Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7d0ba2-97f5-420b-8dc0-c35410b5b691/1/TliE4VRMZSLlD2lyVT3pCVWivR0.roa
File: TliE4VRMZSLlD2lyVT3pCVWivR0.roa (raw, json)
Hash identifier: DEMDWq7z+KzATvOogiooIwHJIUFuCZW/vjrQXTzr2uQ=
Subject key identifier: 4E:58:84:E1:54:4C:65:22:E5:0F:69:72:55:3D:E9:09:55:A2:BD:1D
Certificate issuer: /CN=cae74fcce41933f427c537d365d5e761d2655eb6
Certificate serial: C27B
Authority key identifier: CA:E7:4F:CC:E4:19:33:F4:27:C5:37:D3:65:D5:E7:61:D2:65:5E:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yudPzOQZM_QnxTfTZdXnYdJlXrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7d0ba2-97f5-420b-8dc0-c35410b5b691/1/TliE4VRMZSLlD2lyVT3pCVWivR0.roa
Signing time: Wed 30 Mar 2022 11:54:41 +0000
ROA not before: Wed 30 Mar 2022 11:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60111
IP address blocks: 185.126.108.0/22 maxlen: 22
2a06:c080::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49787 (0xc27b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cae74fcce41933f427c537d365d5e761d2655eb6
Validity
Not Before: Mar 30 11:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e5884e1544c6522e50f6972553de90955a2bd1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:81:33:b0:e5:1d:2c:c1:fe:f4:9e:96:c5:61:
81:37:7f:e4:5c:a6:05:1f:04:ff:5a:29:a4:14:6c:
f8:27:ef:5f:96:80:19:21:fa:c8:a8:95:ed:4f:39:
57:34:10:3e:6b:ba:6f:27:b8:a4:e4:1b:34:9c:14:
6c:88:40:29:b8:4d:08:95:d4:b4:5f:46:36:6f:9d:
8e:8e:c1:cd:1f:2a:1c:c0:ac:14:24:1c:6c:c1:23:
fe:f9:3b:e9:af:ca:19:1a:1b:c1:c5:32:69:c9:58:
93:06:d5:ce:68:ed:e9:c1:09:c7:05:1a:9d:d3:a4:
ef:38:0c:57:af:86:0f:cf:b2:bf:ea:e5:0e:aa:11:
16:5b:57:f1:58:ba:35:4a:17:50:5e:01:de:37:ec:
24:e0:53:47:3d:63:ef:e9:ba:81:38:8b:dc:ae:41:
25:ea:9b:65:36:c2:96:fb:43:b7:96:d0:65:60:d0:
29:37:57:06:9b:9e:4a:52:88:4a:a7:b6:a7:a0:a0:
ff:dd:83:99:96:48:2d:34:c3:41:2f:8e:b2:ef:b2:
77:0a:51:a4:af:ca:51:a0:2c:59:bd:38:0a:0d:0f:
93:ea:a5:ca:71:4a:9f:0e:1a:97:1b:dd:9e:22:cf:
ee:2e:91:00:4e:5d:df:7f:c9:7a:26:2a:1a:c4:65:
bb:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:58:84:E1:54:4C:65:22:E5:0F:69:72:55:3D:E9:09:55:A2:BD:1D
X509v3 Authority Key Identifier:
keyid:CA:E7:4F:CC:E4:19:33:F4:27:C5:37:D3:65:D5:E7:61:D2:65:5E:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yudPzOQZM_QnxTfTZdXnYdJlXrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7d0ba2-97f5-420b-8dc0-c35410b5b691/1/TliE4VRMZSLlD2lyVT3pCVWivR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7d0ba2-97f5-420b-8dc0-c35410b5b691/1/yudPzOQZM_QnxTfTZdXnYdJlXrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.108.0/22
IPv6:
2a06:c080::/29
Signature Algorithm: sha256WithRSAEncryption
94:dd:c3:db:6b:25:ac:d0:76:e8:b0:ca:d8:51:86:53:0f:12:
2a:23:72:70:93:aa:6b:51:15:66:1a:7b:0a:35:bd:16:c9:96:
de:26:40:69:5c:ce:90:b7:aa:66:23:f8:1a:b6:ae:e8:94:af:
f6:7c:65:7a:ba:dd:3a:44:50:e3:05:aa:c9:41:6d:73:28:d1:
ad:62:84:ba:47:a9:7b:10:1d:ce:3d:39:89:34:91:86:7e:0f:
53:3e:68:ea:61:2c:e2:e7:66:e9:ab:d5:5c:d2:d8:59:68:a9:
df:6a:c5:10:d4:00:bc:21:fe:27:49:8c:cc:c7:2b:3c:6c:ca:
f8:05:4a:e1:38:b1:de:0b:ac:e1:39:ce:e0:f6:9f:29:df:a4:
c2:01:1a:93:4c:2d:4b:ba:c4:f3:b1:0c:c6:9e:f6:a1:d1:31:
eb:7f:12:42:c9:c0:e1:fb:10:5d:ff:b1:04:55:a6:f7:b7:4b:
f2:60:39:61:57:55:cb:c0:2b:02:e2:a3:17:27:9c:a6:aa:ae:
3c:a7:ff:7b:3a:41:41:40:2d:7e:1a:a8:ed:c2:5e:4f:ed:b2:
af:29:e0:41:b8:c5:cb:63:8d:31:d9:96:c2:bb:f6:61:6c:a2:
3c:f7:1b:bd:8e:01:ea:5a:b6:96:8d:c5:12:86:0c:da:06:45:
4b:f8:38:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:46 2024 by rpki-client on console-fra.rpki-client.org