Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/tLsXTmXO4Dar1m6Xr3qXcoCQRc8.roa
File: tLsXTmXO4Dar1m6Xr3qXcoCQRc8.roa (raw, json)
Hash identifier: c32DlRkRicBaPFcdwgbnfLmlWWRcl4YX1PHjpHPmQtM=
Subject key identifier: B4:BB:17:4E:65:CE:E0:36:AB:D6:6E:97:AF:7A:97:72:80:90:45:CF
Certificate issuer: /CN=8ad240603ec6ebcd62f72d46f1dc00cb7e1f0b2e
Certificate serial: 018558F453F71D759AD3299A2346C9C412FD
Authority key identifier: 8A:D2:40:60:3E:C6:EB:CD:62:F7:2D:46:F1:DC:00:CB:7E:1F:0B:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itJAYD7G681i9y1G8dwAy34fCy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/tLsXTmXO4Dar1m6Xr3qXcoCQRc8.roa
Signing time: Wed 28 Dec 2022 13:38:05 +0000
ROA not before: Wed 28 Dec 2022 13:38:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61108
IP address blocks: 185.226.40.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:58:f4:53:f7:1d:75:9a:d3:29:9a:23:46:c9:c4:12:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ad240603ec6ebcd62f72d46f1dc00cb7e1f0b2e
Validity
Not Before: Dec 28 13:38:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4bb174e65cee036abd66e97af7a9772809045cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f1:e6:19:ed:a3:34:c0:9d:52:a3:fa:31:74:
5c:b9:42:56:68:63:60:31:df:42:24:a1:20:55:99:
93:75:83:be:d7:d6:e1:ae:b6:ca:42:30:af:e8:da:
d1:eb:48:61:d7:df:18:b0:4e:fb:56:84:ff:54:06:
c8:be:82:26:84:eb:8e:ae:a8:b5:b9:e2:59:76:8f:
64:c6:fb:38:a0:af:95:ce:af:03:ec:32:b4:09:64:
a5:23:80:ce:e8:53:a3:75:21:c4:78:ac:0f:8b:77:
97:5b:70:cd:bc:26:f6:05:79:d1:12:16:ba:2c:dc:
a9:49:94:ef:28:e5:54:39:be:32:5f:ef:b2:af:ad:
ae:b7:28:ee:00:a1:93:ca:30:00:0a:21:24:79:2f:
3d:ba:a7:4e:60:ec:5f:ee:f5:e8:67:92:75:40:fb:
c4:a9:42:3b:de:8b:fe:57:31:8e:1b:22:07:65:91:
69:1a:d7:ff:ce:30:e0:80:3d:29:67:70:b2:a9:60:
34:97:4f:e0:48:95:55:ee:32:56:55:a2:fb:a2:09:
13:82:2f:3d:58:00:c3:db:ab:16:3c:8b:6f:d4:fa:
0d:35:bc:99:da:29:10:a0:55:1b:2e:ba:a2:c7:97:
ee:d5:65:12:dc:79:f2:c5:87:2d:cc:c6:90:f7:ff:
46:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:BB:17:4E:65:CE:E0:36:AB:D6:6E:97:AF:7A:97:72:80:90:45:CF
X509v3 Authority Key Identifier:
keyid:8A:D2:40:60:3E:C6:EB:CD:62:F7:2D:46:F1:DC:00:CB:7E:1F:0B:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itJAYD7G681i9y1G8dwAy34fCy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/tLsXTmXO4Dar1m6Xr3qXcoCQRc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/itJAYD7G681i9y1G8dwAy34fCy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.40.0/22
Signature Algorithm: sha256WithRSAEncryption
61:e2:ef:8d:db:b7:07:49:93:89:74:81:fb:5d:bc:67:94:a1:
c4:bd:28:44:1f:a1:29:3f:ab:ad:b6:b2:52:30:70:81:25:35:
0f:89:1e:de:d0:15:9a:2c:56:29:c3:1e:b7:3a:05:6b:37:27:
28:7c:3d:47:48:34:98:94:b0:5e:65:61:ac:b1:ac:1c:86:b4:
d8:17:4a:76:40:7b:5c:09:48:95:1e:6c:84:54:f6:27:8c:79:
69:9e:d9:da:8c:e5:9d:88:b2:1b:fe:d9:3b:f7:c0:ec:27:8c:
ec:cb:85:15:8c:63:51:40:2b:1f:b9:02:a8:48:b2:ad:2d:22:
3a:44:44:6a:d1:ff:de:86:4b:db:73:4a:f5:51:2c:24:4d:a7:
c8:ce:58:c4:99:59:bd:0e:85:2b:55:59:0f:45:13:92:c1:8c:
d0:dc:58:d2:80:3f:bd:c6:a3:89:68:a6:36:d7:f2:14:bf:33:
d7:df:b4:70:48:20:1e:ea:7e:4e:bd:9b:22:1a:52:95:d6:b1:
8b:52:55:86:55:50:e6:ba:96:04:7d:01:ee:30:77:59:a9:21:
81:26:e1:fe:69:6f:81:b6:34:33:12:41:bf:27:51:b7:1d:71:
42:8f:20:11:91:53:c7:48:a6:26:b1:9b:57:24:de:14:46:74:
6a:9c:78:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:09 2024 by rpki-client on console-ams.rpki-client.org