Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/f089b2-ddee-4262-9eaa-5ddcbf511e22/1/TFBNuCpq-Azoxkhl--RMywXL8-o.roa
File: TFBNuCpq-Azoxkhl--RMywXL8-o.roa (raw, json)
Hash identifier: JMoBKG99FflrvXOzMrK4yncjzrAnDIH7OwuADoOPM3I=
Subject key identifier: 4C:50:4D:B8:2A:6A:F8:0C:E8:C6:48:65:FB:E4:4C:CB:05:CB:F3:EA
Certificate issuer: /CN=bf08490ee29b3b3c293bdd7322b5a33ad840d801
Certificate serial: 0182F8A8B69B5744AD06FF404F046B7D9F8F
Authority key identifier: BF:08:49:0E:E2:9B:3B:3C:29:3B:DD:73:22:B5:A3:3A:D8:40:D8:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vwhJDuKbOzwpO91zIrWjOthA2AE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/f089b2-ddee-4262-9eaa-5ddcbf511e22/1/TFBNuCpq-Azoxkhl--RMywXL8-o.roa
Signing time: Thu 01 Sep 2022 10:46:22 +0000
ROA not before: Thu 01 Sep 2022 10:46:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6830
IP address blocks: 195.254.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f8:a8:b6:9b:57:44:ad:06:ff:40:4f:04:6b:7d:9f:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf08490ee29b3b3c293bdd7322b5a33ad840d801
Validity
Not Before: Sep 1 10:46:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c504db82a6af80ce8c64865fbe44ccb05cbf3ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ce:da:4c:22:ed:0b:82:e8:4d:bf:b5:a9:c8:
f2:ce:7c:a8:84:61:3d:e5:79:2b:13:8a:30:9d:5d:
6f:fc:38:13:8f:c7:2d:90:24:33:be:ab:fc:81:be:
62:37:80:d1:f0:ac:20:77:ec:c4:db:36:89:9b:d4:
9f:91:96:fe:ec:ea:ad:ac:85:bc:47:7e:b6:70:d7:
5c:2b:74:1e:e5:c5:12:d6:c9:94:77:ab:76:01:1b:
9c:59:c7:8a:07:f9:e3:5e:79:e4:1c:97:70:5d:51:
ab:de:a4:bd:a9:77:42:bc:21:ec:7c:43:d0:de:9d:
1b:c3:12:ae:d4:fc:d4:67:ad:4e:c0:b5:f4:a3:77:
0b:be:f6:aa:7c:8d:a9:3a:59:c4:dc:f6:af:32:70:
bf:f4:d6:66:65:be:b5:f5:52:d6:c4:f4:bf:4b:86:
a2:63:0f:e1:10:05:e4:4f:b9:55:2c:88:e0:a7:f2:
65:db:f3:f0:16:7d:7a:50:d7:73:07:3e:80:d9:08:
6c:af:2b:24:c7:a9:1e:2f:28:14:f9:09:85:99:ec:
c2:29:60:fb:f1:fe:fc:f7:1c:ed:c6:fa:88:61:24:
60:48:93:93:66:73:c6:fc:10:19:52:53:0f:78:05:
01:08:81:d7:d2:6c:f0:9d:e1:f7:69:5f:b0:39:37:
6d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:50:4D:B8:2A:6A:F8:0C:E8:C6:48:65:FB:E4:4C:CB:05:CB:F3:EA
X509v3 Authority Key Identifier:
keyid:BF:08:49:0E:E2:9B:3B:3C:29:3B:DD:73:22:B5:A3:3A:D8:40:D8:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vwhJDuKbOzwpO91zIrWjOthA2AE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/f089b2-ddee-4262-9eaa-5ddcbf511e22/1/TFBNuCpq-Azoxkhl--RMywXL8-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/f089b2-ddee-4262-9eaa-5ddcbf511e22/1/vwhJDuKbOzwpO91zIrWjOthA2AE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.254.164.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:87:c5:b7:8f:e1:0b:63:40:16:73:68:27:ff:d0:fc:6f:1e:
3f:a1:35:80:76:76:70:78:fb:e4:20:e2:56:75:60:85:69:96:
da:5d:38:a2:21:77:54:9e:a2:92:bb:db:f5:f0:32:f3:5d:fc:
49:d2:06:2c:0b:b0:aa:c9:bf:73:24:44:00:46:8d:e8:18:ff:
4e:49:4d:ff:59:7b:fa:65:6f:79:60:4d:77:3f:6c:a8:ea:cc:
f2:e7:60:7b:06:68:0c:e8:98:f7:20:97:b9:10:93:aa:5e:c3:
82:e8:f1:a0:88:0b:7a:a3:d4:0d:bb:4b:60:93:be:c5:73:46:
af:4e:f0:39:a0:8d:48:3b:62:73:5a:04:2a:44:5c:1a:cc:0a:
0a:b0:f0:0d:4c:29:45:03:37:45:c4:a5:b7:48:b9:62:a8:e8:
5e:15:14:e3:3c:5b:3c:a7:54:f9:fb:5b:80:33:2a:9b:34:da:
d6:9d:1b:41:ab:f0:a7:40:07:60:59:a6:ac:09:8d:2a:0d:d0:
0d:76:c5:ea:f6:dc:c4:18:32:9e:9b:39:0a:ed:65:33:78:57:
35:d1:be:50:77:9c:a1:f8:3c:97:3f:91:97:00:2c:3c:27:b5:
12:1c:63:f4:94:7e:b5:56:04:fb:38:22:25:f0:47:0d:b1:78:
8b:ef:8a:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:39 2023 by rpki-client on console-fra.rpki-client.org