Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/TBTEzpEi10beatUEpjuQFd3S58s.roa
File: TBTEzpEi10beatUEpjuQFd3S58s.roa (raw, json)
Hash identifier: 9U+m4rPN6TEAS8AIgNHtsA9Suu/kBLu6hPNOjBLw1RQ=
Subject key identifier: 4C:14:C4:CE:91:22:D7:46:DE:6A:D5:04:A6:3B:90:15:DD:D2:E7:CB
Certificate issuer: /CN=e5de0de73e73874bbc66738805d373cab833b7a5
Certificate serial: 05B975CE
Authority key identifier: E5:DE:0D:E7:3E:73:87:4B:BC:66:73:88:05:D3:73:CA:B8:33:B7:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/TBTEzpEi10beatUEpjuQFd3S58s.roa
Signing time: Sat 01 Jan 2022 01:50:32 +0000
ROA not before: Sat 01 Jan 2022 01:50:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.137.156.0/24 maxlen: 24
2a10:a100::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96040398 (0x5b975ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5de0de73e73874bbc66738805d373cab833b7a5
Validity
Not Before: Jan 1 01:50:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c14c4ce9122d746de6ad504a63b9015ddd2e7cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:65:fd:b5:9d:87:f1:58:d9:06:c4:74:cf:3e:
c1:2b:aa:fc:d3:69:4d:4e:76:c2:e0:4d:20:e1:0d:
b8:d9:d4:bb:9e:03:cf:72:c3:23:01:39:32:e4:3f:
7e:b5:94:42:b7:49:aa:4b:60:04:81:bc:c1:6f:2b:
bc:a8:33:21:24:7d:e2:25:cd:e9:11:af:a2:d0:bd:
fe:ea:a2:ee:ab:5b:9c:12:fe:67:4a:ce:c7:0a:fa:
bd:3b:23:fe:85:93:bd:7f:6a:c5:e6:ca:2d:a0:6b:
79:4c:fa:dd:78:4b:94:c8:57:6a:47:65:5b:73:18:
49:0b:5c:2d:67:ba:7e:6e:a7:7e:7a:8b:bf:59:aa:
43:e7:99:27:9a:38:3f:6e:ce:cc:83:62:7c:f3:39:
9f:04:ef:f2:c7:41:0e:c5:46:4d:79:c9:37:6f:8f:
a2:04:d8:e8:65:93:61:b6:8d:76:cf:73:77:73:73:
7b:13:28:23:00:76:fb:57:2a:40:3b:4d:7b:13:1c:
17:3e:1a:3e:2a:b1:a4:d0:40:42:6a:71:4e:de:29:
50:17:38:a4:27:ce:c1:e5:0d:ad:d3:20:c6:74:18:
a8:70:a8:ef:36:9f:54:df:86:bd:f4:68:7a:c1:d6:
6d:20:21:b5:e5:75:a5:fd:d5:97:d6:72:f1:c9:8b:
87:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:14:C4:CE:91:22:D7:46:DE:6A:D5:04:A6:3B:90:15:DD:D2:E7:CB
X509v3 Authority Key Identifier:
keyid:E5:DE:0D:E7:3E:73:87:4B:BC:66:73:88:05:D3:73:CA:B8:33:B7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/TBTEzpEi10beatUEpjuQFd3S58s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.156.0/24
IPv6:
2a10:a100::/32
Signature Algorithm: sha256WithRSAEncryption
b1:5c:53:a8:1a:80:c3:9d:44:9f:95:29:7e:a1:a4:14:d4:cf:
c7:0a:d0:9a:ee:eb:8e:db:26:41:e4:59:9c:42:97:97:2a:4f:
f8:5c:cd:e2:4d:20:da:db:77:ab:f9:10:6f:6b:82:07:57:0b:
52:4b:48:bc:42:7b:b5:5d:11:a9:8d:e2:64:ed:93:92:1f:82:
04:74:28:44:f4:7b:c6:7f:76:ba:e3:6a:b4:c6:60:e2:94:a9:
c1:74:c9:d5:59:f5:b5:5a:b7:0a:ea:3f:70:fe:0f:ac:eb:e2:
25:38:ea:d6:30:b0:dd:fe:81:94:27:29:bb:df:b7:23:33:ff:
fb:6e:aa:3f:73:db:76:31:a1:9e:a5:fe:ae:e5:c5:e8:6e:63:
40:b7:28:61:76:8f:59:98:a4:14:26:ad:cb:bf:16:58:ce:ff:
f2:44:fd:f6:6a:a7:51:9c:7a:8d:76:e5:bc:df:55:68:23:dd:
99:84:0f:f2:03:ae:59:72:b2:5d:0d:2f:97:e1:c7:31:3f:ca:
08:6f:a8:c3:f1:0a:0e:68:a8:81:96:ab:fd:f4:2d:78:cd:d3:
e5:f7:d6:03:da:9a:24:d0:1d:d6:81:2f:45:54:ef:72:7a:95:
6d:df:86:7c:af:c5:76:be:40:17:05:de:65:40:06:3b:f4:0d:
60:a5:fb:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:17 2024 by rpki-client on console-fra.rpki-client.org