Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/f2bdc8-79e7-48cd-a994-ad495858b32c/1/tQCTcWipYVP6gO9KANxTrvHKunI.roa
File: tQCTcWipYVP6gO9KANxTrvHKunI.roa (raw, json)
Hash identifier: sO4uQTWwN4p6cInTvq9H0w64jJltkqeNJ5ylEGXwqj8=
Subject key identifier: B5:00:93:71:68:A9:61:53:FA:80:EF:4A:00:DC:53:AE:F1:CA:BA:72
Certificate issuer: /CN=877dfcf91569d8156226fc2790e67906763a2b03
Certificate serial: 35467CC8
Authority key identifier: 87:7D:FC:F9:15:69:D8:15:62:26:FC:27:90:E6:79:06:76:3A:2B:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h338-RVp2BViJvwnkOZ5BnY6KwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/f2bdc8-79e7-48cd-a994-ad495858b32c/1/tQCTcWipYVP6gO9KANxTrvHKunI.roa
Signing time: Sat 01 Jan 2022 02:56:59 +0000
ROA not before: Sat 01 Jan 2022 02:56:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24786
IP address blocks: 81.93.112.0/20 maxlen: 20
193.28.192.0/21 maxlen: 21
2a06:7500::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 893811912 (0x35467cc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877dfcf91569d8156226fc2790e67906763a2b03
Validity
Not Before: Jan 1 02:56:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b500937168a96153fa80ef4a00dc53aef1caba72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:00:49:a3:c4:4a:d5:40:ba:69:58:5b:09:57:
cf:f1:49:c2:5d:e2:de:a3:f0:7f:a5:23:e2:2a:78:
f8:04:59:0d:98:83:07:d7:0f:a9:55:0d:14:98:6e:
66:52:f9:1b:d1:49:a2:dd:df:9a:6f:ee:ce:ce:b7:
5f:e0:e0:e2:c2:ce:fd:6d:56:40:f7:77:71:00:d3:
7b:f9:01:d4:92:5d:95:e0:c8:31:62:b4:60:37:76:
29:65:4f:08:d8:e7:76:5d:e7:27:63:ef:59:cb:6c:
a0:9c:6b:9b:0e:a5:fe:90:e0:06:b5:60:00:21:98:
8c:4a:f4:67:97:07:38:3f:cf:ab:9e:04:69:4f:95:
66:a4:36:da:e4:a2:4e:52:a5:f1:6b:67:bc:0a:d9:
5b:26:27:0b:65:ee:d3:7e:d4:17:92:94:69:47:00:
f3:11:8f:a8:2e:28:e3:70:c1:02:ae:9c:cb:40:7f:
19:57:c0:48:d8:d5:98:81:f5:6d:e5:8f:cd:c7:a1:
84:a4:c0:fb:f8:35:8e:1f:70:6a:d7:d0:41:6d:27:
c7:b6:4d:3b:11:fe:2b:2a:25:96:1e:0e:af:f4:6e:
8d:a7:63:f9:73:5f:4b:a2:bf:18:bc:58:90:4e:aa:
0a:6c:db:26:1a:b7:f3:4a:55:b9:63:27:f5:a8:d0:
ca:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:00:93:71:68:A9:61:53:FA:80:EF:4A:00:DC:53:AE:F1:CA:BA:72
X509v3 Authority Key Identifier:
keyid:87:7D:FC:F9:15:69:D8:15:62:26:FC:27:90:E6:79:06:76:3A:2B:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h338-RVp2BViJvwnkOZ5BnY6KwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/f2bdc8-79e7-48cd-a994-ad495858b32c/1/tQCTcWipYVP6gO9KANxTrvHKunI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/f2bdc8-79e7-48cd-a994-ad495858b32c/1/h338-RVp2BViJvwnkOZ5BnY6KwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.93.112.0/20
193.28.192.0/21
IPv6:
2a06:7500::/29
Signature Algorithm: sha256WithRSAEncryption
ac:e2:d9:50:cb:a9:52:08:bc:f7:f8:40:f2:2b:9f:67:6a:85:
7f:de:14:c7:54:39:4b:9c:17:41:6f:e1:36:4d:14:0a:d5:18:
b4:a8:64:18:ec:af:b0:4e:72:e5:34:2f:a6:97:1c:30:22:54:
87:8c:14:cb:54:fe:4f:96:85:11:a1:34:79:98:2e:b5:14:d0:
f1:90:d1:93:b0:90:6c:ac:31:ec:8e:db:d8:f2:bf:c0:a0:d7:
0d:38:32:8e:d7:43:f6:dd:cc:65:83:2d:d2:65:a2:a1:89:c5:
0a:b8:19:9d:4f:de:68:da:2d:b7:4e:1b:99:4e:47:b0:f3:7a:
d5:58:49:2d:d9:29:5a:3a:01:ab:6e:22:0d:90:4e:f0:d4:57:
51:58:fc:ac:08:89:dc:f2:fb:9d:c5:04:0c:02:e3:9c:74:3e:
7a:69:6e:19:cb:0d:de:69:0f:e0:39:f8:9e:1b:5a:3b:84:90:
33:23:a3:e8:00:69:66:f6:f1:2d:08:a9:94:93:60:57:35:a3:
08:10:3b:e0:8d:85:1b:73:d9:a4:8b:3e:f2:a1:0f:44:aa:80:
3d:a3:eb:34:26:d0:07:f1:6b:53:15:d2:cd:4d:f5:de:32:fb:
37:92:84:34:b2:4a:13:bc:1d:85:63:b7:bd:b3:fb:43:a9:19:
71:ac:9c:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:56 2024 by rpki-client on console-fra.rpki-client.org