Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/54687f-efa5-4620-8619-3155ba8cb74f/1/4QUo6ZhvGzB4SR4lsfetKIgU0EI.roa
File: 4QUo6ZhvGzB4SR4lsfetKIgU0EI.roa (raw, json)
Hash identifier: 7jUUrHdParVoCxGDBviWLs5pZqpQe8hkiWkvsi3PAyI=
Subject key identifier: E1:05:28:E9:98:6F:1B:30:78:49:1E:25:B1:F7:AD:28:88:14:D0:42
Certificate issuer: /CN=7c6dc7395815af045048f4ce3910d04008ff3a7c
Certificate serial: 01856E1D396250F8DEBC3828ABFABD6A73DE
Authority key identifier: 7C:6D:C7:39:58:15:AF:04:50:48:F4:CE:39:10:D0:40:08:FF:3A:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fG3HOVgVrwRQSPTOORDQQAj_Onw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/54687f-efa5-4620-8619-3155ba8cb74f/1/4QUo6ZhvGzB4SR4lsfetKIgU0EI.roa
Signing time: Sun 01 Jan 2023 16:14:47 +0000
ROA not before: Sun 01 Jan 2023 16:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51862
IP address blocks: 185.132.44.0/24 maxlen: 24
185.132.47.0/24 maxlen: 24
185.132.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:1d:39:62:50:f8:de:bc:38:28:ab:fa:bd:6a:73:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c6dc7395815af045048f4ce3910d04008ff3a7c
Validity
Not Before: Jan 1 16:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e10528e9986f1b3078491e25b1f7ad288814d042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d0:6d:2a:8e:cf:c3:6d:9d:51:1b:11:07:fd:
ed:dc:0e:4a:dd:68:46:ad:88:d2:59:1d:57:03:cd:
79:07:3f:b2:be:88:ab:cd:d8:b1:c9:dd:27:2e:1b:
db:2b:32:9e:e0:f0:68:1a:82:4d:7c:ef:78:1c:d2:
9c:c4:2c:0d:a3:89:27:90:9b:6e:7f:49:d9:05:c6:
05:68:6b:1f:88:6a:79:2b:95:c4:7b:15:e6:5f:77:
d5:b9:4e:c1:3d:a5:77:e0:38:b2:2d:b5:e4:cd:d0:
f9:b2:1b:36:84:95:6a:31:b4:1b:47:12:99:72:90:
df:03:03:67:79:01:ba:bd:75:e9:e8:9f:27:fb:a6:
e8:0d:e8:d8:f9:9c:df:ae:1d:b8:9b:b2:c3:80:64:
e1:de:ab:46:27:08:00:86:5b:8e:af:32:15:c3:5a:
c7:98:49:ec:e1:9f:c3:d1:9f:a7:e0:a3:13:ea:d9:
b6:8a:43:56:a8:16:80:fc:70:0e:5f:ad:32:80:d3:
87:55:08:e2:09:6b:e3:12:4f:b6:7c:ae:0f:77:cf:
b5:5d:6e:51:92:8a:83:f2:12:ba:17:d9:39:8e:24:
01:95:bb:fa:8c:c4:68:08:ea:48:99:54:68:0d:73:
63:e4:60:57:57:6e:29:db:d4:6f:e9:ad:9b:f7:f1:
18:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:05:28:E9:98:6F:1B:30:78:49:1E:25:B1:F7:AD:28:88:14:D0:42
X509v3 Authority Key Identifier:
keyid:7C:6D:C7:39:58:15:AF:04:50:48:F4:CE:39:10:D0:40:08:FF:3A:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fG3HOVgVrwRQSPTOORDQQAj_Onw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/54687f-efa5-4620-8619-3155ba8cb74f/1/4QUo6ZhvGzB4SR4lsfetKIgU0EI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/54687f-efa5-4620-8619-3155ba8cb74f/1/fG3HOVgVrwRQSPTOORDQQAj_Onw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.44.0/23
185.132.47.0/24
Signature Algorithm: sha256WithRSAEncryption
81:9e:25:17:2d:c1:b5:77:32:68:fd:1b:50:fa:17:42:9f:5b:
9d:21:c9:a2:55:49:5a:37:c2:3d:bd:99:d0:f8:08:31:7b:80:
f9:17:07:9a:97:9d:94:fe:2f:e8:8c:50:54:11:82:b4:4e:97:
66:43:2b:57:59:8d:5d:7e:77:03:30:7e:7d:92:fd:f8:f6:b6:
c7:dc:b7:25:b0:20:ad:44:46:9c:c4:09:85:c8:bb:4a:1a:50:
40:7c:8d:4d:5d:ea:0e:42:4c:84:3b:65:39:5b:01:5f:d6:4c:
b1:70:1e:e1:6c:1a:ee:52:b0:c8:df:3a:e0:77:b9:67:00:c2:
2a:cc:46:ce:78:3f:9e:b6:84:62:a9:4c:56:7e:47:13:ec:84:
f3:65:af:63:99:8e:58:6d:96:40:74:d7:67:2b:73:e0:08:39:
9e:34:9b:7c:d1:ec:01:64:33:d9:fb:bb:f8:c7:08:27:f3:28:
d9:53:ad:7c:b0:d6:60:e1:5e:a8:d3:66:dd:34:ad:87:2e:25:
26:11:a9:98:b4:9a:c6:15:dd:64:31:63:88:a5:4d:1b:0a:d2:
1a:06:a4:04:6d:e9:3c:fc:a6:d5:82:c4:cc:a7:e3:02:50:89:
f1:15:ca:c6:bc:b8:c0:ac:01:21:e5:a4:a7:8d:8e:98:9a:e8:
c5:e3:38:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:30:19 2025 by rpki-client