Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/j_PdVVODoIUu3jgkLO2Rdjg1kXc.roa
File: j_PdVVODoIUu3jgkLO2Rdjg1kXc.roa (raw, json)
Hash identifier: Kz/0OeTkM/YA0QmE+/GF4I5055hgextqJPZymVXhXak=
Subject key identifier: 8F:F3:DD:55:53:83:A0:85:2E:DE:38:24:2C:ED:91:76:38:35:91:77
Certificate issuer: /CN=49ee1194bd81d1946c39f10f7fdfdf22d1a03112
Certificate serial: 01830D8C323DB8C31EE16045C93C4F6D5D78
Authority key identifier: 49:EE:11:94:BD:81:D1:94:6C:39:F1:0F:7F:DF:DF:22:D1:A0:31:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Se4RlL2B0ZRsOfEPf9_fItGgMRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/j_PdVVODoIUu3jgkLO2Rdjg1kXc.roa
Signing time: Mon 05 Sep 2022 12:07:15 +0000
ROA not before: Mon 05 Sep 2022 12:07:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48029
IP address blocks: 185.208.76.0/23 maxlen: 23
185.208.77.0/24 maxlen: 24
185.208.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0d:8c:32:3d:b8:c3:1e:e1:60:45:c9:3c:4f:6d:5d:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49ee1194bd81d1946c39f10f7fdfdf22d1a03112
Validity
Not Before: Sep 5 12:07:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ff3dd555383a0852ede38242ced917638359177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:17:32:1a:ee:e5:24:e5:5a:28:11:c5:32:a5:
e7:8d:25:a5:8b:b6:e4:e2:eb:72:35:82:fd:bd:e6:
bc:4a:35:b7:ff:7b:2b:c8:d9:66:a7:8c:09:d5:2f:
75:a2:d6:0b:da:cf:49:4d:51:fe:19:14:fd:8d:ac:
2a:42:46:ca:f9:25:15:cd:28:17:36:45:95:12:74:
10:52:d1:53:9c:8d:62:4c:f5:8c:91:c4:49:13:a8:
bb:5e:6e:67:1f:89:f0:3c:33:96:c6:0c:13:13:6a:
52:d6:83:70:27:92:c9:19:d8:70:81:2f:9c:b6:cc:
64:f8:65:9c:71:4b:b8:5a:a6:e9:62:68:28:2d:21:
ac:e2:19:03:b5:19:ab:da:7f:ce:fe:4d:cf:80:8b:
69:9c:50:03:7a:d7:88:28:94:d6:37:4e:15:03:05:
8f:3f:de:95:76:40:8c:1c:46:8f:1a:a9:9f:60:49:
1b:b3:62:c6:b3:9b:48:96:1a:ac:61:07:41:20:08:
2f:d2:5b:6c:b5:4f:6b:0a:d0:35:41:3a:53:2d:ad:
c9:ce:79:0c:0b:4c:0e:8b:ce:8d:7b:34:35:b2:45:
a4:4d:9c:18:8f:c4:01:69:20:d9:97:e2:1a:7a:e1:
78:a0:22:08:a9:5e:68:3f:bc:68:59:68:3b:fd:24:
fa:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:F3:DD:55:53:83:A0:85:2E:DE:38:24:2C:ED:91:76:38:35:91:77
X509v3 Authority Key Identifier:
keyid:49:EE:11:94:BD:81:D1:94:6C:39:F1:0F:7F:DF:DF:22:D1:A0:31:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Se4RlL2B0ZRsOfEPf9_fItGgMRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/j_PdVVODoIUu3jgkLO2Rdjg1kXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/Se4RlL2B0ZRsOfEPf9_fItGgMRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.76.0/23
Signature Algorithm: sha256WithRSAEncryption
af:52:0f:c9:12:66:ab:4c:d4:a1:13:0d:9a:22:f1:26:27:61:
29:85:ad:b6:83:85:af:21:89:39:14:d1:52:0f:d1:83:5f:5a:
05:a0:2b:c3:94:8d:0e:85:d4:50:1f:6d:0a:7d:84:82:a2:de:
56:6c:8d:e9:26:93:bb:a8:21:63:09:a5:84:9b:c6:fd:47:1d:
e1:53:7f:7b:14:cc:75:ca:a0:c1:99:63:bd:43:69:af:de:12:
32:11:4a:57:71:75:65:67:80:50:6a:d3:49:c6:7f:2c:64:41:
f8:82:2a:b1:70:6b:b3:6a:d4:34:cb:15:67:4c:32:b3:59:d0:
6c:6b:11:8a:fd:34:42:f2:72:91:26:30:77:06:56:93:ba:93:
35:38:2e:f5:25:6b:96:01:cb:0b:31:e6:15:ba:34:48:18:ab:
01:d8:f6:e6:b1:04:a0:5e:08:5d:60:a1:05:cd:20:f7:a3:c1:
d1:13:fa:5d:70:ad:0b:fc:1e:0c:9c:72:e9:7f:be:b4:bf:75:
f5:70:03:26:1f:ba:a9:a1:35:bd:69:4e:db:6d:63:e5:b4:d6:
0f:8e:40:a3:5b:9b:47:81:d5:ee:8f:16:43:55:d3:d7:e8:b4:
76:eb:db:a7:34:1b:de:1c:b8:66:cb:7d:24:3b:73:97:43:a5:
85:b1:a2:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:53 2023 by rpki-client on console-fra.rpki-client.org