Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/24e327-7658-463c-8990-b1c9b789aaa9/1/Tlt3_KpFJN_82HH7Xh4uVpDoh88.roa
File: Tlt3_KpFJN_82HH7Xh4uVpDoh88.roa (raw, json)
Hash identifier: T5P9oFW/bKp90UmMCYKM/3ay8EukG/V1XUPSu6GLcL8=
Subject key identifier: 4E:5B:77:FC:AA:45:24:DF:FC:D8:71:FB:5E:1E:2E:56:90:E8:87:CF
Certificate issuer: /CN=c7e8d959f1c9564a33f28fe44ab614b8f62b001b
Certificate serial: 0182162250D5108ED19C5C302629DFFCFA0A
Authority key identifier: C7:E8:D9:59:F1:C9:56:4A:33:F2:8F:E4:4A:B6:14:B8:F6:2B:00:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x-jZWfHJVkoz8o_kSrYUuPYrABs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/24e327-7658-463c-8990-b1c9b789aaa9/1/Tlt3_KpFJN_82HH7Xh4uVpDoh88.roa
Signing time: Tue 19 Jul 2022 11:05:23 +0000
ROA not before: Tue 19 Jul 2022 11:05:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208848
IP address blocks: 37.60.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:16:22:50:d5:10:8e:d1:9c:5c:30:26:29:df:fc:fa:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7e8d959f1c9564a33f28fe44ab614b8f62b001b
Validity
Not Before: Jul 19 11:05:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e5b77fcaa4524dffcd871fb5e1e2e5690e887cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b9:1d:f4:34:78:6b:93:0c:3c:2f:2d:bd:bd:
ff:6c:ae:9a:1c:f2:42:11:40:f5:4f:05:3b:f0:32:
6d:a3:15:59:b8:4d:be:2c:e2:a3:14:9b:cd:74:50:
cf:93:a6:ce:05:e5:1f:0c:95:ab:93:2f:aa:d6:f7:
bf:39:09:40:c8:15:c7:b9:9c:f0:dd:38:4a:ba:c3:
eb:18:2b:4e:fc:f1:69:35:1d:06:91:45:b6:13:72:
55:14:ba:f4:41:b7:c1:26:d3:e1:01:f3:21:94:8e:
19:4a:32:ad:30:be:2c:3e:bc:a2:07:f6:38:3e:dc:
8b:a6:ba:4a:e0:54:23:7a:78:ab:fa:9f:d2:46:a5:
37:e2:26:75:88:1d:14:9f:f8:e8:52:6b:0b:15:3e:
dc:74:0f:f3:3b:7d:3e:87:cc:5b:47:4a:3d:d3:cd:
b3:cb:3c:e8:77:3b:9b:94:f6:33:d4:17:75:ec:85:
82:83:72:9a:9c:48:0d:6b:28:5d:c8:66:b7:7b:9c:
ea:e4:81:ce:ed:b5:d6:a5:ce:35:13:55:6c:6e:ad:
43:a2:95:8c:8e:41:a0:a1:da:5a:4e:47:64:49:80:
a1:46:46:5b:ef:5e:85:81:ef:f2:c5:33:da:6e:47:
83:24:b6:16:00:19:9c:d7:e0:a4:63:08:92:a0:77:
0b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:5B:77:FC:AA:45:24:DF:FC:D8:71:FB:5E:1E:2E:56:90:E8:87:CF
X509v3 Authority Key Identifier:
keyid:C7:E8:D9:59:F1:C9:56:4A:33:F2:8F:E4:4A:B6:14:B8:F6:2B:00:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x-jZWfHJVkoz8o_kSrYUuPYrABs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/24e327-7658-463c-8990-b1c9b789aaa9/1/Tlt3_KpFJN_82HH7Xh4uVpDoh88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/24e327-7658-463c-8990-b1c9b789aaa9/1/x-jZWfHJVkoz8o_kSrYUuPYrABs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.60.28.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:8b:b0:5c:0f:3a:f1:13:10:f2:85:a7:20:21:d1:b2:11:3a:
c5:0f:c6:3c:2f:a0:4e:c0:9d:16:b6:ad:2c:73:40:4e:d3:7d:
70:a0:56:76:36:a4:33:81:af:e3:36:fd:00:c0:36:bb:ea:3b:
82:8a:b8:82:83:bf:d6:b5:b1:dc:e9:3f:f1:29:bb:aa:6d:29:
1e:ba:f2:3f:97:06:4a:b2:7a:5f:5b:aa:14:f9:68:6f:6a:3e:
7f:69:88:d7:7e:90:d8:74:e8:0f:39:c5:7c:4a:06:46:5f:af:
b5:9e:42:fe:92:2e:38:84:54:3c:5b:f3:78:2b:02:7b:d5:18:
56:33:24:47:6b:2a:9e:99:2d:1e:c2:9b:a0:9a:0a:f0:8e:b5:
53:c9:08:8f:95:38:f8:95:95:fd:04:53:ae:1b:cb:6a:bf:e9:
b6:be:25:66:3f:fe:48:33:8e:04:03:e6:ac:f7:af:ea:1e:d2:
bd:82:73:ca:3b:97:91:a3:46:55:dd:8c:c6:f0:9c:bb:31:fd:
56:b1:20:2e:19:dd:40:2d:1d:f4:da:72:c5:ac:22:b4:13:dc:
d8:9e:54:31:0e:29:fc:5b:49:b6:44:39:9a:37:1e:f1:35:0c:
97:35:a1:32:d6:e2:a5:26:38:24:36:5e:23:92:64:3b:9e:d4:
9e:96:e8:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:47 2024 by rpki-client on console-ams.rpki-client.org