Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/tks0xykrobDbd0JgcA3vPtxXfv8.roa
File: tks0xykrobDbd0JgcA3vPtxXfv8.roa (raw, json)
Hash identifier: Y73S+W+yFuNAVZfaszMS3OnP7rtfe44DIAQpT7aJ4CI=
Subject key identifier: B6:4B:34:C7:29:2B:A1:B0:DB:77:42:60:70:0D:EF:3E:DC:57:7E:FF
Certificate issuer: /CN=d25b90b8981b591d75a7e935e1304a74075602fd
Certificate serial: 0516C5DD
Authority key identifier: D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/tks0xykrobDbd0JgcA3vPtxXfv8.roa
Signing time: Sat 01 Jan 2022 12:59:13 +0000
ROA not before: Sat 01 Jan 2022 12:59:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203667
IP address blocks: 193.141.177.0/24 maxlen: 24
193.141.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85378525 (0x516c5dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25b90b8981b591d75a7e935e1304a74075602fd
Validity
Not Before: Jan 1 12:59:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b64b34c7292ba1b0db774260700def3edc577eff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:cf:d3:d2:58:70:16:a5:58:d1:93:d8:a7:3f:
0f:0f:78:ae:97:0f:44:93:1d:a4:e9:7b:2b:55:e1:
4c:11:a6:35:12:e2:aa:3d:a0:c3:12:e9:c8:54:ed:
e3:17:98:a6:eb:b9:03:ae:fb:23:ba:54:fb:bc:44:
da:a4:d0:52:55:ae:97:05:ae:e2:71:bc:db:c5:9b:
f0:89:e6:6a:f7:a6:63:23:f6:51:c7:51:d1:82:ad:
48:d0:fc:7f:ed:fd:16:17:bf:a8:f2:3b:6a:d4:9b:
1a:d8:43:22:4e:fb:0a:67:46:9a:89:fb:6e:c8:5c:
4b:1d:43:f7:41:6a:18:77:a5:e6:15:e7:0c:94:19:
38:9b:1c:07:49:f8:c4:66:65:ff:00:d2:29:8c:27:
08:82:02:62:c0:af:3a:68:94:f8:ac:a2:f6:66:9a:
ef:93:08:3a:52:f6:34:fb:42:6e:20:62:15:09:73:
58:33:bd:a0:ac:af:5e:12:1b:33:fa:bf:10:8d:e4:
14:c8:b6:81:0a:d4:1e:ff:94:01:0b:ee:dd:8f:2d:
34:af:c7:75:c8:4f:49:6c:2c:35:ce:0d:6a:d8:f9:
f6:25:6b:2d:e1:cc:2c:dd:7d:d5:26:bc:89:e1:49:
9f:2d:d1:42:8c:8e:d4:29:08:5b:22:f8:aa:f0:23:
37:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:4B:34:C7:29:2B:A1:B0:DB:77:42:60:70:0D:EF:3E:DC:57:7E:FF
X509v3 Authority Key Identifier:
keyid:D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/tks0xykrobDbd0JgcA3vPtxXfv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.141.121.0/24
193.141.177.0/24
Signature Algorithm: sha256WithRSAEncryption
90:32:18:b7:ad:b7:1b:7b:1c:19:74:0f:72:49:84:e2:0c:a7:
dd:fc:c8:7e:a2:86:79:b6:82:d3:a8:0d:4f:02:fd:d1:1c:4f:
88:e2:87:e7:0a:fd:5a:23:63:8e:4e:d8:48:66:e4:9c:37:12:
4e:db:97:07:8c:60:72:a9:18:05:d1:59:f9:0a:e1:ef:f7:f7:
b0:47:ca:c5:2e:9e:3c:0b:9b:fe:bd:89:f1:b5:0c:8f:36:3c:
28:2d:63:0a:28:bd:e1:1b:8e:06:22:77:ac:e6:33:41:e6:a7:
bf:80:a0:40:d6:af:c5:9c:35:b1:3b:e8:ac:db:85:aa:e1:b8:
66:b6:09:33:e4:a3:7c:68:dd:a6:f0:c5:b5:23:4a:c1:12:89:
2e:b1:89:da:92:fb:c3:83:5c:cc:4c:a9:ba:2f:fe:2f:35:ed:
d4:85:11:30:79:f2:f5:98:20:68:ea:bc:32:8b:a6:a9:ef:dc:
8a:12:79:73:7e:9a:8a:08:f5:9b:c5:d9:56:db:d4:b0:f6:80:
d9:3e:c1:7a:4a:fe:94:31:95:50:5e:66:e7:4a:6f:f1:6b:aa:
a6:71:09:74:d2:14:69:75:c5:33:5b:5c:41:11:ec:2f:2a:f7:
e7:e6:6d:f9:27:25:b9:60:5c:c7:b6:2d:73:01:7f:1a:f1:c0:
2d:4c:f8:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:46 2023 by rpki-client on console-fra.rpki-client.org