Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d10a1c-0ade-4bcb-bbfc-67ba7a215630/1/4tTfbo6KIJiyVUHo2eR35VBH69s.roa
File: 4tTfbo6KIJiyVUHo2eR35VBH69s.roa (raw, json)
Hash identifier: 0UOJNTIVUWLw39cPN0zLOUcxV46XjAtwJTX8mKyi38w=
Subject key identifier: E2:D4:DF:6E:8E:8A:20:98:B2:55:41:E8:D9:E4:77:E5:50:47:EB:DB
Certificate issuer: /CN=3ef46116a11f11f51fc9a1d225a0bfcefdbed786
Certificate serial: 0AC8AFC4
Authority key identifier: 3E:F4:61:16:A1:1F:11:F5:1F:C9:A1:D2:25:A0:BF:CE:FD:BE:D7:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PvRhFqEfEfUfyaHSJaC_zv2-14Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d10a1c-0ade-4bcb-bbfc-67ba7a215630/1/4tTfbo6KIJiyVUHo2eR35VBH69s.roa
Signing time: Thu 10 Feb 2022 09:35:38 +0000
ROA not before: Thu 10 Feb 2022 09:35:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6453
IP address blocks: 185.132.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180924356 (0xac8afc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ef46116a11f11f51fc9a1d225a0bfcefdbed786
Validity
Not Before: Feb 10 09:35:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2d4df6e8e8a2098b25541e8d9e477e55047ebdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8c:b9:22:1b:de:26:84:df:3f:04:b3:ab:80:
ba:d5:aa:19:87:9b:76:e4:a4:bd:7e:13:00:14:c9:
8f:e3:54:bf:c8:0c:81:29:aa:64:94:4c:b4:65:1a:
43:a9:20:04:a5:6b:66:65:65:86:bf:84:d5:63:df:
c5:4c:bf:a7:70:62:3b:91:3b:b3:ab:d5:13:55:6a:
5c:b3:f8:57:2d:af:2f:9c:6c:c6:3c:b3:f6:77:58:
11:cf:79:24:1b:6c:12:1c:5e:2b:50:0a:12:0a:6e:
33:f1:9d:c3:f7:00:d4:6c:4e:2f:7a:74:24:c7:35:
da:9c:d9:5a:44:bc:83:71:f2:f0:a4:5b:87:36:c9:
93:e3:04:bd:52:5c:aa:83:ba:52:3f:be:81:0e:8f:
6f:9a:11:e6:d2:0e:bd:66:73:da:44:64:8a:70:89:
dd:2b:32:fe:07:d2:71:1b:3e:8f:72:11:53:ac:8d:
f8:2a:1a:a3:7f:11:fc:97:12:3d:b7:de:9e:68:4f:
c4:0a:10:24:a6:bf:00:e5:bd:2a:a7:9f:22:a2:6d:
fd:5a:42:c7:65:e6:47:1c:12:fe:a7:f7:d9:23:51:
0d:29:ed:00:4c:3f:5a:25:fe:6a:bd:b3:c3:d2:80:
25:a2:88:30:45:54:4f:54:fa:44:60:c2:32:a1:76:
55:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:D4:DF:6E:8E:8A:20:98:B2:55:41:E8:D9:E4:77:E5:50:47:EB:DB
X509v3 Authority Key Identifier:
keyid:3E:F4:61:16:A1:1F:11:F5:1F:C9:A1:D2:25:A0:BF:CE:FD:BE:D7:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PvRhFqEfEfUfyaHSJaC_zv2-14Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d10a1c-0ade-4bcb-bbfc-67ba7a215630/1/4tTfbo6KIJiyVUHo2eR35VBH69s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d10a1c-0ade-4bcb-bbfc-67ba7a215630/1/PvRhFqEfEfUfyaHSJaC_zv2-14Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.148.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:ac:7e:a0:da:50:bd:0c:d0:1d:49:4c:5d:1e:04:2f:a5:a9:
c6:34:ed:dd:83:2d:1c:92:df:f7:d1:c8:36:1e:79:ef:db:70:
b0:84:4b:58:7b:c7:8f:6d:96:b1:ca:22:b2:a5:fc:47:37:df:
2b:a6:1d:2f:fc:8f:3e:c5:90:99:fe:cf:1f:b5:27:4c:b9:69:
46:3e:4d:1f:3c:f4:22:94:d2:cd:21:57:76:1a:2e:e8:4c:78:
93:85:0c:57:a2:fa:9e:ff:92:cf:dc:27:cb:a4:83:dc:3d:9c:
e6:fd:42:cb:5c:e7:14:3e:79:b1:ec:d4:1e:ed:a2:d2:5d:46:
79:81:24:aa:fb:b3:b9:5d:81:eb:6e:05:7d:7a:62:7e:4c:c3:
83:a5:5e:b0:40:d4:8b:e6:dd:b5:7b:82:02:57:57:4e:0d:13:
8e:2f:d1:13:11:98:6c:a6:84:e2:89:42:70:cf:5f:d5:8d:b7:
f4:b2:6d:07:cd:ce:13:a5:cb:c7:f0:69:ef:0c:c3:ed:4c:f1:
22:6e:6b:6d:15:91:77:d9:57:58:4f:e4:9e:17:72:36:43:f0:
f2:24:79:d0:e9:48:34:bb:db:15:8d:a6:59:01:82:12:20:10:
0a:b9:bd:05:96:50:58:cb:d7:11:6a:3f:f3:c0:c4:20:bb:8d:
75:d5:06:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:04 2024 by rpki-client on console-fra.rpki-client.org