Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/b4c97b-e005-4cd6-8335-8091ebce3bbf/1/48XWOZB2B6tIok9d5tFtnwmJ8Ws.roa
File: 48XWOZB2B6tIok9d5tFtnwmJ8Ws.roa (raw, json)
Hash identifier: tnh4D1ZOImE0MlaSWr8FDlWHPUw6XgJmOR8Jp9VLiw0=
Subject key identifier: E3:C5:D6:39:90:76:07:AB:48:A2:4F:5D:E6:D1:6D:9F:09:89:F1:6B
Certificate issuer: /CN=e05d28f149793a3d72e8ef041e9c9e0d9a66b21e
Certificate serial: 01828D266C2F5462A438C2F485BFB49E5661
Authority key identifier: E0:5D:28:F1:49:79:3A:3D:72:E8:EF:04:1E:9C:9E:0D:9A:66:B2:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4F0o8Ul5Oj1y6O8EHpyeDZpmsh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/b4c97b-e005-4cd6-8335-8091ebce3bbf/1/48XWOZB2B6tIok9d5tFtnwmJ8Ws.roa
Signing time: Thu 11 Aug 2022 13:44:41 +0000
ROA not before: Thu 11 Aug 2022 13:44:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36239
IP address blocks: 185.65.146.0/24 maxlen: 24
185.138.171.0/24 maxlen: 24
2a0b:40c1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8d:26:6c:2f:54:62:a4:38:c2:f4:85:bf:b4:9e:56:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e05d28f149793a3d72e8ef041e9c9e0d9a66b21e
Validity
Not Before: Aug 11 13:44:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3c5d639907607ab48a24f5de6d16d9f0989f16b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:72:04:50:cc:3d:79:c2:2b:8d:7c:22:b1:7b:
56:7a:f1:c1:82:80:29:61:74:a4:1d:88:68:87:f1:
94:33:97:57:d6:6c:83:8c:ff:39:9e:ca:bb:8a:76:
c5:0c:f5:11:76:a3:33:69:11:c6:6e:8f:1b:8a:74:
5e:da:f7:d7:a7:36:df:58:9d:22:43:07:8c:60:c0:
4a:65:91:7e:16:8d:41:f4:1d:85:17:5a:5c:da:71:
3c:44:bc:d0:48:ed:6f:75:53:37:4f:c3:47:32:ae:
20:1a:7d:3c:4b:53:96:26:29:f4:f4:61:3b:bf:e9:
06:a3:f4:4a:b0:e3:95:54:be:65:16:2d:10:4d:91:
b5:cf:aa:03:f6:9a:95:e8:c7:00:38:ac:59:b1:85:
18:aa:8e:b2:3f:08:29:5a:f8:22:41:5a:bc:2b:29:
d4:58:fe:79:27:d9:90:03:86:ca:aa:9d:ff:f2:0c:
59:18:94:eb:02:bc:76:00:92:76:d3:67:bf:0b:c7:
d5:8e:29:be:23:96:d6:37:b7:98:f7:12:97:e3:9c:
e6:3e:e9:4e:18:06:17:9a:a6:ea:1b:b6:32:9d:bd:
34:f0:d9:01:8e:6a:31:bf:1a:bf:a1:c5:6f:de:5a:
85:91:e0:42:f8:e3:05:41:29:4c:08:b7:63:91:9e:
f5:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:C5:D6:39:90:76:07:AB:48:A2:4F:5D:E6:D1:6D:9F:09:89:F1:6B
X509v3 Authority Key Identifier:
keyid:E0:5D:28:F1:49:79:3A:3D:72:E8:EF:04:1E:9C:9E:0D:9A:66:B2:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4F0o8Ul5Oj1y6O8EHpyeDZpmsh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b4c97b-e005-4cd6-8335-8091ebce3bbf/1/48XWOZB2B6tIok9d5tFtnwmJ8Ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b4c97b-e005-4cd6-8335-8091ebce3bbf/1/4F0o8Ul5Oj1y6O8EHpyeDZpmsh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.146.0/24
185.138.171.0/24
IPv6:
2a0b:40c1::/48
Signature Algorithm: sha256WithRSAEncryption
2f:06:94:48:f8:1c:f8:9c:1c:74:4f:97:d8:35:2a:27:70:7d:
e6:9f:cd:e3:7f:23:f9:7e:b7:9b:50:2b:54:22:5d:2a:23:16:
e3:a2:4b:e3:2f:89:3c:71:39:32:70:39:47:a9:3b:63:8b:27:
cc:24:98:31:9a:35:8d:23:a3:56:4d:be:34:78:35:34:83:04:
a8:19:77:11:b4:bf:23:8a:4d:c4:54:e5:9f:e4:27:7b:39:b8:
81:1a:cd:68:92:51:36:c5:a7:3a:58:0c:93:07:4f:b0:18:d5:
77:43:95:4f:f9:ec:4a:2b:d1:37:68:42:58:18:f7:1b:31:d3:
5d:5a:87:31:18:d5:27:dc:dc:8b:59:6b:f1:4d:3a:92:7d:1e:
24:85:f1:56:2a:99:23:5f:3c:da:0d:32:98:0e:94:2f:98:5a:
e1:ae:42:cc:ce:c6:8b:9d:ab:b6:ec:53:b2:39:c4:83:2c:c7:
89:7d:dc:97:20:70:fa:ec:88:53:1d:48:89:b4:a7:b5:aa:1e:
bf:64:1d:ec:4f:ca:8d:aa:f6:b9:2b:79:de:b9:b9:f7:ea:98:
01:58:b6:bb:64:7a:2c:0f:ec:12:71:d9:c3:81:bc:12:00:99:
f4:2f:31:88:9a:d7:06:9b:11:48:7e:73:92:8b:56:bb:ae:c9:
16:ea:51:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:01 2024 by rpki-client on console-fra.rpki-client.org