Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/fb5910-fe14-4453-8c9c-83bf70b1fd6b/1/tbu_am7qZaLcsh7uFzHBO9bhyZU.roa
File: tbu_am7qZaLcsh7uFzHBO9bhyZU.roa (raw, json)
Hash identifier: cDuAvXC9pRQAMeYcKC5UdI+EkFPGMYbAwiaqgTw+GPk=
Subject key identifier: B5:BB:BF:6A:6E:EA:65:A2:DC:B2:1E:EE:17:31:C1:3B:D6:E1:C9:95
Certificate issuer: /CN=a3608d6b0e80a6430fb6af43fae168a0e8011fee
Certificate serial: 0182C520C706649D55184C4F77A32A3D6598
Authority key identifier: A3:60:8D:6B:0E:80:A6:43:0F:B6:AF:43:FA:E1:68:A0:E8:01:1F:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2CNaw6ApkMPtq9D-uFooOgBH-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/fb5910-fe14-4453-8c9c-83bf70b1fd6b/1/tbu_am7qZaLcsh7uFzHBO9bhyZU.roa
Signing time: Mon 22 Aug 2022 10:37:15 +0000
ROA not before: Mon 22 Aug 2022 10:37:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.125.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c5:20:c7:06:64:9d:55:18:4c:4f:77:a3:2a:3d:65:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3608d6b0e80a6430fb6af43fae168a0e8011fee
Validity
Not Before: Aug 22 10:37:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5bbbf6a6eea65a2dcb21eee1731c13bd6e1c995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:54:38:4e:b0:53:fe:c6:9d:e3:06:9b:11:de:
32:08:89:11:81:fc:e3:d4:34:55:5b:c8:f0:10:ad:
5f:0c:c7:9a:31:27:23:cb:10:30:0b:2c:92:93:78:
0b:5c:ba:b8:e5:db:1c:c4:c1:1a:d4:9a:ff:ae:30:
6a:20:b3:e8:ef:02:67:0c:aa:02:d0:61:e2:24:92:
59:01:1d:0e:72:2b:5a:80:ff:77:a1:00:d8:a7:e9:
3c:01:a7:48:d0:5b:61:80:45:1b:eb:57:bf:2b:1a:
aa:2c:60:79:ec:e0:08:be:66:e0:d5:b5:63:97:2f:
85:ef:de:a7:59:fb:c8:6f:59:3f:63:4f:d6:36:b2:
42:1b:f3:78:9a:66:ac:56:96:34:67:0b:ad:4a:b2:
24:91:06:b4:47:5f:86:a5:59:e6:0c:61:87:5b:3f:
3b:83:91:cf:03:bc:03:39:f7:e1:b9:16:20:8c:1a:
d2:ca:14:59:f0:0c:35:db:f3:a7:fb:b6:f6:aa:9a:
2c:96:87:ef:f4:40:4f:3f:9c:59:95:ae:07:32:74:
f1:6f:65:6a:5d:47:be:3c:17:98:6e:18:fb:c2:1a:
cd:23:87:13:34:aa:2b:a9:81:94:23:c3:7c:40:bf:
4b:55:b4:66:64:91:4c:ee:3c:98:96:fe:97:a1:a9:
f5:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:BB:BF:6A:6E:EA:65:A2:DC:B2:1E:EE:17:31:C1:3B:D6:E1:C9:95
X509v3 Authority Key Identifier:
keyid:A3:60:8D:6B:0E:80:A6:43:0F:B6:AF:43:FA:E1:68:A0:E8:01:1F:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2CNaw6ApkMPtq9D-uFooOgBH-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/fb5910-fe14-4453-8c9c-83bf70b1fd6b/1/tbu_am7qZaLcsh7uFzHBO9bhyZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/fb5910-fe14-4453-8c9c-83bf70b1fd6b/1/o2CNaw6ApkMPtq9D-uFooOgBH-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.125.141.0/24
Signature Algorithm: sha256WithRSAEncryption
07:0a:2b:9a:f8:83:3f:0b:6b:c3:fa:c3:00:8a:ed:5a:fd:ca:
18:56:2a:cf:4f:65:b3:c7:1b:f3:94:a5:3f:70:b0:e1:17:01:
8d:6f:67:4b:4f:9a:d2:f9:87:6b:e4:1c:f0:87:4a:67:f1:eb:
03:4e:f5:99:17:0e:3d:01:cb:25:6d:d9:47:5c:5b:47:bb:c6:
b7:1c:6d:70:d1:3f:0a:ee:2c:c3:b9:f6:3c:67:42:58:68:a0:
a9:bd:b8:c9:79:e4:be:3f:95:55:b4:f6:08:15:84:bc:eb:2e:
c0:4b:f6:00:12:37:d8:22:e4:8b:60:77:a1:b3:8f:98:ed:78:
84:91:d0:27:25:58:e8:40:95:13:98:5b:83:4c:57:00:30:38:
b3:5c:ea:91:b6:8f:1f:0d:ec:0b:3a:87:c4:ce:86:2f:2d:62:
69:11:53:51:f4:03:d3:d1:97:b7:22:76:64:df:75:16:d9:c9:
8a:18:c1:1a:4a:77:d7:ae:cb:77:34:7c:dc:6d:8a:2b:72:95:
2c:f7:63:1d:82:4a:ec:95:d2:9a:71:43:a7:e1:1a:56:1e:61:
ef:76:88:c8:27:30:2c:f0:b5:18:46:d4:b1:3a:c1:ac:01:ff:
db:77:da:73:03:e7:d6:53:5a:3e:ea:d1:67:7e:cf:94:e1:8c:
54:a3:e5:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:25 2024 by rpki-client on console-ams.rpki-client.org