Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5ca752-14cf-4454-9041-e2bd03ffd58d/1/lEp7GM_GW1-vEXfGXj7HFK6ONXI.roa
File: lEp7GM_GW1-vEXfGXj7HFK6ONXI.roa (raw, json)
Hash identifier: RGEuGVYzUAapvo2JbUZW3XYwNLx1kKgnDYSN+egCx0I=
Subject key identifier: 94:4A:7B:18:CF:C6:5B:5F:AF:11:77:C6:5E:3E:C7:14:AE:8E:35:72
Certificate issuer: /CN=1530fbea2501495977d38815ad3c270826f063a0
Certificate serial: 08BBA6AC
Authority key identifier: 15:30:FB:EA:25:01:49:59:77:D3:88:15:AD:3C:27:08:26:F0:63:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FTD76iUBSVl304gVrTwnCCbwY6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5ca752-14cf-4454-9041-e2bd03ffd58d/1/lEp7GM_GW1-vEXfGXj7HFK6ONXI.roa
Signing time: Sat 01 Jan 2022 09:04:32 +0000
ROA not before: Sat 01 Jan 2022 09:04:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205783
IP address blocks: 185.200.49.0/24 maxlen: 24
185.200.48.128/25 maxlen: 25
185.200.48.0/25 maxlen: 25
185.200.48.0/24 maxlen: 24
185.200.51.0/24 maxlen: 24
185.200.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146515628 (0x8bba6ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1530fbea2501495977d38815ad3c270826f063a0
Validity
Not Before: Jan 1 09:04:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=944a7b18cfc65b5faf1177c65e3ec714ae8e3572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e1:f8:f8:46:9d:60:ef:3a:d1:64:85:0c:d0:
b2:12:e7:37:ad:df:06:a3:0c:17:92:ba:d5:a8:8c:
80:4d:d9:fd:b6:3b:49:e7:da:a4:a4:cc:72:b9:6e:
17:f7:2c:9e:59:eb:94:cb:9d:bd:ea:82:49:c3:61:
57:ae:a1:1b:5b:81:7c:ab:00:06:94:92:5a:96:23:
6d:07:7f:14:55:5c:c0:b0:01:34:6a:07:3d:b2:ea:
31:79:5c:96:e6:cc:ba:09:a3:0d:0d:3e:6f:d2:c1:
a6:65:50:24:f3:08:78:be:2a:f7:1c:e7:41:65:63:
fd:f5:61:d5:37:d4:b6:3b:cf:dd:b2:e3:a9:2d:7c:
ee:1e:25:e8:cd:b7:d0:18:b1:29:9f:73:dc:4e:78:
89:e5:d0:be:de:e8:12:94:59:cb:c2:95:86:6c:08:
32:67:fd:f2:16:ff:69:43:90:53:cd:91:c4:8e:8b:
3b:81:19:db:a6:07:61:84:91:96:27:8d:da:4c:58:
dc:d5:eb:8e:67:60:63:b7:9c:b2:f2:18:de:3c:01:
fa:0b:3b:00:f2:7c:d5:e8:04:d4:30:ab:79:83:6d:
54:5e:dc:24:9f:00:36:60:0d:48:4a:d5:5f:c0:ea:
a1:a8:7c:8c:77:68:f2:cd:e8:4a:1f:1a:2d:f1:76:
d0:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:4A:7B:18:CF:C6:5B:5F:AF:11:77:C6:5E:3E:C7:14:AE:8E:35:72
X509v3 Authority Key Identifier:
keyid:15:30:FB:EA:25:01:49:59:77:D3:88:15:AD:3C:27:08:26:F0:63:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FTD76iUBSVl304gVrTwnCCbwY6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5ca752-14cf-4454-9041-e2bd03ffd58d/1/lEp7GM_GW1-vEXfGXj7HFK6ONXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5ca752-14cf-4454-9041-e2bd03ffd58d/1/FTD76iUBSVl304gVrTwnCCbwY6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.48.0/22
Signature Algorithm: sha256WithRSAEncryption
06:8d:b8:84:42:20:55:26:19:9d:42:2f:08:0b:01:62:06:c7:
cb:19:3d:4e:d3:c7:c8:11:7b:18:67:38:94:01:6c:37:f4:00:
df:77:e9:14:65:ba:b0:0c:2c:9c:c2:fa:88:8d:d7:d5:9e:a5:
1d:4d:90:98:cc:bb:9a:e1:85:ba:4b:b2:14:ad:fc:3e:88:3c:
50:74:cc:5f:0e:82:c6:29:cb:c8:88:3b:82:e2:67:2e:5b:4a:
1c:8b:92:37:ba:63:85:44:53:f3:6c:ff:33:9d:a5:e4:23:59:
b7:c9:02:ce:25:1b:c7:43:9c:79:ca:62:0c:cd:e4:b4:5a:0e:
46:2b:dd:ae:3d:b1:6e:48:7d:fa:12:8e:35:a8:d4:82:63:64:
b6:98:40:f0:4e:1c:22:ca:92:f4:d5:53:52:79:ce:ab:18:f1:
4b:01:b5:dc:7b:ac:15:0f:40:db:56:11:dc:0a:91:7a:4d:e1:
c8:61:3d:fb:d8:a4:3f:ed:54:ab:73:96:c9:d0:51:4c:0d:96:
52:bb:5f:70:52:c9:e1:21:ab:d4:54:38:b2:7a:16:ee:21:02:
fb:85:7a:57:01:69:41:f2:52:af:c8:32:89:1a:d8:d4:81:30:
c4:c6:98:bd:c6:57:f0:7d:75:f0:7c:8d:c1:d6:4d:e5:8d:3c:
f2:11:a5:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:14 2023 by rpki-client on console-fra.rpki-client.org