Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/65c2d9-80d4-459f-ae61-b5bd428f190c/1/4FtaEwVbfgn-vF6RIAeo5pCYC6g.roa
File: 4FtaEwVbfgn-vF6RIAeo5pCYC6g.roa (raw, json)
Hash identifier: lgek8yKdsDD1lwbOijBqCvhu1i3OKNv8hr4zJtrSvqI=
Subject key identifier: E0:5B:5A:13:05:5B:7E:09:FE:BC:5E:91:20:07:A8:E6:90:98:0B:A8
Certificate issuer: /CN=82f18b80339d8ae637f4a02f335bbec7c8c26bde
Certificate serial: 01857295E0DC550BA060CF16D988F2B04CA5
Authority key identifier: 82:F1:8B:80:33:9D:8A:E6:37:F4:A0:2F:33:5B:BE:C7:C8:C2:6B:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gvGLgDOdiuY39KAvM1u-x8jCa94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/65c2d9-80d4-459f-ae61-b5bd428f190c/1/4FtaEwVbfgn-vF6RIAeo5pCYC6g.roa
Signing time: Mon 02 Jan 2023 13:05:03 +0000
ROA not before: Mon 02 Jan 2023 13:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50055
IP address blocks: 185.136.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:e0:dc:55:0b:a0:60:cf:16:d9:88:f2:b0:4c:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82f18b80339d8ae637f4a02f335bbec7c8c26bde
Validity
Not Before: Jan 2 13:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e05b5a13055b7e09febc5e912007a8e690980ba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4b:c3:7d:b4:42:ea:05:74:ea:73:68:6d:22:
30:9c:11:ec:3f:67:97:2d:dd:f1:53:1b:5f:00:e1:
96:3d:5b:19:57:8d:f4:94:78:c2:2b:4c:1f:07:17:
13:ed:0b:ef:e5:2b:06:a4:ba:32:84:81:c5:56:92:
42:53:e4:c9:c3:29:b2:99:c8:6c:29:44:52:0d:ad:
a8:17:29:c0:c7:22:e5:c9:64:ac:e4:b7:02:0c:e2:
c2:ae:ef:e2:e2:d0:93:35:3a:ce:49:a3:c5:25:32:
99:0d:b0:7d:26:70:f6:37:cf:4c:5b:40:5a:6a:0f:
41:95:5e:b8:2b:32:dd:7b:75:2c:ce:64:7c:92:8d:
db:e5:1b:e7:9a:dc:d8:4a:cc:2a:e7:96:c6:62:38:
fc:80:7d:42:d8:38:68:eb:ef:d0:01:39:08:92:0a:
af:04:cb:0e:a7:d8:05:42:e1:e4:ef:3d:f4:a9:54:
8f:61:ec:8e:ab:53:f4:6a:23:1c:24:89:fc:57:7c:
37:88:3f:9f:1e:1e:09:13:88:b9:18:3a:59:98:f2:
83:d0:f8:50:0b:3f:e7:6a:88:ac:f2:24:3c:f4:fa:
80:15:da:29:b4:75:ea:ab:8c:d5:e6:33:2a:8a:96:
84:a2:e5:fd:cd:e7:fa:be:db:b8:c9:91:2b:a2:18:
5c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:5B:5A:13:05:5B:7E:09:FE:BC:5E:91:20:07:A8:E6:90:98:0B:A8
X509v3 Authority Key Identifier:
keyid:82:F1:8B:80:33:9D:8A:E6:37:F4:A0:2F:33:5B:BE:C7:C8:C2:6B:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gvGLgDOdiuY39KAvM1u-x8jCa94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/65c2d9-80d4-459f-ae61-b5bd428f190c/1/4FtaEwVbfgn-vF6RIAeo5pCYC6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/65c2d9-80d4-459f-ae61-b5bd428f190c/1/gvGLgDOdiuY39KAvM1u-x8jCa94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.56.0/22
Signature Algorithm: sha256WithRSAEncryption
85:39:30:bd:49:5a:c4:e1:53:8c:a5:e0:e0:29:07:90:5e:89:
20:42:57:6e:bd:2d:08:d0:2e:f6:1e:7a:6d:be:b3:13:26:49:
21:88:91:55:77:14:40:7d:1b:3d:c5:f2:6e:83:e0:6f:49:8f:
d7:e7:ec:69:c0:00:62:9d:e1:38:82:4e:4d:6d:cd:1e:2a:98:
70:e7:cb:28:67:12:84:6b:f1:46:e7:a7:20:2d:d2:dc:c8:d0:
40:d0:62:22:46:89:5c:5f:61:da:f7:c2:a1:72:61:1e:35:a9:
67:07:ad:6c:40:4e:31:f3:c2:4f:06:12:7d:23:bc:02:9f:24:
ca:ea:a5:51:0c:5b:3d:6f:bb:6a:47:42:ed:66:ea:c5:35:67:
e2:e6:90:d9:d3:49:87:84:b6:ae:47:f9:89:e7:79:f2:5f:b2:
3c:89:18:05:3a:da:1d:c5:13:92:b9:17:f7:be:5f:5a:1c:b1:
e0:b5:61:1b:87:06:58:4b:98:63:17:b1:4e:86:63:a6:fa:27:
46:c2:ef:61:38:ed:db:92:0a:95:f1:ef:0e:99:67:9e:c1:23:
5e:a2:c7:7f:ad:07:d8:09:8c:16:ed:d7:5c:08:6d:68:f1:b2:
db:bf:30:8d:8e:31:2d:d8:0d:82:53:ad:60:3b:a8:85:d9:c4:
88:a4:4b:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:23 2025 by rpki-client