Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/Tph0DClEMWsMC5VHzxxJSf8XvmU.roa
File: Tph0DClEMWsMC5VHzxxJSf8XvmU.roa (raw, json)
Hash identifier: y+UEZ0s1sj8osoOXh4VYcAFnTZLt0xogDdUHZ66iIok=
Subject key identifier: 4E:98:74:0C:29:44:31:6B:0C:0B:95:47:CF:1C:49:49:FF:17:BE:65
Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Certificate serial: 01888CE7A6249AA763F6497E86BC1A366BF7
Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/Tph0DClEMWsMC5VHzxxJSf8XvmU.roa
Signing time: Mon 05 Jun 2023 18:52:51 +0000
ROA not before: Mon 05 Jun 2023 18:52:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 37.143.4.0/22 maxlen: 24
46.28.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8c:e7:a6:24:9a:a7:63:f6:49:7e:86:bc:1a:36:6b:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Validity
Not Before: Jun 5 18:52:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e98740c2944316b0c0b9547cf1c4949ff17be65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a9:56:27:74:1a:32:6e:53:d8:d4:4a:db:e3:
6b:34:d8:66:8f:d1:7b:4d:c5:a7:91:87:3c:88:d0:
4d:1c:68:ba:63:6b:5c:07:5b:77:f9:c9:27:65:5c:
48:1d:e5:cc:76:e3:78:62:ce:27:ae:c9:bd:dd:32:
c5:a1:00:e3:5a:ad:47:65:56:3f:b6:c3:c7:7b:0f:
e5:93:0a:72:3e:b0:6c:00:09:b7:43:b2:d8:1b:9a:
95:4a:f2:37:71:e5:b3:92:4e:66:57:c5:fa:fc:f7:
2d:3d:51:a2:28:2a:35:ab:ae:16:f6:3d:e6:12:7e:
21:3a:fd:91:08:5f:27:09:8a:01:59:2d:59:2a:8d:
61:00:7f:22:c2:54:3f:d8:ad:13:86:07:27:cb:e7:
57:7d:19:cc:87:a0:d1:3e:d4:aa:29:da:00:9f:66:
a5:7c:8e:3b:e4:69:7a:a9:9e:74:57:b3:48:77:84:
10:24:e4:8b:2d:00:cb:31:99:f6:00:a2:e7:70:53:
f1:81:38:92:00:da:f9:7c:31:bf:cf:70:6f:e3:05:
27:89:4d:a8:61:ef:ab:dd:fa:cc:0f:8f:d6:5d:e3:
36:b2:94:dc:4b:b1:a7:08:36:94:33:40:57:6d:53:
85:67:e0:20:aa:c8:6a:45:e3:12:de:a8:ab:d1:30:
d4:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:98:74:0C:29:44:31:6B:0C:0B:95:47:CF:1C:49:49:FF:17:BE:65
X509v3 Authority Key Identifier:
keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/Tph0DClEMWsMC5VHzxxJSf8XvmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.4.0/22
46.28.40.0/22
Signature Algorithm: sha256WithRSAEncryption
90:57:64:0e:e8:de:a8:d3:e5:ce:84:f2:6e:94:f7:b1:cd:c8:
1d:09:a4:77:29:91:75:25:a3:cd:f5:3b:e5:31:ab:0b:5b:d9:
3f:aa:fe:97:50:50:83:ac:6f:12:29:07:02:3f:da:2a:a6:49:
0b:8d:56:39:b6:3c:9a:45:d1:30:45:db:6d:a4:83:5a:72:dd:
45:c5:48:4b:7d:dd:29:a4:1f:f9:af:6f:f1:47:ae:e6:e9:60:
a4:f5:9a:f6:cd:62:1f:74:2b:9f:3d:39:39:c9:bf:1f:41:b7:
b3:26:ae:a8:5a:cc:c3:18:92:0e:21:06:82:da:73:2f:a1:56:
56:91:b8:29:15:04:b8:a2:21:89:58:c8:9b:bd:d2:f6:62:0d:
6c:ad:06:b8:09:59:04:4f:d6:3b:b1:80:e3:9b:1c:eb:3c:09:
da:0c:ed:4f:d4:76:ce:d8:be:c6:fc:08:ee:f1:53:8a:a4:c3:
4b:36:a6:fd:ad:c5:04:63:6d:23:0b:da:36:fb:d4:2c:6c:27:
6f:3e:10:a8:1f:7a:e7:a3:93:1b:67:8a:46:fb:cc:27:83:b9:
2d:6f:b9:8d:45:4f:cb:5c:5b:11:c0:20:18:96:c0:07:0e:dd:
34:37:a9:b7:e1:dd:51:6e:14:49:35:71:32:b8:ce:07:80:25:
3c:6b:1b:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:59 2025 by rpki-client