Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/EfpCVnOjJBpH4-awWysKhQR7ZfY.roa
File: EfpCVnOjJBpH4-awWysKhQR7ZfY.roa (raw, json)
Hash identifier: EQssEF9MxzcOtkgqmIqttBFseoGYUXlqSpy8C8x9PpU=
Subject key identifier: 11:FA:42:56:73:A3:24:1A:47:E3:E6:B0:5B:2B:0A:85:04:7B:65:F6
Certificate issuer: /CN=5baa35401e5297b3b527e84f93ea8aa110d97b95
Certificate serial: 018756B1C0A431E16C1D26A6D2B60857A3FF
Authority key identifier: 5B:AA:35:40:1E:52:97:B3:B5:27:E8:4F:93:EA:8A:A1:10:D9:7B:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/EfpCVnOjJBpH4-awWysKhQR7ZfY.roa
Signing time: Thu 06 Apr 2023 13:11:42 +0000
ROA not before: Thu 06 Apr 2023 13:11:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43926
IP address blocks: 185.182.152.0/24 maxlen: 24
185.182.155.0/24 maxlen: 24
185.182.154.0/24 maxlen: 24
185.182.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:56:b1:c0:a4:31:e1:6c:1d:26:a6:d2:b6:08:57:a3:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5baa35401e5297b3b527e84f93ea8aa110d97b95
Validity
Not Before: Apr 6 13:11:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11fa425673a3241a47e3e6b05b2b0a85047b65f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d8:ff:ee:d8:5f:95:62:fe:61:39:f3:a5:ec:
a7:b5:e4:4e:90:bc:b1:29:df:1b:df:8c:29:0b:44:
11:9a:d8:69:9f:51:95:54:e3:30:19:b3:d9:03:f2:
f0:d6:49:51:e3:e1:55:b3:40:35:85:6b:e1:0e:36:
29:c4:f8:93:69:94:34:ee:21:94:02:a0:e3:45:a0:
60:38:3f:f2:af:ac:3e:b5:a7:e2:cb:a3:63:97:dc:
e4:22:d4:58:e2:21:64:4b:fb:75:ba:bd:6d:a0:63:
42:66:3a:08:30:ad:e8:3d:66:ae:06:99:24:75:11:
6d:dd:4e:f9:29:f9:b9:65:1b:c2:fe:d1:7d:a8:a7:
70:d9:86:0d:51:17:95:18:28:fc:8f:e8:d6:fe:8e:
f1:d4:55:7e:e8:b1:e1:05:81:d1:e4:61:db:60:68:
0e:9f:60:05:af:c6:cd:c2:30:0f:fd:23:74:56:e0:
78:2a:ca:8a:df:26:b1:80:6a:1c:f0:36:79:94:bc:
33:f2:40:ee:dd:83:1d:18:ee:35:9a:b2:8b:f1:13:
b9:b0:0a:17:bd:eb:e9:eb:16:b9:bb:b4:91:80:42:
20:32:74:4b:33:f1:6b:8e:f3:12:89:01:20:1c:cd:
63:3e:1c:e1:16:d1:d0:38:92:5d:26:1d:e2:c6:08:
08:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:FA:42:56:73:A3:24:1A:47:E3:E6:B0:5B:2B:0A:85:04:7B:65:F6
X509v3 Authority Key Identifier:
keyid:5B:AA:35:40:1E:52:97:B3:B5:27:E8:4F:93:EA:8A:A1:10:D9:7B:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/EfpCVnOjJBpH4-awWysKhQR7ZfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.152.0/22
Signature Algorithm: sha256WithRSAEncryption
26:9e:db:97:7e:8c:f9:9b:a5:d2:bb:fa:04:1f:ab:ce:5c:43:
