Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/afae6c-2982-4119-906f-895f86287506/1/TVGmk8XsAFvfE8E6zjOyXKwshbM.roa
File: TVGmk8XsAFvfE8E6zjOyXKwshbM.roa (raw, json)
Hash identifier: G/rwhon5+cZTa1pGSMBxetYrUJ/P8YurEPrEiPe7oVk=
Subject key identifier: 4D:51:A6:93:C5:EC:00:5B:DF:13:C1:3A:CE:33:B2:5C:AC:2C:85:B3
Certificate issuer: /CN=b9de70122e49285d05b05f9bbf4449bfc80830e5
Certificate serial: 4F4529
Authority key identifier: B9:DE:70:12:2E:49:28:5D:05:B0:5F:9B:BF:44:49:BF:C8:08:30:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ud5wEi5JKF0FsF-bv0RJv8gIMOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/afae6c-2982-4119-906f-895f86287506/1/TVGmk8XsAFvfE8E6zjOyXKwshbM.roa
Signing time: Sat 01 Jan 2022 01:52:08 +0000
ROA not before: Sat 01 Jan 2022 01:52:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212324
IP address blocks: 185.217.141.0/24 maxlen: 24
2a10:c700::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5195049 (0x4f4529)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9de70122e49285d05b05f9bbf4449bfc80830e5
Validity
Not Before: Jan 1 01:52:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d51a693c5ec005bdf13c13ace33b25cac2c85b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:25:12:42:7a:22:7d:c6:89:ed:d3:9a:64:1e:
b5:0e:74:b4:12:95:56:06:90:e2:31:48:28:aa:c5:
28:2a:d1:15:ae:cd:a0:e7:fe:2a:ba:b9:c8:cd:1b:
c9:b6:c6:7a:93:7b:1f:e2:a9:b3:51:a6:fa:54:37:
32:8a:ba:14:8e:dd:2e:cf:da:cb:93:07:3d:0b:22:
3c:50:32:24:a3:1c:eb:ed:a3:5d:da:2d:cf:0f:3f:
17:5c:f1:a4:f0:0b:a6:d6:c4:f0:e0:af:97:d7:bf:
42:59:67:f3:60:39:f5:28:44:43:24:3c:79:5a:e3:
13:a0:1f:b8:af:ac:ce:a5:da:8b:2a:4f:58:5e:77:
1a:8a:b5:cc:b1:ad:d0:44:25:66:37:1f:d6:ac:78:
0e:03:67:14:fb:de:aa:4a:8d:63:62:8a:36:fe:a5:
99:f9:44:07:44:c0:2a:0f:7b:60:5f:c8:38:bd:ea:
f4:23:62:47:c3:ac:3d:1f:4a:b1:bc:11:51:b6:d4:
06:ea:02:74:e9:05:a9:9b:21:73:7e:1c:d5:56:f0:
07:2e:5d:da:31:d0:1c:29:99:98:43:de:0f:06:54:
3c:6b:f8:2d:7d:98:81:59:30:49:fe:b4:95:54:35:
8b:1f:73:0c:a7:98:ff:bb:88:27:a1:25:19:6e:bf:
ab:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:51:A6:93:C5:EC:00:5B:DF:13:C1:3A:CE:33:B2:5C:AC:2C:85:B3
X509v3 Authority Key Identifier:
keyid:B9:DE:70:12:2E:49:28:5D:05:B0:5F:9B:BF:44:49:BF:C8:08:30:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ud5wEi5JKF0FsF-bv0RJv8gIMOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/afae6c-2982-4119-906f-895f86287506/1/TVGmk8XsAFvfE8E6zjOyXKwshbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/afae6c-2982-4119-906f-895f86287506/1/ud5wEi5JKF0FsF-bv0RJv8gIMOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.141.0/24
IPv6:
2a10:c700::/32
Signature Algorithm: sha256WithRSAEncryption
30:2a:54:b6:e1:d0:e9:0b:5d:82:50:e9:ea:03:8a:ca:f3:57:
b9:8d:e6:a9:f0:1c:05:47:04:fa:8e:37:29:99:b6:ee:cd:f7:
1e:f6:5b:72:e4:1e:f7:a3:be:de:27:7f:a3:5a:b6:fb:2e:89:
c3:80:18:a5:b5:d8:01:49:71:0f:83:85:07:26:20:1c:21:a7:
81:dc:44:b8:fa:19:5b:ba:0b:05:83:b4:7b:e1:63:ec:bc:e6:
71:24:2f:75:ac:6d:4d:dc:fd:be:02:0d:59:a9:07:59:b2:b1:
04:a3:59:0b:16:d6:94:9e:43:e1:b0:58:36:0a:fc:00:76:87:
7d:45:dd:19:ef:38:14:fb:d4:55:30:63:5a:f4:fd:48:e2:7c:
08:bb:2c:80:72:c0:9a:1c:4b:8f:de:ab:77:14:c5:b2:e0:35:
7b:ed:2d:4a:4a:aa:52:ea:72:cb:1a:fb:7b:d5:a5:86:ea:20:
d4:12:3a:92:b5:1c:ce:0f:a2:08:28:a0:e0:61:16:67:25:dc:
97:c6:0f:77:84:fb:04:db:3d:66:cf:97:9e:7a:f6:7d:b3:86:
61:eb:76:ad:69:98:3e:6b:d2:d3:b8:6d:b2:b9:0a:5b:7f:cc:
a5:81:5c:6f:b4:0c:36:d6:03:bb:13:8b:03:7d:e0:fb:ab:39:
ee:63:be:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:27 2024 by rpki-client on console-ams.rpki-client.org