Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/ef0b92-5d85-4792-b551-9a358362829c/1/M_4_FEPbH3gxmxbpGyLXxzVxOWQ.roa
File: M_4_FEPbH3gxmxbpGyLXxzVxOWQ.roa (raw, json)
Hash identifier: fWQ2Ch0T3dI9Hhwc8pJxYhElO/xnezuw0lZWfyN007U=
Subject key identifier: 33:FE:3F:14:43:DB:1F:78:31:9B:16:E9:1B:22:D7:C7:35:71:39:64
Certificate issuer: /CN=167782bea46fd271768ff46d9b45c057a9df5481
Certificate serial: 0847062C
Authority key identifier: 16:77:82:BE:A4:6F:D2:71:76:8F:F4:6D:9B:45:C0:57:A9:DF:54:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FneCvqRv0nF2j_Rtm0XAV6nfVIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/ef0b92-5d85-4792-b551-9a358362829c/1/M_4_FEPbH3gxmxbpGyLXxzVxOWQ.roa
Signing time: Sat 01 Jan 2022 12:56:46 +0000
ROA not before: Sat 01 Jan 2022 12:56:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205101
IP address blocks: 185.219.132.0/22 maxlen: 22
185.219.132.0/24 maxlen: 24
185.219.135.0/24 maxlen: 24
185.219.134.0/24 maxlen: 24
185.219.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138872364 (0x847062c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=167782bea46fd271768ff46d9b45c057a9df5481
Validity
Not Before: Jan 1 12:56:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33fe3f1443db1f78319b16e91b22d7c735713964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:29:08:22:3b:c7:83:d1:2e:27:ed:40:3f:f8:
01:09:dd:23:66:e1:d3:dc:a5:29:c4:2a:c0:af:59:
fe:5d:f0:a5:2e:88:30:2c:e4:b9:22:bd:a0:7f:ab:
a4:fb:09:ab:cf:1d:49:f3:37:38:75:db:e6:f3:f3:
76:18:97:ce:7a:86:bf:0d:ab:e4:6c:38:ae:5e:e5:
ae:58:bf:60:70:53:65:a9:80:8c:7b:a1:a7:65:21:
8c:cf:6d:e4:79:58:52:19:42:dd:1c:75:03:6b:16:
26:3d:4d:fe:e4:cc:77:31:37:81:56:35:9a:09:0f:
35:9b:d4:01:e8:b1:72:83:99:78:53:51:de:6f:de:
19:b1:5f:6f:fc:50:a2:fb:99:4c:9e:88:75:b7:72:
c9:56:79:77:d9:a6:cf:a0:b1:94:83:e3:16:d9:eb:
59:33:7f:e2:c0:a8:4e:32:09:a5:34:5d:8b:30:6d:
29:db:e9:10:46:71:ee:6f:fb:d2:07:40:c5:80:89:
4b:9b:2f:07:b7:12:96:7b:fe:23:e2:be:75:93:a3:
60:a3:d0:dd:c6:3b:bb:ff:79:d0:81:b2:d6:51:1b:
72:1e:e7:30:65:3c:cf:d5:f9:a8:6e:10:14:23:de:
cb:9f:96:5c:61:c2:49:25:0a:62:56:c4:59:b7:e1:
c1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:FE:3F:14:43:DB:1F:78:31:9B:16:E9:1B:22:D7:C7:35:71:39:64
X509v3 Authority Key Identifier:
keyid:16:77:82:BE:A4:6F:D2:71:76:8F:F4:6D:9B:45:C0:57:A9:DF:54:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FneCvqRv0nF2j_Rtm0XAV6nfVIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/ef0b92-5d85-4792-b551-9a358362829c/1/M_4_FEPbH3gxmxbpGyLXxzVxOWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/ef0b92-5d85-4792-b551-9a358362829c/1/FneCvqRv0nF2j_Rtm0XAV6nfVIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.132.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:ce:cd:eb:8f:41:ac:2c:f6:18:0a:96:c1:cd:4f:3d:25:01:
1d:9f:da:48:09:91:27:a8:5a:17:bb:6f:14:fd:36:b3:2a:a2:
d0:d7:7e:ba:4b:28:f5:ca:b8:5e:cd:62:e5:df:d4:ed:02:a5:
ad:1a:d0:6a:f1:14:d8:94:eb:39:7a:e6:58:d5:f1:9a:1f:e8:
52:b8:38:da:be:5c:b4:dd:8f:52:eb:76:ac:d0:89:a9:c8:df:
67:74:9b:ef:8f:64:f0:b2:cc:64:06:9e:3c:75:60:38:d2:06:
51:04:04:0e:36:d7:fe:44:7a:2a:92:84:46:07:81:01:ab:32:
6f:54:54:0e:79:01:d6:52:2b:f6:8f:af:fe:82:83:5a:0b:a2:
f9:6d:a7:97:79:6e:ff:52:6a:6d:01:48:43:97:f2:a8:a5:ea:
05:03:ed:c2:67:d8:e6:17:1d:c0:30:be:dd:43:8c:91:4e:e1:
e7:13:85:bb:d5:0e:c1:8b:8e:49:db:b4:95:f8:7e:b3:32:26:
da:18:36:f1:b9:a2:cb:53:08:85:25:91:f1:86:84:eb:9c:ec:
bc:08:dd:57:c7:15:06:74:1f:85:4c:40:a3:8b:d3:8a:be:94:
0c:af:45:ed:9f:45:54:ab:34:11:22:ba:08:4e:9f:d3:34:b5:
bf:1a:63:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:58 2024 by rpki-client on console-fra.rpki-client.org