Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/5b4bb6-2082-4c2b-8ce5-fa2176aaa849/1/tsbpesSNt3O3bn6hlc94MwE0U28.roa
File: tsbpesSNt3O3bn6hlc94MwE0U28.roa (raw, json)
Hash identifier: w6oClcIVjUg3Qwg7V22NaFFpUJYYscXl6x3EjEN8Nco=
Subject key identifier: B6:C6:E9:7A:C4:8D:B7:73:B7:6E:7E:A1:95:CF:78:33:01:34:53:6F
Certificate issuer: /CN=0c6824158b730c44167ea773a977218cc62f416a
Certificate serial: 0183AC7D8FE6FA6642A23CEFE19FD5502D2A
Authority key identifier: 0C:68:24:15:8B:73:0C:44:16:7E:A7:73:A9:77:21:8C:C6:2F:41:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DGgkFYtzDEQWfqdzqXchjMYvQWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/5b4bb6-2082-4c2b-8ce5-fa2176aaa849/1/tsbpesSNt3O3bn6hlc94MwE0U28.roa
Signing time: Thu 06 Oct 2022 08:50:53 +0000
ROA not before: Thu 06 Oct 2022 08:50:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60409
IP address blocks: 81.25.96.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ac:7d:8f:e6:fa:66:42:a2:3c:ef:e1:9f:d5:50:2d:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c6824158b730c44167ea773a977218cc62f416a
Validity
Not Before: Oct 6 08:50:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6c6e97ac48db773b76e7ea195cf78330134536f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c8:df:48:0c:f3:66:d7:58:a9:43:f0:18:37:
83:05:4e:11:1c:fd:4b:e5:60:41:00:a4:25:94:75:
41:b7:eb:f6:25:27:52:22:40:be:27:65:56:04:c7:
ae:f3:b6:92:b2:19:9b:6e:17:30:23:0c:47:a9:4a:
a7:94:90:85:9c:e6:22:22:9d:c5:d5:1a:f0:1a:ce:
3f:a5:88:cb:02:d5:4e:9a:e0:5e:ea:1e:a6:66:94:
d2:37:06:f4:a0:a6:3f:2a:60:5c:17:cf:3d:ca:7f:
2f:f2:03:c8:68:48:b0:a2:2b:9e:b1:d6:77:a8:e1:
cf:98:8a:85:d8:b8:59:a8:0b:0e:77:6e:98:b1:67:
ae:16:24:d5:5f:5e:47:9e:8f:2a:c9:07:58:ff:0c:
04:12:aa:6c:63:b0:98:31:95:be:f4:55:7e:49:43:
bd:4f:01:21:6f:08:8a:28:48:34:ff:ac:30:ba:a3:
2e:e7:f5:14:08:51:79:6c:f2:bc:3c:98:f0:9f:44:
b2:d2:6d:db:ad:af:fb:dd:62:25:df:10:f3:9c:b1:
3a:f1:20:de:87:82:c8:e5:7c:e4:2f:d2:cd:fe:fa:
fc:e7:5e:8d:37:e3:16:dd:ae:fd:8f:a3:74:e3:0a:
26:61:12:2c:89:ff:d3:91:ca:5a:77:82:e9:22:19:
eb:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:C6:E9:7A:C4:8D:B7:73:B7:6E:7E:A1:95:CF:78:33:01:34:53:6F
X509v3 Authority Key Identifier:
keyid:0C:68:24:15:8B:73:0C:44:16:7E:A7:73:A9:77:21:8C:C6:2F:41:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DGgkFYtzDEQWfqdzqXchjMYvQWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/5b4bb6-2082-4c2b-8ce5-fa2176aaa849/1/tsbpesSNt3O3bn6hlc94MwE0U28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/5b4bb6-2082-4c2b-8ce5-fa2176aaa849/1/DGgkFYtzDEQWfqdzqXchjMYvQWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.25.96.0/20
Signature Algorithm: sha256WithRSAEncryption
40:f5:d5:b6:fd:b6:b4:80:02:ae:d9:7d:43:09:17:ef:8f:d9:
81:78:d6:74:bf:25:8a:41:8c:2e:49:a5:39:4e:57:74:e0:4e:
23:a3:e0:f0:76:d3:65:2e:2f:59:de:4a:7c:82:40:10:97:42:
96:d2:72:bb:f0:7e:53:22:ad:a5:5e:42:86:e1:c2:fd:c0:c0:
45:b2:78:69:d9:79:c9:ea:2c:54:76:87:c5:89:55:8b:01:6b:
61:fc:f7:93:32:f1:14:f3:10:7f:a0:9c:6f:48:ba:fc:04:28:
e3:a3:91:36:9c:d2:87:59:68:10:ce:ed:09:19:96:ae:40:90:
62:09:c9:37:86:f2:ee:7a:a5:fd:27:69:92:5f:bd:97:2b:93:
34:4b:03:64:bb:81:44:c7:d7:ee:bf:a9:9b:bc:6a:5f:0d:ed:
a0:33:6b:ae:d6:ec:50:58:55:d7:f7:83:d9:f2:97:1d:7c:02:
26:b0:e4:19:1b:1b:54:37:51:70:8a:75:3f:7d:78:ed:ae:0c:
5c:a4:a1:b2:b5:c4:f1:0c:0b:2d:76:52:92:b0:80:9b:1a:9c:
0e:55:46:37:8e:35:93:50:4c:9f:3e:9c:ba:22:42:d6:16:2a:
b2:93:da:bf:38:be:f3:3c:23:93:79:97:b1:97:d1:d7:b7:04:
64:79:9e:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:05 2025 by rpki-client