Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/TCCEdMr-2iGWNGQLFlVTZk7Ar5A.roa
File: TCCEdMr-2iGWNGQLFlVTZk7Ar5A.roa (raw, json)
Hash identifier: K3OKazVxZa2uaegNcwoHhTllP0i4V3Knt8Uz5EzQorE=
Subject key identifier: 4C:20:84:74:CA:FE:DA:21:96:34:64:0B:16:55:53:66:4E:C0:AF:90
Certificate issuer: /CN=cb952f9c339cabd14234d00c84a252d7ec71a2a2
Certificate serial: 12412C3A
Authority key identifier: CB:95:2F:9C:33:9C:AB:D1:42:34:D0:0C:84:A2:52:D7:EC:71:A2:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y5UvnDOcq9FCNNAMhKJS1-xxoqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/TCCEdMr-2iGWNGQLFlVTZk7Ar5A.roa
Signing time: Sat 01 Jan 2022 05:58:56 +0000
ROA not before: Sat 01 Jan 2022 05:58:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202634
IP address blocks: 212.5.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 306261050 (0x12412c3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb952f9c339cabd14234d00c84a252d7ec71a2a2
Validity
Not Before: Jan 1 05:58:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c208474cafeda219634640b165553664ec0af90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:23:ee:c0:9c:63:17:c0:b9:e7:e8:46:7b:b7:
1d:ce:60:e6:3e:b3:c3:40:4d:44:ba:8e:e9:89:de:
83:3e:38:90:79:09:57:d3:b8:82:11:dd:f0:3f:ba:
66:38:99:4f:91:b4:51:9c:15:f2:b6:19:b0:55:a9:
2c:48:f7:15:38:7d:80:00:43:79:6b:6c:4b:bb:b7:
94:ee:25:b4:1d:91:08:5c:a8:87:78:95:c7:b0:a5:
45:40:e8:d6:98:da:ef:03:56:e7:22:6b:99:dc:a4:
c3:fe:57:dc:7e:93:a9:a6:b6:4a:c0:f2:f0:86:ba:
69:94:d3:c8:02:73:9d:c4:ad:e5:2d:6c:7a:83:a2:
49:ee:d2:e7:c8:ed:b8:4f:ca:f7:e3:65:8b:e0:a7:
91:fd:49:5e:3d:69:8a:8e:03:d0:8c:bf:3b:6c:a2:
df:e1:55:02:2d:d1:7d:10:98:a9:e1:6f:89:87:26:
eb:aa:76:01:7e:1c:c5:29:ad:fc:60:a9:22:07:1f:
e2:28:2a:aa:e0:00:89:5a:3f:54:ac:d3:14:11:3a:
a1:c1:11:47:fb:23:f2:05:52:cb:98:24:39:91:e6:
24:aa:34:02:8f:d5:16:e5:5f:36:75:c3:3f:d3:87:
0b:cb:03:88:87:b0:43:dc:de:32:be:2b:9b:c2:c7:
35:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:20:84:74:CA:FE:DA:21:96:34:64:0B:16:55:53:66:4E:C0:AF:90
X509v3 Authority Key Identifier:
keyid:CB:95:2F:9C:33:9C:AB:D1:42:34:D0:0C:84:A2:52:D7:EC:71:A2:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y5UvnDOcq9FCNNAMhKJS1-xxoqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/TCCEdMr-2iGWNGQLFlVTZk7Ar5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/y5UvnDOcq9FCNNAMhKJS1-xxoqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.5.51.0/24
Signature Algorithm: sha256WithRSAEncryption
86:a2:08:df:00:d8:13:25:f0:b7:03:4f:fd:c3:8a:2f:41:2c:
44:b6:eb:13:65:e5:f2:b5:b3:aa:4f:2e:85:c4:bb:0a:0c:c1:
c3:18:40:2f:4d:94:ce:3c:53:ef:08:3f:8b:22:83:7d:76:38:
ef:d0:d6:e9:c7:aa:77:e5:cc:6a:cf:cf:22:c3:6e:c4:2c:1a:
95:4b:2e:cf:ad:a9:b8:29:c2:6b:bb:37:da:26:92:b6:de:eb:
40:70:b0:18:a4:ac:fc:fc:d0:c2:e0:40:de:c1:d5:e3:4e:23:
38:1f:8f:46:34:93:4d:83:4b:b9:6e:25:6e:cc:bd:a5:3a:8a:
18:90:de:16:50:ca:a3:89:b6:a3:da:78:d0:fb:1d:f6:1c:8b:
62:92:48:7f:72:4e:3d:b9:c6:be:c5:2f:3a:24:e9:cc:25:e4:
a0:6b:52:30:11:06:5c:bd:01:1d:bb:0d:e8:8b:d8:a7:16:df:
8c:e7:bd:29:f3:15:d6:5d:28:0c:1c:cd:1a:c4:32:c9:87:1d:
04:bc:27:8e:45:80:a6:56:d1:3a:c0:43:df:69:db:b7:b2:6a:
50:97:cb:d0:f3:a2:8c:77:1e:4c:5d:ee:39:c8:cf:94:ef:6d:
84:e4:5b:96:e1:2a:02:b5:11:92:5d:30:3e:35:79:d8:ae:ae:
af:b8:f3:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:41 2024 by rpki-client on console-ams.rpki-client.org