Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/e16ee7-efef-4809-89ff-8bdccce5dfe8/1/TajGox6qokHK1BNbQnaoOOhni0k.roa
File: TajGox6qokHK1BNbQnaoOOhni0k.roa (raw, json)
Hash identifier: sxPyZfe4rhIng9c88o1i4eK3IG2LMGNK8/oawFnRw6s=
Subject key identifier: 4D:A8:C6:A3:1E:AA:A2:41:CA:D4:13:5B:42:76:A8:38:E8:67:8B:49
Certificate issuer: /CN=137e1103775785d012fc8ddab4c02ac03791b9d4
Certificate serial: 1224752C
Authority key identifier: 13:7E:11:03:77:57:85:D0:12:FC:8D:DA:B4:C0:2A:C0:37:91:B9:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E34RA3dXhdAS_I3atMAqwDeRudQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/e16ee7-efef-4809-89ff-8bdccce5dfe8/1/TajGox6qokHK1BNbQnaoOOhni0k.roa
Signing time: Sat 01 Jan 2022 02:00:49 +0000
ROA not before: Sat 01 Jan 2022 02:00:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203715
IP address blocks: 185.126.60.0/22 maxlen: 23
2a06:bf00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 304379180 (0x1224752c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=137e1103775785d012fc8ddab4c02ac03791b9d4
Validity
Not Before: Jan 1 02:00:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4da8c6a31eaaa241cad4135b4276a838e8678b49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d1:89:40:42:3e:3b:bc:5a:ee:b8:9b:87:d3:
2f:48:70:2f:ca:10:f8:64:78:c7:be:4a:16:6a:88:
0c:fa:0e:3a:5f:97:de:00:d8:32:7b:8d:2d:db:77:
a4:c4:54:51:da:c6:0c:8c:0d:a9:5a:2d:c2:05:b5:
48:2e:c9:49:c5:be:9b:bf:83:5d:8d:14:25:15:b8:
8a:a1:75:48:6c:9b:00:4b:21:c9:73:b8:bf:4a:6d:
28:ed:ec:6a:11:f8:e5:ed:c2:a7:a9:6c:23:7c:d5:
89:ab:12:0d:b7:d6:ca:a3:f1:c2:59:e6:07:64:6c:
04:06:99:e5:7d:41:bd:cb:c6:b7:9a:dd:a4:6e:17:
a1:a1:a2:1b:45:8c:07:63:f8:ac:a2:c8:3b:1b:47:
8d:c0:80:b1:8b:45:c8:3e:36:28:52:67:bc:46:67:
03:55:a6:f9:d3:41:a4:aa:ac:0b:45:ae:13:c2:aa:
d1:50:b5:af:9f:0e:80:05:97:aa:da:c5:e7:b3:a5:
c9:21:3f:e8:9c:ea:9e:27:82:c6:11:fb:74:3f:a9:
72:8e:8e:39:a5:2e:45:5c:84:da:ea:55:00:40:3f:
8c:c7:8e:95:97:97:ef:97:81:84:f9:b4:fc:0b:ec:
95:68:50:e5:ee:f7:ed:2a:7b:c3:22:fc:a4:34:9b:
22:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:A8:C6:A3:1E:AA:A2:41:CA:D4:13:5B:42:76:A8:38:E8:67:8B:49
X509v3 Authority Key Identifier:
keyid:13:7E:11:03:77:57:85:D0:12:FC:8D:DA:B4:C0:2A:C0:37:91:B9:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E34RA3dXhdAS_I3atMAqwDeRudQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e16ee7-efef-4809-89ff-8bdccce5dfe8/1/TajGox6qokHK1BNbQnaoOOhni0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e16ee7-efef-4809-89ff-8bdccce5dfe8/1/E34RA3dXhdAS_I3atMAqwDeRudQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.60.0/22
IPv6:
2a06:bf00::/29
Signature Algorithm: sha256WithRSAEncryption
14:3c:40:6e:23:e0:f6:a2:15:3e:02:45:22:25:37:01:00:de:
c8:38:2a:3a:17:0f:5d:3a:79:db:9e:c4:ba:25:5c:15:77:b5:
d0:27:3f:ad:d9:21:3e:c4:05:02:65:fb:08:a4:7e:d6:16:bd:
6e:33:4f:02:90:ea:7e:b3:6b:71:eb:2c:6d:1d:da:ad:98:ab:
5c:a2:0c:11:78:2a:b8:71:cd:9a:60:3c:7a:67:90:3e:6e:f2:
c1:88:33:78:11:2c:9b:41:77:d6:6b:c5:83:21:4b:95:fc:81:
3d:22:9f:8b:be:d3:8f:bc:be:32:19:e9:72:b0:6f:01:d9:b5:
ff:37:72:8d:d4:3f:c2:90:16:2b:5b:9d:6b:e4:cc:c7:87:3d:
a0:6a:5a:ab:13:8c:53:a2:f3:a5:c8:87:fc:cf:9a:46:5c:da:
1c:15:6d:53:68:2b:89:ea:3e:92:d9:7b:07:86:f7:3e:5a:17:
34:f7:c9:6f:68:db:be:31:64:50:71:91:14:40:9f:c0:e5:65:
3c:76:89:9b:32:0d:65:df:52:8a:89:ae:ca:e1:d1:4e:de:73:
36:b8:d8:bc:90:b4:c8:51:48:57:d7:67:b2:06:06:d8:50:a1:
d0:e6:5a:70:80:4a:e6:cb:e5:6d:9c:dd:e5:b7:f1:7d:93:21:
95:30:71:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:49 2024 by rpki-client on console-fra.rpki-client.org