Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/78c103-89da-4b84-8f34-aeb6d2cf2de2/1/s2bKhRRiSPKlM4ddopJiSJwEAFw.roa
File: s2bKhRRiSPKlM4ddopJiSJwEAFw.roa (raw, json)
Hash identifier: E9fI+Zkl/ildOrZxEU1G0gnT4arhKa/ji/Jfz0dqCMs=
Subject key identifier: B3:66:CA:85:14:62:48:F2:A5:33:87:5D:A2:92:62:48:9C:04:00:5C
Certificate issuer: /CN=8f8b15d34c08b5f1fcff4f9e74c95bc76a0b6abe
Certificate serial: 0139F84F
Authority key identifier: 8F:8B:15:D3:4C:08:B5:F1:FC:FF:4F:9E:74:C9:5B:C7:6A:0B:6A:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j4sV00wItfH8_0-edMlbx2oLar4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/78c103-89da-4b84-8f34-aeb6d2cf2de2/1/s2bKhRRiSPKlM4ddopJiSJwEAFw.roa
Signing time: Sat 01 Jan 2022 14:07:38 +0000
ROA not before: Sat 01 Jan 2022 14:07:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.249.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20576335 (0x139f84f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f8b15d34c08b5f1fcff4f9e74c95bc76a0b6abe
Validity
Not Before: Jan 1 14:07:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b366ca85146248f2a533875da29262489c04005c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:72:73:9a:8d:fc:4c:d3:75:25:0c:07:c3:92:
46:73:5e:38:31:d6:11:80:2e:99:6c:60:78:96:90:
40:8b:56:90:7e:da:72:cb:9a:52:f2:5d:f3:7d:40:
41:41:76:a8:60:25:35:ce:5f:63:11:a2:88:ea:a6:
67:bf:39:fb:bb:f5:70:1a:f1:48:06:8a:2f:95:16:
09:14:76:ba:a4:1d:73:7a:f1:03:ec:7c:87:65:05:
e7:14:17:20:10:5a:ca:7c:df:28:b4:23:3f:ee:95:
13:c6:c5:c4:cb:67:56:2d:40:52:42:63:8e:fb:ab:
a3:0d:8d:89:12:b3:1b:22:fe:ee:31:58:03:97:15:
c3:c0:f2:f9:fd:06:79:84:63:31:f6:d9:e2:25:0c:
31:a2:db:13:05:b2:e5:78:e7:8d:89:bd:ec:a6:95:
bf:d9:4d:70:5c:9b:2b:4f:20:f9:0b:8a:a6:b6:d7:
bb:dc:03:41:26:f7:91:6a:53:e9:e1:32:53:66:df:
c0:67:e9:54:58:50:b4:a0:a2:c5:09:ce:15:93:a7:
6e:5c:68:0a:ad:4c:4c:a1:88:55:a1:b8:9a:2e:76:
b4:4d:a7:b4:16:da:65:33:fd:c5:29:af:db:f2:55:
57:62:b1:8d:db:de:cf:aa:9a:09:bf:97:85:fa:5f:
64:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:66:CA:85:14:62:48:F2:A5:33:87:5D:A2:92:62:48:9C:04:00:5C
X509v3 Authority Key Identifier:
keyid:8F:8B:15:D3:4C:08:B5:F1:FC:FF:4F:9E:74:C9:5B:C7:6A:0B:6A:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j4sV00wItfH8_0-edMlbx2oLar4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/78c103-89da-4b84-8f34-aeb6d2cf2de2/1/s2bKhRRiSPKlM4ddopJiSJwEAFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/78c103-89da-4b84-8f34-aeb6d2cf2de2/1/j4sV00wItfH8_0-edMlbx2oLar4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.54.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:06:be:2d:f2:75:d6:1f:dd:5d:3a:c8:8a:7b:63:e2:45:6c:
38:23:14:6c:29:75:02:55:c4:46:f7:2e:9d:43:ff:e0:40:13:
56:cb:1a:f7:75:1f:03:43:7c:d4:c7:0b:28:c7:bd:a7:27:5b:
90:90:a7:26:8a:56:5e:4c:b0:9a:96:c9:0a:84:eb:6f:a3:ea:
6c:5a:00:fc:5b:64:29:1e:23:76:3d:f0:a3:c8:cc:64:6e:8f:
d7:1e:37:10:48:fb:76:9e:d8:36:b7:54:1a:6d:44:e4:84:13:
34:bb:33:1d:55:c3:63:21:1f:72:e1:20:3a:a5:59:9c:54:66:
23:d9:79:ad:9b:12:d1:db:4a:d3:d1:f9:b7:ca:13:06:22:ee:
b5:8e:30:8b:80:c6:3b:4e:8d:50:0b:65:4f:27:28:2e:9f:89:
dc:28:a6:84:3a:b8:47:a6:df:e7:90:86:ac:13:fc:09:02:ee:
45:6f:23:21:01:26:79:89:72:48:3f:13:b3:bb:9b:ca:69:59:
3a:77:5f:51:a3:b0:20:a0:49:5a:3e:5f:68:e4:97:eb:ab:e0:
cc:c7:1e:71:a0:7e:2f:da:09:de:d6:6d:f3:c6:c4:66:81:66:
68:50:fe:e1:7e:04:52:4b:bb:37:5c:0c:4a:8d:0c:cb:fb:11:
38:b2:24:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:17 2023 by rpki-client on console-ams.rpki-client.org