Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/4f9b82-f1b0-4fe4-a798-5a06f7887dbd/1/T3bBiybiOOeREIipDQgnWtsemzM.roa
File: T3bBiybiOOeREIipDQgnWtsemzM.roa (raw, json)
Hash identifier: x6xaO+ZT8VqwKrckTOMFXzLahXYb5pyaeUOaAvfoLYA=
Subject key identifier: 4F:76:C1:8B:26:E2:38:E7:91:10:88:A9:0D:08:27:5A:DB:1E:9B:33
Certificate issuer: /CN=879b5d7b5759409937c5c2c22f0adbe8e832a05d
Certificate serial: 0EE6D0A5
Authority key identifier: 87:9B:5D:7B:57:59:40:99:37:C5:C2:C2:2F:0A:DB:E8:E8:32:A0:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5tde1dZQJk3xcLCLwrb6OgyoF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/4f9b82-f1b0-4fe4-a798-5a06f7887dbd/1/T3bBiybiOOeREIipDQgnWtsemzM.roa
Signing time: Sat 01 Jan 2022 06:57:40 +0000
ROA not before: Sat 01 Jan 2022 06:57:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12874
IP address blocks: 185.139.48.0/24 maxlen: 24
185.139.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 250007717 (0xee6d0a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=879b5d7b5759409937c5c2c22f0adbe8e832a05d
Validity
Not Before: Jan 1 06:57:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f76c18b26e238e7911088a90d08275adb1e9b33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d6:45:63:b3:8d:42:67:87:9f:14:35:ac:b0:
b5:60:28:53:79:f2:bf:16:fc:12:f6:a6:a4:a6:d7:
e4:6c:60:8b:48:ad:2d:37:dc:80:c2:f7:87:71:da:
54:79:b0:29:0d:eb:35:a2:8d:d6:04:4a:70:2f:4f:
bd:8a:9d:5b:18:cf:1f:01:e3:34:9b:53:28:a8:5a:
fb:96:36:22:3a:36:a6:57:a7:92:08:db:32:5e:95:
19:e5:19:79:c6:29:bb:ee:df:17:b4:3e:5c:f1:5d:
a9:ab:b3:74:d3:f1:cd:fb:17:86:1a:b4:69:44:eb:
e4:4a:78:19:e8:2b:1f:57:a7:78:f4:7e:a0:e6:fe:
00:ff:c1:ff:4c:6b:76:da:fc:15:d6:72:6f:40:fd:
03:8e:46:89:85:d2:bb:d1:db:27:c5:01:f6:b8:71:
57:34:08:d5:21:ec:14:fd:ae:10:9e:12:13:b9:e5:
b6:06:25:70:7a:0f:7c:74:42:88:68:44:7d:65:d9:
5e:a0:a7:f2:46:68:0c:2f:5e:6a:5a:be:2d:b0:94:
d2:73:c9:bb:d5:4e:9f:7d:d5:4f:56:21:97:4a:33:
22:a4:1a:86:d5:d3:61:6b:cd:8a:9e:65:65:7c:ed:
ce:b6:c1:db:8a:25:c7:db:d0:db:c0:24:f6:fe:c4:
15:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:76:C1:8B:26:E2:38:E7:91:10:88:A9:0D:08:27:5A:DB:1E:9B:33
X509v3 Authority Key Identifier:
keyid:87:9B:5D:7B:57:59:40:99:37:C5:C2:C2:2F:0A:DB:E8:E8:32:A0:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5tde1dZQJk3xcLCLwrb6OgyoF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/4f9b82-f1b0-4fe4-a798-5a06f7887dbd/1/T3bBiybiOOeREIipDQgnWtsemzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/4f9b82-f1b0-4fe4-a798-5a06f7887dbd/1/h5tde1dZQJk3xcLCLwrb6OgyoF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.48.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:f0:69:e8:5b:43:f0:e5:a4:83:33:d6:0b:7b:7a:77:13:d3:
77:62:34:1a:14:30:e1:f0:e7:50:fa:b6:ba:d6:4e:8e:f5:16:
a9:93:46:75:71:eb:38:a4:de:bb:c6:a6:d7:42:3c:00:15:65:
36:1f:c6:39:0a:3c:ba:44:9a:79:9f:b8:de:6b:7a:28:b5:0d:
54:8f:e8:21:20:13:0a:57:cb:0c:3f:61:13:a9:cb:fc:6a:e8:
a0:36:6d:3d:35:4d:b9:74:55:7c:09:4d:db:03:ae:28:cf:d2:
13:be:77:d0:0f:1b:3b:4b:38:2d:c6:76:dd:f5:c5:4f:d5:2b:
fd:e4:56:ab:71:ac:03:8c:9a:98:0e:ac:b2:98:6e:40:1b:2d:
81:ce:a9:0a:73:03:65:c3:fd:f1:27:97:8c:86:ff:de:ed:ee:
e4:b3:66:2e:d2:18:30:c1:56:7a:b3:f9:2e:9a:b3:26:11:2f:
47:97:e1:85:4a:be:e8:25:44:df:f6:be:d0:13:fb:ff:35:d3:
51:b2:a5:78:3d:02:62:8f:74:c1:56:5a:2e:16:ee:15:a5:83:
42:4b:70:64:f9:16:72:50:f1:c5:8b:9a:dd:01:74:f0:a9:25:
44:8e:e4:bf:92:be:c3:07:9e:4d:fd:39:a8:18:f0:af:b1:84:
91:bd:19:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:40 2024 by rpki-client on console-fra.rpki-client.org