Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/aa1797-4373-4a2f-a074-c73cbe70abb9/1/Tcz7dgypmfQ71Jz_LbAcX7QxAlw.roa
File: Tcz7dgypmfQ71Jz_LbAcX7QxAlw.roa (raw, json)
Hash identifier: mRCpRni3uesP3JDLm1xHfgIAhWpjheA7oZMtvwkdbt8=
Subject key identifier: 4D:CC:FB:76:0C:A9:99:F4:3B:D4:9C:FF:2D:B0:1C:5F:B4:31:02:5C
Certificate issuer: /CN=4aab65873cb2782f13c378f5543c691443d16f79
Certificate serial: B82905
Authority key identifier: 4A:AB:65:87:3C:B2:78:2F:13:C3:78:F5:54:3C:69:14:43:D1:6F:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SqtlhzyyeC8Tw3j1VDxpFEPRb3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/aa1797-4373-4a2f-a074-c73cbe70abb9/1/Tcz7dgypmfQ71Jz_LbAcX7QxAlw.roa
Signing time: Mon 28 Feb 2022 07:42:42 +0000
ROA not before: Mon 28 Feb 2022 07:42:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 185.201.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12069125 (0xb82905)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aab65873cb2782f13c378f5543c691443d16f79
Validity
Not Before: Feb 28 07:42:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4dccfb760ca999f43bd49cff2db01c5fb431025c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fe:a9:fe:f6:5b:41:48:3e:c4:76:18:91:fe:
da:a3:46:57:0b:a2:b8:f3:6b:27:1d:de:ed:aa:53:
59:9e:36:34:5c:09:dc:56:8b:37:6f:70:2a:80:80:
2e:1e:92:62:6c:e5:fa:a4:2d:92:68:3a:1e:a7:fc:
31:fe:bc:f7:d7:01:cc:7c:29:8a:0c:2d:5b:8b:84:
82:5e:56:67:d9:b4:94:4d:e1:4f:d4:14:7d:19:93:
5c:a1:0a:34:c1:2e:1e:18:4d:7a:6b:75:aa:51:8c:
7b:b7:bb:f3:6d:d3:d7:4d:cd:f1:be:1c:7f:87:b1:
4d:e8:b7:c9:4e:9b:f3:e0:a3:ad:31:89:24:2d:f7:
c1:76:84:66:5b:1a:ab:ed:6a:31:53:2c:86:88:da:
ea:be:17:6d:b6:4f:87:8c:dc:d1:50:e3:d8:59:72:
c8:ef:e7:6c:e4:31:69:c4:76:95:f6:9e:68:19:7c:
5a:56:39:34:9f:db:c2:66:1f:35:06:eb:42:7f:a8:
01:fe:77:b5:1e:e4:19:ba:e8:b5:c7:d2:51:89:e4:
31:d2:14:35:1e:22:5a:20:6e:ae:73:b4:8b:6d:9e:
22:38:e2:3d:f3:00:ad:ae:48:b5:13:d5:7d:98:b2:
1f:34:bf:78:17:48:98:41:04:32:65:6a:bd:44:7f:
cf:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:CC:FB:76:0C:A9:99:F4:3B:D4:9C:FF:2D:B0:1C:5F:B4:31:02:5C
X509v3 Authority Key Identifier:
keyid:4A:AB:65:87:3C:B2:78:2F:13:C3:78:F5:54:3C:69:14:43:D1:6F:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SqtlhzyyeC8Tw3j1VDxpFEPRb3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/aa1797-4373-4a2f-a074-c73cbe70abb9/1/Tcz7dgypmfQ71Jz_LbAcX7QxAlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/aa1797-4373-4a2f-a074-c73cbe70abb9/1/SqtlhzyyeC8Tw3j1VDxpFEPRb3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.4.0/24
Signature Algorithm: sha256WithRSAEncryption
82:97:2c:57:7d:52:62:15:c8:51:70:1a:bf:cd:5c:e4:ab:e6:
18:2f:0d:aa:4b:1e:ac:97:68:bf:aa:a0:c4:dd:64:16:56:25:
f3:65:f7:98:5b:ec:92:6a:03:59:01:00:d5:cd:13:f7:00:02:
a2:81:99:6a:f7:d2:05:65:51:42:a5:56:97:f9:a9:4c:a5:26:
6b:5c:a2:de:3d:3b:bc:ab:20:47:67:d6:ef:d8:ef:eb:ca:df:
fd:c9:71:11:fd:89:1b:dd:40:d3:bb:fd:00:e3:95:6e:ee:f5:
ec:9e:ed:95:d3:87:a3:80:9d:83:bf:79:e9:67:39:30:93:71:
3b:19:8c:eb:c8:af:78:15:d1:dc:7c:57:91:f8:88:aa:c1:da:
16:9a:7c:9b:07:8c:80:4f:ec:d6:da:5d:eb:91:0d:89:50:95:
be:a4:97:19:93:e0:e8:62:cf:98:fe:91:b7:c5:a5:7a:97:bf:
10:0b:6a:3e:e1:6b:98:40:82:aa:c7:49:3b:13:1c:9f:92:64:
6b:86:f8:16:6f:7b:6e:ac:39:54:c4:7b:db:cc:e1:76:ca:1f:
ec:38:27:c0:c0:b5:3e:2d:b8:00:a8:db:33:d7:65:69:eb:be:
cf:0c:a8:97:6e:e8:8d:e8:2a:91:1f:bc:d6:56:04:85:99:6b:
53:73:b2:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:20 2023 by rpki-client on console-fra.rpki-client.org