Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/64ed62-a8ef-4802-a1b4-9f97b0fc4832/1/TQ0UIQTnd2EmTZRe8BSyekJkLmg.roa
File: TQ0UIQTnd2EmTZRe8BSyekJkLmg.roa (raw, json)
Hash identifier: mEHB1Qc+FvYIPc9X2EMP28MCq6xeeLDq4A7Zdsiq8ro=
Subject key identifier: 4D:0D:14:21:04:E7:77:61:26:4D:94:5E:F0:14:B2:7A:42:64:2E:68
Certificate issuer: /CN=e2454c456ce68ba8fecad542aab9610b1ecc12e2
Certificate serial: 0996A2C4
Authority key identifier: E2:45:4C:45:6C:E6:8B:A8:FE:CA:D5:42:AA:B9:61:0B:1E:CC:12:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4kVMRWzmi6j-ytVCqrlhCx7MEuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/64ed62-a8ef-4802-a1b4-9f97b0fc4832/1/TQ0UIQTnd2EmTZRe8BSyekJkLmg.roa
Signing time: Sat 01 Jan 2022 10:05:38 +0000
ROA not before: Sat 01 Jan 2022 10:05:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2119
IP address blocks: 193.161.208.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160867012 (0x996a2c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2454c456ce68ba8fecad542aab9610b1ecc12e2
Validity
Not Before: Jan 1 10:05:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d0d142104e77761264d945ef014b27a42642e68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f2:ae:26:9a:c0:f0:38:d1:af:a8:f3:29:58:
93:41:96:01:d9:29:72:ef:2f:2a:26:bf:3c:ab:be:
28:83:1d:f6:5b:1f:b8:55:4d:9e:cc:a1:77:59:0c:
ee:a0:2c:6a:ad:da:c7:b2:da:8a:17:59:02:39:20:
fa:93:4a:e5:26:02:98:06:95:f2:7e:e3:7d:0f:6c:
d0:c9:40:cb:71:a2:9c:ac:83:87:cc:d4:4f:b6:54:
cd:9b:4d:c6:92:51:c9:e2:8a:4d:cb:1f:85:1e:cc:
f6:d8:cc:b8:bb:ca:d4:44:38:e3:5e:5d:37:c4:42:
85:1d:70:64:87:4f:3c:2c:db:35:12:01:5d:ff:d4:
92:71:18:7c:98:cf:09:76:68:e4:71:84:1b:4f:24:
d4:3a:35:ff:eb:e8:c3:0b:fa:21:87:11:ae:75:47:
92:a5:49:0b:8b:8b:34:c7:b0:60:7f:b0:14:25:34:
c5:27:bc:34:c2:b7:bc:12:68:9b:b9:15:a9:c2:6e:
e9:6a:a8:2d:16:7b:91:78:fd:62:00:df:af:a4:9c:
df:7a:9f:bb:e2:3e:89:8c:a7:b5:64:52:1b:6b:39:
86:26:a1:d5:75:c3:df:c5:8d:00:d5:21:e6:c6:f4:
22:4e:a4:2d:ee:e8:e1:4e:72:45:64:5f:0a:da:be:
c2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:0D:14:21:04:E7:77:61:26:4D:94:5E:F0:14:B2:7A:42:64:2E:68
X509v3 Authority Key Identifier:
keyid:E2:45:4C:45:6C:E6:8B:A8:FE:CA:D5:42:AA:B9:61:0B:1E:CC:12:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4kVMRWzmi6j-ytVCqrlhCx7MEuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/64ed62-a8ef-4802-a1b4-9f97b0fc4832/1/TQ0UIQTnd2EmTZRe8BSyekJkLmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/64ed62-a8ef-4802-a1b4-9f97b0fc4832/1/4kVMRWzmi6j-ytVCqrlhCx7MEuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.161.208.0/22
Signature Algorithm: sha256WithRSAEncryption
15:32:66:df:45:f4:ae:fb:dd:41:c5:b6:6e:67:0e:dd:bd:00:
5d:01:04:e7:fa:c5:0d:f7:7a:00:d3:8f:e8:20:2d:56:5d:7d:
62:f6:0e:88:20:03:b5:ff:c7:59:0c:f1:19:f2:8e:fa:7f:f4:
45:c9:8e:01:0e:6a:3e:d5:32:b0:c1:63:47:50:4f:86:0a:9a:
90:40:03:ee:3c:ff:0d:ad:f5:d8:e1:a4:8b:6b:ad:cd:94:04:
0b:da:dc:5f:67:d2:29:41:e6:3c:bc:30:f2:6a:e6:05:56:db:
5d:63:db:3e:f5:2f:e7:a8:b8:9e:b0:9c:0a:90:ab:c8:f3:ba:
3a:3d:c8:ea:1d:f2:ad:cb:69:8b:7b:26:43:ee:b1:ca:17:ff:
f6:6a:15:0a:49:79:62:1c:10:c9:64:2f:c6:f0:a3:27:6a:c2:
dd:98:11:f5:e3:7a:40:a3:36:c9:5a:22:3c:5f:7e:94:fc:33:
d9:71:c8:bd:0d:02:4d:3c:b3:14:99:b0:a3:bf:62:33:ce:12:
7c:80:08:49:41:56:ab:d6:8d:1f:ef:b6:94:f3:c4:ea:3a:bc:
82:8d:8c:6e:35:50:93:cc:cb:9e:83:f6:b9:41:f3:af:c1:ef:
1c:09:d6:09:c0:64:ee:dd:8b:87:00:55:26:fc:8d:d5:4c:19:
81:52:54:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:00 2023 by rpki-client on console-fra.rpki-client.org