Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/E2l0R6khyt4YFbDvLLOpQSo9T_o.roa
File: E2l0R6khyt4YFbDvLLOpQSo9T_o.roa (raw, json)
Hash identifier: W/eUsPO1ecbF8mBDtY/RtVBTiOa7HV2OIDcGW/ObGnU=
Subject key identifier: 13:69:74:47:A9:21:CA:DE:18:15:B0:EF:2C:B3:A9:41:2A:3D:4F:FA
Certificate issuer: /CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Certificate serial: 094D28D2
Authority key identifier: B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/E2l0R6khyt4YFbDvLLOpQSo9T_o.roa
Signing time: Sat 01 Jan 2022 10:02:04 +0000
ROA not before: Sat 01 Jan 2022 10:02:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29050
IP address blocks: 46.182.152.0/21 maxlen: 24
185.14.76.0/22 maxlen: 24
213.243.192.0/18 maxlen: 24
5.43.232.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156051666 (0x94d28d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Validity
Not Before: Jan 1 10:02:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13697447a921cade1815b0ef2cb3a9412a3d4ffa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:da:c9:99:9c:08:aa:f0:e4:47:e7:09:10:b7:
60:b9:df:f4:9a:28:bd:fe:b4:5f:23:4b:e0:07:9b:
7b:17:e5:80:c6:15:92:0c:eb:65:c5:a9:f0:9e:ab:
fe:2a:10:f3:e7:63:28:9a:2c:6f:d6:44:f8:b2:95:
8e:73:95:26:e2:64:c4:89:8f:d9:7c:12:c3:9f:8e:
54:70:9c:92:30:0a:8f:ed:d5:3f:47:d7:9f:f1:3d:
99:1c:18:1f:5d:06:02:c2:c6:dc:09:27:d4:67:1d:
9e:46:3b:e6:e5:86:7d:d9:b3:e1:4c:e6:c7:5a:b1:
2b:77:bb:75:78:83:22:5c:0f:ce:8e:dd:3b:14:a0:
0c:db:13:34:5f:a9:12:54:4c:59:90:21:87:67:07:
bd:45:e4:af:e8:e6:f8:77:bf:76:39:6f:4b:b9:e8:
ae:73:61:d8:8e:f4:ae:35:fc:05:5f:68:08:a7:86:
e0:98:20:13:a4:89:26:42:f7:ef:00:03:82:38:9d:
cf:84:f3:e3:96:e9:ea:96:a8:d8:32:73:07:5d:e8:
56:2c:d3:3c:0a:0d:2e:32:56:6a:bc:54:18:37:8d:
9c:aa:14:11:5a:38:e2:c5:90:66:84:a8:05:8f:df:
8e:dc:fb:81:05:86:aa:21:6d:5d:05:b2:57:01:9e:
e4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:69:74:47:A9:21:CA:DE:18:15:B0:EF:2C:B3:A9:41:2A:3D:4F:FA
X509v3 Authority Key Identifier:
keyid:B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/E2l0R6khyt4YFbDvLLOpQSo9T_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.43.232.0/21
46.182.152.0/21
185.14.76.0/22
213.243.192.0/18
Signature Algorithm: sha256WithRSAEncryption
50:08:18:8d:fc:9e:ce:48:a0:20:54:26:1d:60:36:75:b2:88:
14:22:7a:40:61:3e:ce:49:7a:38:88:26:36:9e:20:0f:02:be:
56:67:88:fa:ee:07:ea:49:05:2d:75:f5:b7:4b:8e:8c:28:c3:
38:95:14:35:a3:bf:db:18:db:1f:e9:1c:4f:28:b8:10:79:23:
1f:39:ac:ac:a4:9e:20:35:01:12:4f:4f:0a:7c:36:6a:d1:fd:
05:ae:95:27:72:61:20:bf:03:56:39:88:2c:e0:f6:74:38:f2:
1c:75:8a:2c:be:f9:93:ff:a2:12:d9:87:f2:18:dd:ac:52:da:
30:77:85:95:ab:f2:fa:d9:b5:5c:43:fd:5a:5d:03:d5:ef:73:
88:1f:09:2e:45:c3:89:c1:65:1c:c5:fa:4b:10:6e:57:83:0d:
fa:6d:92:1b:39:72:51:eb:7d:80:73:b1:c7:b0:bd:36:6e:88:
18:a3:4e:76:f1:de:1f:06:6c:9c:bc:8d:9e:24:f0:d2:4a:5b:
6d:4a:70:f2:85:31:76:80:ff:31:81:1f:ac:87:16:80:73:62:
95:67:1a:89:87:c8:69:dd:14:33:26:1d:f9:21:9d:bd:0d:75:
27:cb:80:2a:ba:36:dd:0d:c8:58:9c:ef:00:33:13:03:2e:3b:
8e:f6:80:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:33 2025 by rpki-client