Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/dd5c15-815d-411d-8a56-82c6cf14dfe2/1/1-4untZbmC2Be7oYL06AOEnsoAdg.roa
File: 1-4untZbmC2Be7oYL06AOEnsoAdg.roa (raw, json)
Hash identifier: v8fegbsBjyd445R8TgVy65jdxcQK9KhehheCZbWMAfo=
Subject key identifier: FB:8B:A7:B5:96:E6:0B:60:5E:EE:86:0B:D3:A0:0E:12:7B:28:01:D8
Certificate issuer: /CN=e1e12a2795b6e4df265f65df0a00cb7c7e45deef
Certificate serial: 02D5CB69
Authority key identifier: E1:E1:2A:27:95:B6:E4:DF:26:5F:65:DF:0A:00:CB:7C:7E:45:DE:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4eEqJ5W25N8mX2XfCgDLfH5F3u8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/dd5c15-815d-411d-8a56-82c6cf14dfe2/1/1-4untZbmC2Be7oYL06AOEnsoAdg.roa
Signing time: Sat 01 Jan 2022 08:02:14 +0000
ROA not before: Sat 01 Jan 2022 08:02:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202211
IP address blocks: 185.69.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47565673 (0x2d5cb69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1e12a2795b6e4df265f65df0a00cb7c7e45deef
Validity
Not Before: Jan 1 08:02:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb8ba7b596e60b605eee860bd3a00e127b2801d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6c:5d:6f:8c:70:7b:f3:35:5b:36:a9:a1:c8:
aa:3f:db:39:21:67:91:40:c4:d2:a5:87:d4:26:d9:
d2:bc:47:50:89:a0:93:cb:75:e0:98:c8:de:36:dc:
cf:d0:25:e4:06:f1:76:24:23:c1:7b:80:f7:e2:aa:
20:9a:14:0a:a6:cc:7c:8e:0c:5d:ae:46:1d:2c:dc:
2c:34:65:0b:65:e2:59:96:82:d4:ec:91:f5:a5:ce:
f4:c0:d7:2e:fc:23:ce:6e:95:c3:f9:ef:c1:13:fc:
96:2a:e5:7d:37:58:75:53:74:51:29:89:5c:48:59:
79:9a:22:92:54:0f:00:3a:d1:b2:76:27:0a:57:b9:
49:c3:11:8f:61:9a:19:22:9d:6c:a7:e7:2f:b4:80:
83:98:5e:0a:c8:7e:b1:e2:49:58:f5:d7:0a:5d:95:
ec:ed:2e:1e:60:20:c9:dc:40:f1:0a:58:8e:d8:d5:
b6:16:ad:62:31:5a:2c:ba:31:f4:b9:5d:bc:94:b3:
ed:db:3a:53:c5:0f:b7:17:4f:a4:25:85:cd:88:66:
c2:d7:7f:4a:64:d8:d3:7f:29:ff:e3:4c:a8:48:da:
75:4b:b0:b7:9c:7b:a2:f0:30:9f:6a:20:28:ed:44:
89:af:f2:ff:b0:a7:17:1f:23:14:a9:d6:b5:4d:76:
5c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:8B:A7:B5:96:E6:0B:60:5E:EE:86:0B:D3:A0:0E:12:7B:28:01:D8
X509v3 Authority Key Identifier:
keyid:E1:E1:2A:27:95:B6:E4:DF:26:5F:65:DF:0A:00:CB:7C:7E:45:DE:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4eEqJ5W25N8mX2XfCgDLfH5F3u8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/dd5c15-815d-411d-8a56-82c6cf14dfe2/1/1-4untZbmC2Be7oYL06AOEnsoAdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/dd5c15-815d-411d-8a56-82c6cf14dfe2/1/4eEqJ5W25N8mX2XfCgDLfH5F3u8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.252.0/22
Signature Algorithm: sha256WithRSAEncryption
ac:3f:10:67:97:f5:54:6a:c8:68:f6:2f:ea:1a:03:d2:8d:20:
cd:aa:91:40:25:ca:8f:96:cf:b3:96:e8:e2:79:61:59:4c:f9:
6b:57:89:96:18:4f:c6:b8:7a:4f:3f:60:33:09:bc:51:e0:a1:
07:0d:e5:f6:fa:9a:db:9a:8a:e3:b2:26:6a:69:4f:30:4a:1b:
4c:38:fb:6f:c0:bd:76:2d:f1:3a:1a:a4:86:72:05:66:dc:cc:
0d:a1:ed:f5:9d:c9:21:83:a5:c0:05:b7:7b:06:39:49:ea:7b:
1e:ef:47:ac:db:7e:0a:2a:15:c3:ae:72:50:4a:6d:c7:8d:9c:
99:52:27:23:9d:4a:7f:65:06:66:a7:1d:0a:ed:b7:f7:d2:fa:
60:bc:13:ba:78:31:21:05:b9:b1:d6:d6:8a:de:9f:15:2e:75:
9e:18:95:07:6a:d4:8a:ed:fa:08:9c:eb:90:80:e3:25:b8:aa:
ba:96:50:05:5c:e9:0a:ac:81:32:99:fb:a5:ae:2c:50:6c:17:
dc:6d:5f:0f:ad:98:fb:a6:da:1c:6a:6c:70:59:5f:25:99:fc:
12:14:a1:55:c5:e3:fd:f5:c7:ee:39:dc:b5:8a:2c:f3:de:e0:
84:13:34:2c:32:ca:0f:ef:92:d7:cc:e5:f5:e5:c8:54:ed:31:
bd:e0:78:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:50 2023 by rpki-client on console-ams.rpki-client.org