Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/c192a4-76b2-465d-8818-a30e33a70b1e/1/TudCtryOhv-y8KH1bJ9XaBzJdyY.roa
File: TudCtryOhv-y8KH1bJ9XaBzJdyY.roa (raw, json)
Hash identifier: TI8K/oSgIkVz8/Eoh20I9vg+qzHKMTqm363G2ii3xIM=
Subject key identifier: 4E:E7:42:B6:BC:8E:86:FF:B2:F0:A1:F5:6C:9F:57:68:1C:C9:77:26
Certificate issuer: /CN=5b90551e3c17e0a02d28d6dca279db3e4147f991
Certificate serial: 03372144
Authority key identifier: 5B:90:55:1E:3C:17:E0:A0:2D:28:D6:DC:A2:79:DB:3E:41:47:F9:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W5BVHjwX4KAtKNbconnbPkFH-ZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/c192a4-76b2-465d-8818-a30e33a70b1e/1/TudCtryOhv-y8KH1bJ9XaBzJdyY.roa
Signing time: Sat 01 Jan 2022 07:04:13 +0000
ROA not before: Sat 01 Jan 2022 07:04:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43322
IP address blocks: 193.186.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53944644 (0x3372144)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b90551e3c17e0a02d28d6dca279db3e4147f991
Validity
Not Before: Jan 1 07:04:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ee742b6bc8e86ffb2f0a1f56c9f57681cc97726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:1c:5c:84:4f:b3:b6:10:06:d8:48:d0:b1:a7:
18:2b:b2:a4:ec:39:4b:c0:33:97:41:c5:95:41:8a:
c8:12:ac:e6:f1:96:7c:50:ea:dc:af:f7:eb:0f:e4:
13:7e:0e:61:39:4b:11:de:82:47:f3:65:25:c1:d1:
c5:bd:58:7b:93:ab:5c:cf:9e:4b:06:e6:a5:2c:ab:
14:e7:c4:79:84:50:d4:eb:55:55:86:b8:c9:66:2e:
b1:45:87:77:8c:0d:52:63:9f:d6:2c:e0:35:3e:38:
11:99:70:44:5a:f1:ed:28:0f:09:ae:12:93:1a:c6:
75:74:85:d1:03:85:30:ff:e6:6a:da:c8:f1:ce:95:
a7:d8:70:b0:e6:3d:87:c0:59:bd:ee:d5:3d:d3:31:
25:f2:bf:10:1e:cf:35:8b:e4:64:c1:9d:0e:70:0b:
d6:e1:fb:7e:9f:4b:03:f0:1a:72:79:dd:bc:d2:dd:
d2:91:0b:79:86:3d:fd:2c:b5:1c:ee:73:c1:3d:26:
52:61:12:06:c1:60:04:61:85:e6:f3:cf:8f:3b:53:
23:a8:d3:91:b6:74:62:46:54:fa:22:c4:b6:0a:ea:
a8:81:54:08:cd:4b:ca:33:90:d3:b5:79:50:ca:f7:
d5:7f:79:c5:f1:03:11:1c:3a:52:76:d2:ed:e8:39:
af:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:E7:42:B6:BC:8E:86:FF:B2:F0:A1:F5:6C:9F:57:68:1C:C9:77:26
X509v3 Authority Key Identifier:
keyid:5B:90:55:1E:3C:17:E0:A0:2D:28:D6:DC:A2:79:DB:3E:41:47:F9:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W5BVHjwX4KAtKNbconnbPkFH-ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c192a4-76b2-465d-8818-a30e33a70b1e/1/TudCtryOhv-y8KH1bJ9XaBzJdyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c192a4-76b2-465d-8818-a30e33a70b1e/1/W5BVHjwX4KAtKNbconnbPkFH-ZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.186.208.0/24
Signature Algorithm: sha256WithRSAEncryption
90:ca:5d:ba:f9:65:2b:7a:74:ed:ca:56:07:55:09:66:41:d8:
da:fa:6f:b1:92:5f:ac:d8:b9:d9:10:9d:94:44:5a:80:2b:05:
d6:3f:65:8d:55:5b:25:33:32:68:84:fd:d4:88:74:5c:e1:93:
03:f2:ba:18:cc:38:b0:95:71:ff:97:4b:77:cf:41:96:aa:79:
17:3d:c5:a5:26:5a:5a:f7:b9:b8:38:d4:75:d8:41:bd:96:db:
e9:42:e8:d3:20:fa:9f:a9:db:62:78:9c:00:54:50:7d:40:b7:
23:c9:5c:f4:59:b0:a0:90:95:30:fd:1f:19:1a:34:ff:c2:ab:
17:60:a4:9f:43:5e:5b:c6:a6:9d:cd:89:04:bb:e9:d2:79:db:
7f:c3:cd:66:4e:7b:6f:09:46:ac:22:87:6d:ab:7d:49:e9:cf:
1d:88:ae:10:88:01:ec:6f:c1:17:c3:97:b4:e9:47:1b:34:c4:
af:ab:7a:0d:36:f2:d7:88:7f:12:c2:f3:1e:c5:bc:6d:c3:ca:
eb:75:b6:d8:85:a2:d2:9c:34:f4:5f:34:4b:37:10:6f:e1:90:
b5:fc:58:a6:56:f8:ed:f0:5e:e1:14:33:5b:95:ea:58:d0:4e:
e4:ac:28:c6:ae:da:f9:16:4e:0e:cd:c6:dc:15:c4:b8:dd:45:
b4:4e:b2:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:07 2024 by rpki-client on console-fra.rpki-client.org