Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/tCHTbCb0I2Jj-k2R5OeWWAY6pXc.roa
File: tCHTbCb0I2Jj-k2R5OeWWAY6pXc.roa (raw, json)
Hash identifier: WzXbK4NJR94UvmDjAAIatX7JDvg7EaZcx1TIUZVKQnA=
Subject key identifier: B4:21:D3:6C:26:F4:23:62:63:FA:4D:91:E4:E7:96:58:06:3A:A5:77
Certificate issuer: /CN=db489fbe98994cbc098c876ba63e560ac17e5b2f
Certificate serial: 03E6102C
Authority key identifier: DB:48:9F:BE:98:99:4C:BC:09:8C:87:6B:A6:3E:56:0A:C1:7E:5B:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20ifvpiZTLwJjIdrpj5WCsF-Wy8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/tCHTbCb0I2Jj-k2R5OeWWAY6pXc.roa
Signing time: Wed 01 Jun 2022 13:32:20 +0000
ROA not before: Wed 01 Jun 2022 13:32:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202709
IP address blocks: 185.63.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65409068 (0x3e6102c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db489fbe98994cbc098c876ba63e560ac17e5b2f
Validity
Not Before: Jun 1 13:32:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b421d36c26f4236263fa4d91e4e79658063aa577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2c:0c:40:4f:35:05:35:04:69:20:55:2d:a5:
ec:27:cf:65:00:db:43:26:0a:be:b1:e1:f6:6f:f6:
97:b1:ca:16:23:85:e3:2a:2a:11:7e:55:54:2a:c6:
4e:d8:fb:22:51:5f:3b:a3:29:c0:3d:8d:53:8a:c6:
c0:bc:4a:94:9f:76:75:4d:9c:7e:bf:2d:7c:41:c8:
e1:67:cc:87:77:da:1e:03:05:d2:24:3e:4c:35:f3:
ef:39:7a:89:3f:dc:49:20:99:d4:29:7e:e3:91:2c:
84:10:49:ce:19:e7:cc:4d:fe:91:5e:f2:27:8f:78:
80:64:ee:e3:b8:7a:05:ba:c9:49:41:37:9d:84:c4:
0c:97:cf:4a:00:39:65:2f:61:d5:22:10:98:59:eb:
39:18:ea:13:55:12:af:0a:4b:11:bd:d7:6c:3b:5b:
75:76:77:6e:b1:a1:36:ef:54:78:de:88:7b:61:55:
3d:50:03:c9:9c:ad:08:17:a2:7a:bc:a5:ac:a1:4b:
cf:12:98:8f:cd:c3:21:c8:df:ef:6c:af:35:57:bf:
96:02:15:30:f9:63:97:53:99:d4:35:0e:34:8a:1b:
85:63:e7:df:b6:c0:f1:62:2c:38:a1:88:8d:e6:fa:
97:30:0a:c5:6e:12:fa:a3:42:01:67:08:e7:7d:15:
8d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:21:D3:6C:26:F4:23:62:63:FA:4D:91:E4:E7:96:58:06:3A:A5:77
X509v3 Authority Key Identifier:
keyid:DB:48:9F:BE:98:99:4C:BC:09:8C:87:6B:A6:3E:56:0A:C1:7E:5B:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20ifvpiZTLwJjIdrpj5WCsF-Wy8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/tCHTbCb0I2Jj-k2R5OeWWAY6pXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/20ifvpiZTLwJjIdrpj5WCsF-Wy8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.231.0/24
Signature Algorithm: sha256WithRSAEncryption
af:dd:dc:09:be:8b:4b:96:1f:15:17:3e:4d:af:99:4c:08:c0:
9a:0f:0a:26:f8:bd:5c:f2:59:17:0d:16:ad:f7:a7:ec:0b:0c:
30:de:81:17:e4:b4:64:20:e4:c5:36:e7:27:ae:53:db:b7:a6:
dd:22:d5:89:c5:3f:a4:1d:b8:46:12:95:a1:93:bc:92:83:9e:
ba:48:d1:d3:06:bc:ab:87:a1:5d:88:ba:9a:bb:05:17:6e:65:
be:8b:98:ce:3d:5a:e7:5b:74:ab:5e:5d:d8:95:b8:96:97:f9:
e9:20:2b:24:d5:c4:94:b2:94:8b:b4:f3:01:0f:a6:7c:1f:d8:
08:88:95:4f:d2:09:98:f1:c7:54:1c:02:20:04:69:41:09:fb:
b2:f8:28:ae:13:3e:b4:6b:19:d4:35:94:f1:aa:0d:7d:d2:af:
d2:67:c8:81:d6:ce:a2:3d:16:78:52:ab:7c:0a:fd:a9:00:38:
00:7c:94:bb:8b:d3:26:04:59:3f:82:db:b7:93:79:6c:a1:8a:
0b:ce:22:5b:c4:b0:0c:a5:58:88:d4:2d:3d:64:40:ee:83:75:
34:d0:99:41:d7:33:e1:0a:c1:73:46:df:69:6e:f1:2f:0d:1c:
eb:35:13:71:0e:79:b7:5b:6f:32:19:63:c7:19:3b:ad:4a:3c:
ed:c0:c9:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:21 2023 by rpki-client on console-fra.rpki-client.org