Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/TkBmsm_DemXJngUxeySoTNyNC_8.roa
File: TkBmsm_DemXJngUxeySoTNyNC_8.roa (raw, json)
Hash identifier: sP9KlK3GHQZAGuiwGIWVJKUH2+fbOBGbG8LQINo05lg=
Subject key identifier: 4E:40:66:B2:6F:C3:7A:65:C9:9E:05:31:7B:24:A8:4C:DC:8D:0B:FF
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 03B141A7
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/TkBmsm_DemXJngUxeySoTNyNC_8.roa
Signing time: Mon 07 Mar 2022 09:47:18 +0000
ROA not before: Mon 07 Mar 2022 09:47:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 83.147.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61948327 (0x3b141a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Mar 7 09:47:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e4066b26fc37a65c99e05317b24a84cdc8d0bff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6a:df:a7:8c:99:7c:3b:27:29:04:bb:51:74:
c5:2d:5c:9e:6f:cb:4b:d7:a6:54:92:07:69:d0:95:
25:73:c3:e0:40:2a:14:b3:63:0f:21:22:f2:cb:ac:
06:4d:f6:01:da:b0:1e:08:69:50:96:23:ec:eb:84:
2f:40:12:d1:a2:53:20:5a:bd:b0:02:e5:a3:40:48:
01:b5:e2:6a:83:64:ee:99:07:2e:fc:c7:c0:88:e5:
51:3c:73:bf:c5:64:6f:35:f7:e5:f6:a4:27:6f:7e:
e2:41:55:65:05:ce:6f:e5:07:ce:8b:e8:3a:17:13:
cb:ee:bf:48:df:e4:9b:25:1c:cd:41:32:5f:e1:17:
40:c3:4a:e1:e3:7f:40:d9:2d:cd:7d:27:32:a5:51:
4a:d5:95:3a:9b:3e:8d:ca:06:57:0e:d5:a3:18:3f:
83:a4:2f:3c:d7:57:c1:70:41:bb:c0:c6:9a:1b:ce:
dd:5f:92:31:ab:eb:ea:5d:7c:8a:9e:a8:4b:38:cf:
92:2e:50:87:04:c6:01:b2:75:db:11:aa:9c:4f:e4:
cf:08:28:32:0c:10:1f:64:4d:fe:c9:0b:72:87:c7:
cd:39:7d:bf:77:54:09:e8:f1:a0:cd:60:dd:0c:2a:
47:25:e6:27:4e:e3:41:c4:d9:9a:fe:60:d2:51:04:
92:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:40:66:B2:6F:C3:7A:65:C9:9E:05:31:7B:24:A8:4C:DC:8D:0B:FF
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/TkBmsm_DemXJngUxeySoTNyNC_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.56.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:5c:24:d9:54:f4:8d:be:ee:3b:d2:18:41:d3:6e:d6:f7:72:
e4:9a:3a:e3:79:f3:57:db:4b:e3:de:82:4b:0e:5b:25:54:3a:
6a:f4:b2:f4:e3:c0:30:a9:d1:59:13:dc:2a:9a:e8:a3:40:51:
d6:41:f4:5e:66:c1:38:08:81:03:6a:cb:b8:96:2f:6b:44:a7:
33:f3:17:c3:a9:12:b1:b8:21:23:6b:91:45:a7:db:cb:ce:6c:
bb:d0:ac:a7:55:e9:20:44:10:de:34:68:ce:64:7f:5e:d9:a8:
f1:0c:1f:35:dd:37:ff:e1:b4:f8:ae:6b:03:d6:4c:ee:04:9e:
dd:8c:b0:0f:60:9e:7a:43:3b:ac:4f:28:15:2e:16:95:c8:33:
a6:7d:f1:30:b4:4d:80:29:e1:bc:69:59:30:ec:f8:6c:a2:6f:
37:3a:0e:84:66:aa:8f:21:d6:f3:72:3b:f2:18:da:a0:f8:f7:
03:5e:7f:c0:a5:67:eb:aa:61:92:b4:2a:59:9e:44:cf:3c:e6:
b5:cb:5f:04:cc:c9:52:1c:4d:80:32:d9:0c:8d:99:22:bf:6e:
ec:a6:5c:d8:29:56:08:a7:8f:f4:78:a9:25:cd:2c:fa:1b:19:
38:dd:7f:1f:c3:39:3f:37:c1:69:2b:3f:27:2b:74:08:5d:d7:
39:02:86:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org