Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/Tcfy-apxXxHA9JvnJ4r2xA8Q2qc.roa
File: Tcfy-apxXxHA9JvnJ4r2xA8Q2qc.roa (raw, json)
Hash identifier: sLlYZLH6iAQfUCaedyg6+gY0viijIIu72ZRUaAQrlQw=
Subject key identifier: 4D:C7:F2:F9:AA:71:5F:11:C0:F4:9B:E7:27:8A:F6:C4:0F:10:DA:A7
Certificate issuer: /CN=1d5af3ae21f97ec4ec75d51a85a3e162ed7a9ed7
Certificate serial: 06DB0CF3
Authority key identifier: 1D:5A:F3:AE:21:F9:7E:C4:EC:75:D5:1A:85:A3:E1:62:ED:7A:9E:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVrzriH5fsTsddUahaPhYu16ntc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/Tcfy-apxXxHA9JvnJ4r2xA8Q2qc.roa
Signing time: Wed 11 May 2022 06:31:02 +0000
ROA not before: Wed 11 May 2022 06:31:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 45.146.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115018995 (0x6db0cf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d5af3ae21f97ec4ec75d51a85a3e162ed7a9ed7
Validity
Not Before: May 11 06:31:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4dc7f2f9aa715f11c0f49be7278af6c40f10daa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6e:67:08:46:f6:7c:16:59:5a:b6:75:88:c1:
66:4c:85:6f:11:be:66:4b:ce:50:1c:58:4a:63:8d:
95:be:e4:66:52:07:f5:9f:d1:09:49:0f:0c:fd:1d:
24:71:6f:92:a9:b5:11:87:bf:08:a9:8b:28:c5:ef:
32:d3:d9:86:a5:a9:92:93:f8:64:fc:90:97:f1:f5:
06:4b:6b:d0:02:31:c7:7f:c2:89:22:f5:c7:a5:cb:
92:2c:98:c6:82:7f:ac:91:82:6b:51:b8:41:56:ef:
a5:cf:59:bd:50:19:5b:62:26:c4:88:1c:e8:ae:5f:
18:2a:0d:c4:2b:e9:9b:93:a1:7e:7e:a3:8b:26:fe:
c5:4c:d7:4a:51:32:09:ef:c2:19:f7:4c:eb:42:df:
d5:b0:08:08:fa:c9:25:75:0d:e3:21:7e:d0:98:e6:
93:a3:0f:b2:ed:59:3b:f8:e0:d7:fb:b0:eb:45:56:
5f:cc:c8:a5:84:51:32:d1:2e:e6:a1:03:e2:45:f2:
76:9f:bb:dd:64:5e:1a:05:66:7f:ab:d7:f8:86:f4:
ec:ee:75:cb:e1:ce:da:f7:cb:9d:2e:a7:13:2a:96:
15:77:9e:a5:4a:86:bb:f4:14:bd:18:1e:0a:87:bd:
46:6d:0f:eb:e0:66:8d:5c:1b:76:98:b3:88:03:f9:
9c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:C7:F2:F9:AA:71:5F:11:C0:F4:9B:E7:27:8A:F6:C4:0F:10:DA:A7
X509v3 Authority Key Identifier:
keyid:1D:5A:F3:AE:21:F9:7E:C4:EC:75:D5:1A:85:A3:E1:62:ED:7A:9E:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVrzriH5fsTsddUahaPhYu16ntc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/Tcfy-apxXxHA9JvnJ4r2xA8Q2qc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/HVrzriH5fsTsddUahaPhYu16ntc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.161.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:66:2e:cf:6a:b7:d8:ca:19:23:3a:c7:66:fe:61:d0:0c:6f:
9a:2e:30:67:ba:30:b4:12:a6:b8:bc:b7:dd:c4:68:48:b2:bf:
c8:91:8f:25:c2:45:75:e2:c9:28:0b:97:12:82:d8:c2:d8:9b:
91:e4:58:86:e0:4f:fb:55:66:e3:59:39:2d:b9:8b:e2:85:cb:
f9:17:42:7b:fc:82:ff:e3:26:7c:ad:13:2c:d4:53:d9:ef:e4:
38:e3:52:00:81:05:ca:e0:5a:6c:60:5e:72:d2:d8:04:22:c8:
96:83:94:4d:16:cf:08:92:0a:46:b9:80:55:b8:4f:02:0f:22:
ef:4b:d4:b4:f7:31:fa:12:d1:66:52:16:65:a4:ee:9e:47:85:
07:1f:11:32:14:65:77:d1:79:29:71:87:b9:8e:d5:19:19:59:
16:fe:f7:b4:00:e6:5f:87:97:24:f9:2f:13:63:f9:19:51:d1:
ac:4f:8f:89:15:6e:79:25:11:c4:77:8e:88:cb:46:b1:ea:e6:
6a:81:1b:da:b5:94:e9:dd:e1:1e:1d:26:30:5c:53:f9:c9:07:
05:a9:9b:1d:67:7f:de:bb:f1:1b:d1:c6:73:9e:b6:0d:6a:be:
12:c4:43:a4:d7:43:8d:9d:b7:9c:3e:4a:b8:1c:f6:57:0e:d9:
db:4c:c6:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:02 2023 by rpki-client on console-fra.rpki-client.org