17:1b:68:a2:93:13:51:42:da:83:5c:5a:40:08:bf:dd:7d:d2:
3d:86:ee:39:68:94:33:18:36:00:9a:1b:32:fc:48:ec:c6:a0:
81:6d:11:a0:0e:aa:cb:6c:5b:bf:61:41:b2:5d:5c:a3:19:ff:
28:5f:3b:46:77:f5:c3:41:2d:d2:83:ec:a5:2b:7e:80:97:26:
4c:41:be:6c:9d:2f:33:63:22:31:d5:0e:31:89:de:41:75:6e:
47:cf:7c:ee:34:8b:af:75:53:22:b9:f7:7e:27:92:2b:ed:f0:
c9:2b:15:29:b8:cc:92:02:1d:33:91:ba:68:f5:07:0b:9b:ee:
46:2a:ae:7d:e5:81:e6:42:a7:bb:ed:91:94:eb:24:b4:0d:2d:
f8:6a:dc:f8:23:08:83:4f:06:8f:3c:aa:83:a8:23:69:f6:41:
85:d1:7c:26:9a:f8:03:80:62:1a:34:9b:b5:4d:f8:af:9c:dd:
b8:84:84:dd:86:ba:7b:43:1a:b7:45:7c:c2:2f:27:4e:3b:5f:
c4:46:52:18:ff:62:c8:d8:f2:93:0d:05:3b:5c:01:5b:ba:f0:
31:53:f7:b0:39:60:27:0d:cd:85:04:7a:56:a9:54:a5:6a:82:
05:d2:50:fa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdWscCkMeFsHSam0rYIV6P/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViYWEzNTQwMWU1Mjk3YjNiNTI3ZTg0ZjkzZWE4YWExMTBk
OTdiOTUwHhcNMjMwNDA2MTMxMTQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMWZhNDI1NjczYTMyNDFhNDdlM2U2YjA1YjJiMGE4NTA0N2I2NWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNj/7thflWL+YTnzpeynteROkLyx
Kd8b34wpC0QRmthpn1GVVOMwGbPZA/Lw1klR4+FVs0A1hWvhDjYpxPiTaZQ07iGU
AqDjRaBgOD/yr6w+tafiy6Njl9zkItRY4iFkS/t1ur1toGNCZjoIMK3oPWauBpkk
dRFt3U75Kfm5ZRvC/tF9qKdw2YYNUReVGCj8j+jW/o7x1FV+6LHhBYHR5GHbYGgO
n2AFr8bNwjAP/SN0VuB4KsqK3yaxgGoc8DZ5lLwz8kDu3YMdGO41mrKL8RO5sAoX
vevp6xa5u7SRgEIgMnRLM/FrjvMSiQEgHM1jPhzhFtHQOJJdJh3ixggINQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBH6QlZzoyQaR+PmsFsrCoUEe2X2MB8GA1UdIwQY
MBaAFFuqNUAeUpeztSfoT5PqiqEQ2XuVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzZvMVFCNVNsN08xSi1oUGstcUtvUkRaZTVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni9hMWRjZmItODAxMC00MTRlLTllM2Et
NDQwMDE3MDBiOGNhLzEvRWZwQ1ZuT2pKQnBINC1hd1d5c0toUVI3WmZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni9hMWRjZmItODAxMC00MTRlLTllM2EtNDQwMDE3MDBiOGNh
LzEvVzZvMVFCNVNsN08xSi1oUGstcUtvUkRaZTVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCubaYMA0G
CSqGSIb3DQEBCwUAA4IBAQAmntuXfoz5m6XSu/oEH6vOXEMXG2iikxNRQtqDXFpA
CL/dfdI9hu45aJQzGDYAmhsy/EjsxqCBbRGgDqrLbFu/YUGyXVyjGf8oXztGd/XD
QS3Sg+ylK36AlyZMQb5snS8zYyIx1Q4xid5BdW5Hz3zuNIuvdVMiufd+J5Ir7fDJ
KxUpuMySAh0zkbpo9QcLm+5GKq595YHmQqe77ZGU6yS0DS34atz4IwiDTwaPPKqD
qCNp9kGF0XwmmvgDgGIaNJu1TfivnN24hITdhrp7Qxq3RXzCLydOO1/ERlIY/2LI
2PKTDQU7XAFbuvAxU/ewOWAnDc2FBHpWqVSlaoIF0lD6
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:21 2025 by rpki-client