Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/TZJ_9lrnAG6auOtAvWfGIG1T0MQ.roa
File: TZJ_9lrnAG6auOtAvWfGIG1T0MQ.roa (raw, json)
Hash identifier: k/Ze39MaXIKuSbVsnQoWuABPausKnm/KjiZorJ8Fvto=
Subject key identifier: 4D:92:7F:F6:5A:E7:00:6E:9A:B8:EB:40:BD:67:C6:20:6D:53:D0:C4
Certificate issuer: /CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc
Certificate serial: D3586F
Authority key identifier: DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/TZJ_9lrnAG6auOtAvWfGIG1T0MQ.roa
Signing time: Sat 04 Jun 2022 11:49:21 +0000
ROA not before: Sat 04 Jun 2022 11:49:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 212.46.57.0/24 maxlen: 24
2a12:fc0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13850735 (0xd3586f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc
Validity
Not Before: Jun 4 11:49:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d927ff65ae7006e9ab8eb40bd67c6206d53d0c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b2:e3:1b:b5:85:06:51:75:78:93:3d:84:b1:
81:2d:05:13:be:16:73:b4:5f:f4:38:77:fb:f6:b6:
34:45:05:dd:e9:72:d0:e5:cf:69:c1:f4:d3:21:64:
0a:51:ae:db:e6:96:9f:37:76:56:72:9d:59:ca:fd:
36:a5:1a:e4:5c:e0:b1:b2:f7:a9:cb:73:e8:39:b5:
e4:78:df:5f:00:c8:c0:89:56:62:57:f6:57:53:d3:
08:43:19:f4:29:e5:ff:e0:2d:1f:0e:7b:fd:96:aa:
6d:40:7c:6d:c8:c3:51:d4:50:09:40:90:4e:1d:1b:
57:1e:b6:d4:96:e0:23:c6:ff:c1:4d:21:e6:0c:2d:
59:bf:c4:67:5b:03:3e:0d:02:59:fe:60:ee:4f:16:
64:4f:05:bc:8c:83:1d:0d:5a:3c:d8:68:df:bc:b8:
69:cf:27:cb:b0:c2:6d:f6:ce:72:b6:d1:bb:fc:72:
c2:6c:3d:7d:5a:3e:51:cd:a5:62:7a:91:c9:6e:8a:
5f:2f:bd:52:10:df:aa:4a:43:78:4a:3b:58:3b:de:
65:ba:e2:65:cf:9b:ba:d1:c3:e4:b3:0d:42:a0:73:
42:6c:c4:72:6f:9b:cb:05:96:c5:9f:47:12:0f:a2:
62:7e:f9:e4:06:a3:7f:0b:82:04:c0:7b:33:0b:3a:
25:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:92:7F:F6:5A:E7:00:6E:9A:B8:EB:40:BD:67:C6:20:6D:53:D0:C4
X509v3 Authority Key Identifier:
keyid:DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/TZJ_9lrnAG6auOtAvWfGIG1T0MQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.57.0/24
IPv6:
2a12:fc0::/44
Signature Algorithm: sha256WithRSAEncryption
92:cd:05:85:bc:3b:54:61:9c:5a:14:e9:b7:3b:8a:4d:99:4f:
c9:6c:f7:9a:e5:43:8e:f1:b5:47:69:73:d4:0d:72:8e:0f:9f:
65:ae:16:fa:98:ce:d2:b2:f9:7c:a0:d6:4b:6e:18:33:bb:22:
41:1a:0b:7c:cb:8d:3e:6d:07:7a:27:5e:f6:84:fc:5f:03:b4:
88:ef:9b:4d:9b:cd:49:4b:98:1b:90:8b:e4:9e:0c:9b:44:15:
3d:a3:d7:00:50:b2:4b:4e:23:cb:19:10:06:ef:85:47:11:3a:
c3:64:7c:0d:46:d2:f1:e9:47:b0:23:49:3b:8d:46:3b:e9:14:
d4:56:ca:af:55:59:0c:c2:25:f4:50:45:36:19:b9:17:86:7f:
74:3a:44:10:97:0b:63:48:54:8f:0f:15:3d:8e:00:ce:a9:cd:
77:ab:a7:64:14:00:ab:a5:43:5a:bf:97:41:5e:50:bb:65:bb:
97:98:a6:cb:31:1b:b3:27:61:7a:9d:75:9f:eb:97:9f:1d:90:
3f:d4:be:43:b2:3c:a7:b8:06:7c:f2:d7:0c:f0:56:15:4c:d4:
00:db:93:ca:99:2c:83:f4:57:e4:e6:47:99:73:05:eb:2c:ff:
44:c6:1c:42:75:3d:5d:e2:b4:8f:15:af:ce:a2:98:93:be:2c:
dd:20:60:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:03 2023 by rpki-client on console-fra.rpki-client.org