Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/jIhMyI9X38hmCxAj5KhdJxm0TfA.roa
File: jIhMyI9X38hmCxAj5KhdJxm0TfA.roa (raw, json)
Hash identifier: f0StjvjH0S4DSmFXxHY8zRqlJ4ClD7EG5zg/ZCiq/bA=
Subject key identifier: 8C:88:4C:C8:8F:57:DF:C8:66:0B:10:23:E4:A8:5D:27:19:B4:4D:F0
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 38878091
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/jIhMyI9X38hmCxAj5KhdJxm0TfA.roa
Signing time: Sat 01 Jan 2022 05:54:21 +0000
ROA not before: Sat 01 Jan 2022 05:54:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48798
IP address blocks: 85.254.172.0/24 maxlen: 24
85.254.183.0/24 maxlen: 24
85.254.182.0/24 maxlen: 24
185.176.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 948404369 (0x38878091)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 05:54:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c884cc88f57dfc8660b1023e4a85d2719b44df0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ad:a5:58:5b:95:f8:1d:3f:36:65:04:20:81:
32:02:cb:d7:49:87:f0:bf:aa:05:db:26:b2:60:3e:
01:79:a7:d4:39:39:60:7c:fe:ce:7c:93:d1:bd:8b:
2e:2a:45:51:60:cb:46:99:4d:d0:5e:c2:f2:73:35:
54:a5:28:79:a7:50:29:b0:8a:39:5e:83:ff:b9:74:
94:00:0d:ca:5d:e5:76:c1:5e:1d:f2:d5:2b:28:a4:
7d:e6:94:b8:d2:fa:f0:e4:0b:76:1d:1a:c9:bb:bd:
12:cd:33:73:7d:c2:b0:f5:67:c3:3a:34:14:bb:db:
cb:6a:2d:b3:d0:55:f7:02:41:e5:f1:0e:16:ef:18:
df:98:12:ca:40:80:43:dc:06:84:09:5b:64:23:40:
24:70:23:30:e5:66:6d:0e:56:55:32:d2:47:6b:8e:
d3:79:a4:27:11:cb:54:a4:ad:ff:77:67:d9:3e:97:
7d:ba:66:1d:8f:f3:2a:cd:8d:a2:c1:f9:44:13:18:
e0:6b:1a:dc:a1:b6:7f:cc:ba:0b:f3:82:8c:0d:6f:
8d:7f:ec:cd:b7:df:88:30:d8:c2:91:51:ec:2d:e2:
d7:e3:54:11:73:93:10:5f:60:24:18:f9:19:f2:57:
83:3a:02:67:e3:27:bb:ee:fa:99:49:3e:c7:ab:98:
aa:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:88:4C:C8:8F:57:DF:C8:66:0B:10:23:E4:A8:5D:27:19:B4:4D:F0
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/jIhMyI9X38hmCxAj5KhdJxm0TfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.254.172.0/24
85.254.182.0/23
185.176.117.0/24
Signature Algorithm: sha256WithRSAEncryption
53:97:ef:15:37:55:19:d5:c1:dd:d7:ff:c2:01:24:09:bd:56:
34:1b:d7:fe:b1:fa:d5:cb:b6:2d:ec:f3:05:42:16:11:5c:a1:
81:d9:dd:06:9d:e3:c1:ed:b0:4a:45:a7:5a:aa:99:6f:94:56:
31:ca:e4:85:90:ae:51:d0:63:45:c8:9b:9f:4d:a9:54:48:62:
ec:cd:a7:c9:08:64:dc:0f:bf:41:dc:a6:54:5b:25:60:79:2d:
ae:21:4f:cc:9c:a8:dd:51:3f:fa:59:8c:6f:65:48:72:c0:df:
6b:55:d6:48:60:cd:f9:b3:98:4a:31:6f:64:c6:33:c5:71:f6:
c6:00:19:7a:64:55:8d:93:cd:1b:51:50:32:a2:34:e7:28:58:
c3:50:51:1f:fe:1a:b7:c4:e9:8b:95:a7:5d:1b:5c:cd:94:18:
b3:f9:ce:9e:5f:bb:8f:1d:b6:31:fa:1c:7e:3d:d4:0b:2d:be:
cf:2e:6f:44:e4:7c:95:4c:15:2a:28:15:7b:fa:4c:f0:7a:fa:
e3:19:c9:2c:ae:9c:68:03:57:9f:e7:2c:8c:51:e2:cb:a0:18:
46:00:d1:ac:71:c0:8c:4b:12:df:72:c8:f1:b8:1e:32:09:31:
ea:9b:30:fe:87:3d:b9:f5:fa:3f:d6:08:38:cc:e3:50:7e:c5:
13:92:06:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:38 2023 by rpki-client on console-ams.rpki-client.org