Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/9c1362-46fd-489a-bb95-669a8feb7147/1/EDYCFRwUSDNpKAsynzAoiUTtnOs.roa
File: EDYCFRwUSDNpKAsynzAoiUTtnOs.roa (raw, json)
Hash identifier: lcTHPpy7js7s0dj/rC5TU3YHenMYrim0+OrrsvEtKmQ=
Subject key identifier: 10:36:02:15:1C:14:48:33:69:28:0B:32:9F:30:28:89:44:ED:9C:EB
Certificate issuer: /CN=4812ff485ffd794a6948078afe4e076afe617635
Certificate serial: 015D98
Authority key identifier: 48:12:FF:48:5F:FD:79:4A:69:48:07:8A:FE:4E:07:6A:FE:61:76:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SBL_SF_9eUppSAeK_k4Hav5hdjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/9c1362-46fd-489a-bb95-669a8feb7147/1/EDYCFRwUSDNpKAsynzAoiUTtnOs.roa
Signing time: Wed 23 Feb 2022 16:03:29 +0000
ROA not before: Wed 23 Feb 2022 16:03:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3242
IP address blocks: 185.149.191.0/24 maxlen: 24
185.149.188.0/24 maxlen: 24
185.149.189.0/24 maxlen: 24
185.149.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89496 (0x15d98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4812ff485ffd794a6948078afe4e076afe617635
Validity
Not Before: Feb 23 16:03:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=103602151c14483369280b329f30288944ed9ceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b1:a8:02:6e:14:aa:d5:7e:76:fd:89:27:fa:
b6:8d:c6:a0:e2:e4:c0:5f:e2:68:3b:b1:e2:d3:a4:
51:74:3d:c7:10:e4:9a:2a:6f:75:b8:89:84:9e:94:
68:1a:24:95:31:a0:97:19:65:7f:49:4e:69:a5:69:
bb:05:21:f4:fb:5d:fe:42:f0:a6:de:3b:b2:34:84:
d4:df:02:0f:31:b8:58:64:5f:d5:0d:84:37:34:eb:
35:cf:d3:00:ad:7a:35:2f:63:0c:b7:84:af:ef:f1:
40:39:2b:a9:49:57:45:cd:4b:a5:17:b2:e7:60:d3:
4d:21:fb:a3:77:9e:0d:76:de:b4:9e:b4:7a:f4:f2:
8f:8e:bb:d5:49:c2:ee:24:26:7a:3a:ae:fb:db:09:
6f:73:de:12:d3:27:97:68:7d:be:01:cc:7c:e5:12:
1e:f1:07:47:85:4b:33:9b:b8:a3:b0:9b:15:27:ef:
20:44:81:5c:ca:b5:9a:01:d8:fa:27:01:bd:39:7f:
2d:3f:c2:ea:f0:46:cc:2d:5e:97:56:3d:4e:72:b5:
19:23:b1:e6:3e:67:d1:72:d2:d3:91:47:b1:c7:15:
02:98:80:83:6c:8f:0c:6a:0c:ff:42:92:fb:4f:cd:
2c:83:f4:13:e9:53:d6:54:82:7f:84:7a:08:e4:57:
79:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:36:02:15:1C:14:48:33:69:28:0B:32:9F:30:28:89:44:ED:9C:EB
X509v3 Authority Key Identifier:
keyid:48:12:FF:48:5F:FD:79:4A:69:48:07:8A:FE:4E:07:6A:FE:61:76:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SBL_SF_9eUppSAeK_k4Hav5hdjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9c1362-46fd-489a-bb95-669a8feb7147/1/EDYCFRwUSDNpKAsynzAoiUTtnOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9c1362-46fd-489a-bb95-669a8feb7147/1/SBL_SF_9eUppSAeK_k4Hav5hdjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.188.0/22
Signature Algorithm: sha256WithRSAEncryption
85:f8:f7:87:83:8f:2b:fa:cc:bd:15:b6:7f:88:59:58:0a:53:
51:47:b3:15:40:e3:9a:0c:72:f6:35:f7:c0:ac:a8:f4:e8:b7:
2d:0b:db:62:56:30:92:7f:13:6c:05:bf:d7:44:fe:34:52:51:
0a:2b:1d:64:53:b6:5a:3a:6e:78:f0:ca:74:e3:b0:e8:40:f1:
59:0e:fc:0c:9e:8e:e3:53:d6:83:a3:28:af:7d:bf:ea:96:bb:
9f:e1:7e:c9:ac:a9:d5:3f:f2:db:a9:91:f0:0b:b4:e1:1a:0d:
9d:33:8d:10:a0:60:3a:1d:78:61:21:41:66:1d:18:77:42:2b:
58:95:9a:05:65:3b:9d:33:ce:9d:f3:2e:30:61:76:72:75:2d:
66:ff:72:7a:3b:e1:05:36:e4:8a:7f:b7:73:2d:2d:6f:c1:8a:
38:ef:4c:3f:ac:0f:6c:2e:a6:30:aa:fc:4e:4a:8b:da:1e:4a:
b0:ac:f2:e9:ac:19:37:63:13:5e:49:2d:5d:bf:ad:83:fe:fc:
2a:54:a7:ce:21:2d:f5:dc:de:f4:77:5f:1a:a6:ba:47:5b:63:
8a:a8:ec:e6:92:e0:cb:48:c9:bb:2a:14:3b:fa:a1:cf:45:1e:
ed:8f:ef:24:e0:c7:0c:25:72:87:a5:56:a9:a3:6f:97:cc:10:
ef:c9:54:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 18:12:56 2025 by rpki-client