Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/hJv-QHRgt_sAgwmbG85-GY0x-aw.roa
File: hJv-QHRgt_sAgwmbG85-GY0x-aw.roa (raw, json)
Hash identifier: 9JcB0v2xTaPg5mboJXr8Dg3oL4pxBSfYoafgpRuUL8w=
Subject key identifier: 84:9B:FE:40:74:60:B7:FB:00:83:09:9B:1B:CE:7E:19:8D:31:F9:AC
Certificate issuer: /CN=8e303cc2af838789652771c345e07df3e80d544f
Certificate serial: 160825BD
Authority key identifier: 8E:30:3C:C2:AF:83:87:89:65:27:71:C3:45:E0:7D:F3:E8:0D:54:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jjA8wq-Dh4llJ3HDReB98-gNVE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/hJv-QHRgt_sAgwmbG85-GY0x-aw.roa
Signing time: Sat 01 Jan 2022 06:55:39 +0000
ROA not before: Sat 01 Jan 2022 06:55:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201311
IP address blocks: 185.78.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 369632701 (0x160825bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e303cc2af838789652771c345e07df3e80d544f
Validity
Not Before: Jan 1 06:55:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=849bfe407460b7fb0083099b1bce7e198d31f9ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:fe:55:2b:3e:fa:75:bd:c4:0a:97:74:6c:80:
dd:7e:2e:d7:81:09:36:66:31:0f:33:20:a7:c8:cd:
ae:ad:66:24:6c:fd:30:9a:5e:e4:94:9b:9a:a3:13:
88:07:90:72:f0:ad:a0:8d:4c:c5:b0:a2:49:57:02:
f7:b7:6a:14:23:d9:88:5f:32:79:31:15:cf:2f:80:
b3:56:03:18:33:bc:70:8f:6f:18:52:98:ce:0b:ee:
fc:54:7f:10:64:df:e1:b0:f9:97:0e:9c:db:75:78:
9b:67:cd:b3:7a:c7:0d:27:00:aa:06:27:d1:6d:70:
97:56:a8:23:af:4c:ea:53:0a:c6:dc:63:28:98:23:
af:29:17:8f:a0:ca:62:9f:e8:4e:b9:08:c1:96:98:
86:70:90:0c:4c:2e:9d:ca:ee:96:aa:e2:73:f7:e0:
87:a3:97:17:63:fb:10:29:df:00:ed:a8:4f:5a:b1:
11:7b:3f:45:ab:0c:db:23:d2:f6:f2:f5:01:ee:b1:
c7:6a:f1:76:c6:8c:74:ca:03:9b:a8:ef:83:b2:41:
21:90:5a:10:dc:1a:df:49:33:e7:50:9e:9b:8e:1d:
2a:93:14:f9:9a:b8:74:32:b2:c6:91:22:08:27:bd:
14:a9:46:c9:24:9b:66:5f:3d:a8:c1:f9:31:89:c7:
7f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:9B:FE:40:74:60:B7:FB:00:83:09:9B:1B:CE:7E:19:8D:31:F9:AC
X509v3 Authority Key Identifier:
keyid:8E:30:3C:C2:AF:83:87:89:65:27:71:C3:45:E0:7D:F3:E8:0D:54:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jjA8wq-Dh4llJ3HDReB98-gNVE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/hJv-QHRgt_sAgwmbG85-GY0x-aw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/jjA8wq-Dh4llJ3HDReB98-gNVE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.78.248.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:7e:01:32:13:08:43:bb:dd:ff:03:93:d2:86:1c:64:d8:85:
d0:a9:48:d4:3f:94:96:cc:31:81:b5:5e:d4:a6:e3:8f:77:65:
09:72:00:9b:8c:a8:09:d6:d0:b0:18:ea:d4:1b:a0:98:22:17:
f9:a4:3d:92:6e:2e:84:3d:ba:07:5c:a3:bb:0e:14:1a:24:36:
47:bb:43:a4:f3:2a:05:0b:c0:1d:6e:8a:da:29:9c:dd:1e:b8:
d6:6b:2f:e3:b0:cc:28:17:e1:a4:93:83:df:16:10:a8:d7:59:
95:8e:dd:92:8c:d0:2d:f8:86:a5:80:e6:69:d9:65:9e:84:ce:
76:e7:86:1c:1f:c5:eb:dc:3c:72:c2:67:2f:f4:12:04:9c:4a:
cd:c4:5e:6f:4b:e2:e7:0c:6b:4a:21:1b:9a:a0:28:cc:fd:34:
0d:68:d6:5e:b9:3d:e9:52:59:93:97:c9:25:50:2e:da:59:b6:
04:01:10:a3:66:ae:09:7e:e6:c7:c2:14:d1:a3:e8:06:a1:04:
e7:cf:83:bd:57:aa:cc:a6:9f:57:0a:7b:af:dd:28:74:80:6d:
31:8a:e2:21:17:c4:6e:86:28:ec:41:66:04:fd:e2:26:82:28:
10:bb:5f:91:69:e6:58:15:ec:18:b9:20:96:65:f1:8e:33:ac:
69:8e:5e:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:34 2024 by rpki-client on console-fra.rpki-client.org