e:f9:5e:c0:74:f6:
fc:b5:a3:ec:86:83:14:ab:f5:02:05:66:c2:4e:7b:1f:a1:cf:
c6:41:c0:02:b2:cf:19:a2:dc:e0:c7:e8:8f:6c:64:91:11:6e:
d1:5b:2b:ec:d3:75:21:1d:03:bf:a9:a4:4f:95:ca:66:19:bb:
6c:f4:a6:d1:8f:d1:a6:8b:95:e4:a2:21:20:16:21:39:99:27:
f1:83:f1:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:30 2023 by rpki-client on console-fra.rpki-client.org