Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/d5a49a-4f1a-4961-9c1f-76b0325c3b07/1/tmi_jV4ItK5FmqYGc4KNkt2hUOM.roa
File: tmi_jV4ItK5FmqYGc4KNkt2hUOM.roa (raw, json)
Hash identifier: RtcOMsNlpugQcade6k8NzLvgT+nYRQK0mNjAxHBDAm8=
Subject key identifier: B6:68:BF:8D:5E:08:B4:AE:45:9A:A6:06:73:82:8D:92:DD:A1:50:E3
Certificate issuer: /CN=71601c0b8b13cc121017f6d25117ac1fd0664344
Certificate serial: 15371812
Authority key identifier: 71:60:1C:0B:8B:13:CC:12:10:17:F6:D2:51:17:AC:1F:D0:66:43:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cWAcC4sTzBIQF_bSUResH9BmQ0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/d5a49a-4f1a-4961-9c1f-76b0325c3b07/1/tmi_jV4ItK5FmqYGc4KNkt2hUOM.roa
Signing time: Sat 01 Jan 2022 00:55:16 +0000
ROA not before: Sat 01 Jan 2022 00:55:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49540
IP address blocks: 78.152.128.0/19 maxlen: 19
185.147.228.0/22 maxlen: 22
37.114.64.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 355932178 (0x15371812)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71601c0b8b13cc121017f6d25117ac1fd0664344
Validity
Not Before: Jan 1 00:55:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b668bf8d5e08b4ae459aa60673828d92dda150e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5f:5a:b6:aa:f8:0e:a5:31:33:46:1c:ca:92:
7a:24:15:dd:8e:c5:24:4b:99:82:7a:a3:2e:ca:19:
91:dd:ab:3e:23:72:ce:2e:34:55:14:18:04:34:f2:
46:a9:dd:9f:cb:a3:95:4e:18:d7:9e:47:bb:b2:77:
6c:62:30:1c:19:6e:70:13:2a:1f:32:a5:c4:a8:23:
e0:ac:12:05:a8:75:69:35:23:ed:b2:6b:a5:7b:f6:
e9:b6:b8:50:73:8c:25:07:0e:ad:d0:65:97:30:1e:
97:2b:5a:f8:aa:01:67:d1:a3:7e:40:cd:4b:40:ab:
1a:ea:37:fa:d4:44:0d:67:55:86:8e:ac:f8:90:29:
f8:bf:e6:9f:1a:03:97:c8:bd:00:e6:b0:4f:2d:c4:
39:03:71:f6:8e:44:09:78:51:fa:6d:41:b7:1b:1c:
71:b0:e5:27:9f:46:33:1b:54:e2:e6:58:a3:54:5e:
07:b9:6f:8b:a7:a8:59:be:87:96:ee:27:56:2b:9b:
bb:ce:da:a5:f7:4c:09:fc:eb:24:1f:a1:b5:e4:59:
58:ef:60:89:f9:e0:04:70:5c:7e:0f:37:78:7f:17:
1f:6a:3a:cf:04:2c:c5:42:2c:1a:e1:44:cd:90:f5:
b2:bf:56:99:6d:60:a5:36:36:7c:3c:43:e7:aa:fd:
3c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:68:BF:8D:5E:08:B4:AE:45:9A:A6:06:73:82:8D:92:DD:A1:50:E3
X509v3 Authority Key Identifier:
keyid:71:60:1C:0B:8B:13:CC:12:10:17:F6:D2:51:17:AC:1F:D0:66:43:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cWAcC4sTzBIQF_bSUResH9BmQ0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d5a49a-4f1a-4961-9c1f-76b0325c3b07/1/tmi_jV4ItK5FmqYGc4KNkt2hUOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d5a49a-4f1a-4961-9c1f-76b0325c3b07/1/cWAcC4sTzBIQF_bSUResH9BmQ0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.64.0/21
78.152.128.0/19
185.147.228.0/22
Signature Algorithm: sha256WithRSAEncryption
53:26:b3:30:51:2c:cd:41:87:ea:2a:ba:c2:f9:d4:a5:3a:83:
e1:08:1a:72:c1:15:a9:4f:d7:b3:1f:92:0a:ed:50:92:b3:91:
88:e4:b0:8e:9a:e8:05:e6:58:91:1d:fa:94:0f:32:17:90:f2:
b4:20:43:74:92:8d:d4:73:d4:44:7d:72:8b:a4:c6:87:3e:25:
d3:98:21:7a:ef:c4:25:6e:d5:e1:c8:31:36:e8:48:df:16:7f:
23:e1:36:25:d0:ee:2e:31:14:da:0b:2d:ef:bb:4c:f3:8c:8f:
f7:ac:11:f9:aa:f2:05:c2:b5:27:ed:b3:dc:b7:51:62:51:28:
e0:73:26:c7:21:43:d2:20:9b:85:a8:f1:2e:2e:26:79:1f:8e:
c1:81:99:0f:f9:ad:87:73:44:bf:2a:76:75:10:38:a4:a6:1a:
9a:aa:21:4b:a9:5e:0e:0b:fd:6d:03:ec:b5:73:ae:23:d8:7c:
9f:79:15:e4:f2:9b:1c:54:c6:c7:b8:d1:45:cd:cc:a5:5c:35:
fe:81:37:fd:57:38:b7:b0:3b:d2:95:b7:eb:dc:44:8e:da:07:
99:43:65:02:e2:be:4b:fc:91:c6:20:a1:89:0e:a7:21:5f:a7:
07:e6:23:66:24:40:94:66:4e:e1:86:37:c2:a7:b4:6c:de:7a:
19:32:68:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:30 2023 by rpki-client on console.sobornost.net