Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/TBt0djAv2lOHKjAHk7aK8i4kSR4.roa
File: TBt0djAv2lOHKjAHk7aK8i4kSR4.roa (raw, json)
Hash identifier: 2Fnb2Rsfwpph5APmTwnIoUr67U+t+Y0YEBEYTYmcySU=
Subject key identifier: 4C:1B:74:76:30:2F:DA:53:87:2A:30:07:93:B6:8A:F2:2E:24:49:1E
Certificate issuer: /CN=6832c32d2259013991260d530d9120031aaefcd0
Certificate serial: 0182CB0B0E4FC7FD41C761FC3528C7A543FA
Authority key identifier: 68:32:C3:2D:22:59:01:39:91:26:0D:53:0D:91:20:03:1A:AE:FC:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/TBt0djAv2lOHKjAHk7aK8i4kSR4.roa
Signing time: Tue 23 Aug 2022 14:11:15 +0000
ROA not before: Tue 23 Aug 2022 14:11:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 145.46.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:cb:0b:0e:4f:c7:fd:41:c7:61:fc:35:28:c7:a5:43:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6832c32d2259013991260d530d9120031aaefcd0
Validity
Not Before: Aug 23 14:11:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c1b7476302fda53872a300793b68af22e24491e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b0:ec:f3:8e:3f:f7:97:1b:5a:77:ab:bc:bb:
ee:b5:ec:0c:9f:cc:93:92:3e:a0:85:e3:75:aa:d6:
00:10:03:4e:88:cc:e8:c1:d8:17:cb:46:f2:9c:a2:
54:13:e0:24:47:6c:cd:c6:4a:73:08:68:40:8a:b5:
03:d3:dc:ed:43:eb:4d:91:75:9a:a6:30:23:2a:a2:
dd:41:9f:8d:07:1f:0c:02:b8:3b:1b:41:08:51:1e:
6b:ba:2d:6f:c1:b9:fe:46:e1:f0:49:0f:d8:f3:81:
77:01:3d:51:fc:96:f3:46:1f:49:d4:40:69:91:6a:
c6:06:70:af:0e:40:a3:d7:45:87:66:88:3b:8b:f2:
57:c6:0c:4e:61:25:80:e2:25:0d:a4:0d:0c:a3:8b:
93:15:6f:58:eb:2d:d8:b8:c0:d4:81:8c:7a:9b:a2:
d3:72:c4:6c:db:4b:06:8f:cb:5c:1d:61:9b:3b:d5:
f9:4c:57:70:c4:24:bb:00:a4:d8:81:c3:ac:09:74:
a7:f4:a0:d5:e5:86:16:45:1c:1d:82:68:99:06:8c:
d8:7f:c7:c7:8c:b8:02:a0:d0:35:c0:2e:75:6a:b9:
7e:c3:d3:0d:90:68:74:0f:0f:8d:cd:59:1a:93:5b:
5d:18:cc:80:27:39:f2:bb:3f:7c:71:6c:99:17:10:
2d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:1B:74:76:30:2F:DA:53:87:2A:30:07:93:B6:8A:F2:2E:24:49:1E
X509v3 Authority Key Identifier:
keyid:68:32:C3:2D:22:59:01:39:91:26:0D:53:0D:91:20:03:1A:AE:FC:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/TBt0djAv2lOHKjAHk7aK8i4kSR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.46.168.0/24
Signature Algorithm: sha256WithRSAEncryption
99:ed:09:1d:9b:f1:1e:66:e8:9d:85:3b:59:bb:e4:28:c6:06:
17:c7:7e:b3:ad:71:47:2d:87:cc:b6:8c:0b:4c:60:8e:55:01:
bb:b1:88:aa:34:6e:12:d6:ea:54:cc:54:bf:d0:3c:9c:2c:74:
db:36:0e:92:c2:b3:4c:c8:f2:30:97:05:91:2d:f1:d0:9d:1f:
a9:83:c5:51:b4:46:7e:9c:d5:e1:8b:7f:81:f1:79:03:b6:ec:
ff:4e:ca:32:17:38:f9:21:e7:64:66:eb:c1:5e:21:5e:6a:5a:
c1:7b:a0:3f:66:65:8f:c7:e0:ca:04:19:92:ed:d2:03:6b:74:
4f:ef:b4:e7:20:6f:cf:e9:2f:7d:6f:05:51:29:04:12:cd:15:
5e:34:d3:38:39:ed:e8:82:20:e6:60:e2:f9:55:dd:d3:71:99:
29:7e:09:e2:1a:7a:11:04:63:7b:d9:59:cb:e8:7c:26:09:24:
59:5c:09:13:b9:8c:f4:f0:93:88:7d:b2:53:29:fa:76:b6:96:
b1:89:58:f5:28:89:7f:47:b3:9d:f6:63:57:f4:16:98:52:53:
2d:a8:35:ac:e9:2b:34:a1:8e:9e:70:ac:b8:c6:83:a4:87:88:
13:41:8c:e9:3d:7d:7b:a6:d5:00:b0:1d:80:73:5d:39:65:00:
55:c9:11:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:31 2023 by rpki-client on console-fra.rpki-client.org