Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/28d5a7-48f1-4414-a853-d86b4caed11d/1/jqaPkorFhwSogS__TVzyAjdIq5o.roa
File: jqaPkorFhwSogS__TVzyAjdIq5o.roa (raw, json)
Hash identifier: pe3d05b5QGBMkoIPR2oTDgMA8umact9/UpChBRmfrL8=
Subject key identifier: 8E:A6:8F:92:8A:C5:87:04:A8:81:2F:FF:4D:5C:F2:02:37:48:AB:9A
Certificate issuer: /CN=25a879d628fe5ec8a761c4748679993f9c69f8b4
Certificate serial: 0894A99A
Authority key identifier: 25:A8:79:D6:28:FE:5E:C8:A7:61:C4:74:86:79:99:3F:9C:69:F8:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jah51ij-XsinYcR0hnmZP5xp-LQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/28d5a7-48f1-4414-a853-d86b4caed11d/1/jqaPkorFhwSogS__TVzyAjdIq5o.roa
Signing time: Tue 15 Feb 2022 12:13:34 +0000
ROA not before: Tue 15 Feb 2022 12:13:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8437
IP address blocks: 185.245.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143960474 (0x894a99a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25a879d628fe5ec8a761c4748679993f9c69f8b4
Validity
Not Before: Feb 15 12:13:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ea68f928ac58704a8812fff4d5cf2023748ab9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b2:a2:52:85:f9:d4:e5:fb:59:97:ca:e2:8c:
41:8f:1a:2b:41:1d:6f:0a:7f:dd:c1:ec:51:10:da:
8e:65:b6:71:da:50:2e:38:99:dc:07:1b:00:21:8c:
b9:32:57:38:7d:37:a0:6c:53:63:d1:67:f9:88:47:
f2:e9:67:65:20:4e:0f:31:30:18:55:d0:bf:5d:7a:
0f:4b:f8:28:f9:cb:69:0d:24:21:ca:3b:72:b9:69:
1d:d9:01:67:11:c6:48:66:7f:f4:41:ef:40:15:15:
30:5b:d9:05:6c:c4:0f:c0:ce:bc:f5:6e:66:52:3a:
cf:f6:27:4d:94:93:9b:a1:96:69:3c:cd:9d:4b:3d:
99:f8:a2:30:bf:ec:58:64:c4:17:08:4e:47:cc:aa:
be:ba:1d:21:f8:68:f6:b1:2f:7b:d6:24:5a:f5:f4:
a0:de:05:1d:07:0c:a6:ac:06:1f:9b:6d:e9:14:c8:
7a:98:92:12:bd:57:11:ec:f7:5b:40:a3:4a:34:13:
8d:db:4e:20:0b:aa:88:d7:9a:94:b5:ee:ba:da:63:
f4:17:b6:b8:b4:d1:27:61:17:10:f3:53:55:31:e5:
32:05:1b:1a:ed:5b:1b:4a:43:ca:af:0d:0f:fb:2f:
9b:8b:e8:0a:69:cc:51:98:b6:4b:d0:23:bc:9c:4c:
2a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A6:8F:92:8A:C5:87:04:A8:81:2F:FF:4D:5C:F2:02:37:48:AB:9A
X509v3 Authority Key Identifier:
keyid:25:A8:79:D6:28:FE:5E:C8:A7:61:C4:74:86:79:99:3F:9C:69:F8:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jah51ij-XsinYcR0hnmZP5xp-LQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/28d5a7-48f1-4414-a853-d86b4caed11d/1/jqaPkorFhwSogS__TVzyAjdIq5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/28d5a7-48f1-4414-a853-d86b4caed11d/1/Jah51ij-XsinYcR0hnmZP5xp-LQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.65.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:92:c6:70:28:a0:a9:d4:8f:1f:70:f0:6b:b3:96:58:5d:a5:
70:6b:c0:fd:5d:a9:98:57:d6:3a:da:09:05:89:2a:c4:ad:2f:
90:0d:69:7f:00:d5:06:60:dc:df:c0:2e:bd:bf:8a:65:c4:da:
a8:fa:f7:69:f9:40:b8:18:25:7f:4e:44:71:af:e1:8b:fb:77:
f1:c0:ed:7d:8b:54:c2:eb:25:90:a1:b7:ec:6f:bb:b7:8f:d8:
2a:7c:84:d2:73:ae:e8:51:8e:71:42:96:87:b6:af:79:20:e1:
51:8e:77:70:15:95:7f:7b:b6:e8:76:81:ed:77:03:36:92:63:
ac:fe:60:4a:6b:a6:c9:c0:84:7b:df:30:12:62:59:7a:b3:f6:
89:d6:71:96:ac:6a:1c:ff:1d:17:b3:52:e5:cb:79:af:c7:b2:
a2:07:40:5a:7a:1c:59:ec:5b:b9:2e:6f:65:9f:8d:aa:3f:3d:
8e:07:f5:cf:d7:1c:59:30:b6:d2:6b:b7:7b:df:4a:5b:3b:c3:
e6:4f:de:4f:a4:22:db:65:ec:ee:2b:b7:27:97:c7:bd:7d:0e:
0c:6e:73:da:20:99:4b:6b:8d:44:da:9c:09:b1:ec:82:f3:74:
68:72:16:1b:79:7d:4c:14:bd:e2:a3:2a:cb:ea:51:fa:f5:75:
d7:7a:0f:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:42 2023 by rpki-client on console-fra.rpki-client.org