Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/4QVb4RQtByaeQdp5QFbleC0hpqc.roa
File: 4QVb4RQtByaeQdp5QFbleC0hpqc.roa (raw, json)
Hash identifier: zDULWeuyElyARURkiFUHLcU35RuxJnVisDBuRzedxDs=
Subject key identifier: E1:05:5B:E1:14:2D:07:26:9E:41:DA:79:40:56:E5:78:2D:21:A6:A7
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17B731D1
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/4QVb4RQtByaeQdp5QFbleC0hpqc.roa
Signing time: Sat 01 Jan 2022 04:54:14 +0000
ROA not before: Sat 01 Jan 2022 04:54:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48115
IP address blocks: 185.133.72.0/24 maxlen: 24
185.166.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 397881809 (0x17b731d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1055be1142d07269e41da794056e5782d21a6a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:13:bb:93:93:0d:6f:5e:40:42:8a:b0:0e:76:
f4:92:23:fe:63:b0:f0:72:3c:c7:d5:e3:b1:30:31:
50:84:ed:9a:57:94:ba:62:0c:9c:48:20:07:36:3b:
b8:bd:41:59:f3:44:ec:ea:06:7c:22:a3:f1:97:40:
4b:a1:3c:b0:75:0a:90:cc:98:49:33:e1:84:ee:4c:
7c:57:d9:1c:e8:07:a0:79:72:03:00:95:5c:be:fc:
8b:37:f8:f4:7f:06:b9:73:ac:6a:e3:86:f0:32:ed:
ab:57:98:bf:fe:e6:c7:4c:15:95:94:a2:c1:22:63:
b5:8f:e8:b2:8e:1b:10:d2:b5:ec:45:0a:98:8a:cf:
26:3d:f2:69:4b:84:08:01:f5:b9:5b:83:01:64:c2:
a4:bd:46:d8:f2:9e:ba:e3:3f:ec:c5:bb:14:75:fc:
43:62:4e:60:83:19:ef:3c:a3:47:e4:8b:36:f3:95:
82:97:73:c0:ef:b0:a5:7a:da:8b:3f:01:2b:9e:77:
fe:e4:7c:b2:17:da:97:e0:8b:ff:ea:d0:af:40:6a:
9b:d5:a7:b8:ec:7a:24:97:53:fd:71:da:46:bf:21:
18:ed:15:1a:ce:36:26:74:bb:9b:f7:1b:d2:8b:bb:
b8:4c:ad:3d:7e:cc:bc:7e:b1:4f:2f:2f:fd:cd:db:
e2:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:05:5B:E1:14:2D:07:26:9E:41:DA:79:40:56:E5:78:2D:21:A6:A7
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/4QVb4RQtByaeQdp5QFbleC0hpqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.72.0/24
185.166.238.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:09:90:b3:ad:06:44:04:f7:3d:55:88:84:0c:9c:c2:89:50:
d7:82:ff:2c:f8:9e:e5:60:ac:ce:9c:36:5d:b2:bb:d3:d0:5a:
da:7f:69:cc:69:bf:93:1b:6e:d7:3e:14:46:e8:c5:81:2d:b6:
0a:9e:0a:6c:4c:52:f9:40:95:2f:a7:45:b9:bc:45:8f:06:20:
bf:ab:76:ac:60:07:77:d3:76:d6:08:24:26:b3:c0:f9:72:00:
f5:c3:33:96:ed:32:06:09:62:f7:a3:82:2a:ee:4d:6d:c0:d0:
3c:8f:0c:e3:94:48:f8:39:a1:15:60:76:c0:09:09:7e:a9:ae:
40:12:9e:42:9f:6d:08:1d:ae:b0:a2:08:c6:c4:b2:0a:f3:3d:
27:01:06:1f:d1:e0:83:94:f9:75:de:b9:0c:bb:f7:49:27:06:
f9:df:2c:e7:d6:02:00:7d:1f:7c:ac:1f:20:0f:8b:f8:08:54:
4c:23:a0:7d:8b:99:ef:93:ad:fb:1e:c4:be:13:11:fc:6f:db:
d9:a3:f3:33:f3:b9:ac:85:2d:95:7c:82:35:24:de:b2:df:8a:
1a:38:ac:70:5b:2d:a0:47:52:97:15:8b:08:2a:d8:f4:06:e6:
c5:5e:3f:9e:ec:43:18:a8:2a:b5:36:11:49:e4:5b:02:4e:e8:
35:04:80:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org