Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/jTjeT6tFmEEE0Q8VGFCw05T0Gkk.roa
File: jTjeT6tFmEEE0Q8VGFCw05T0Gkk.roa (raw, json)
Hash identifier: JIeceZ9X47oZKNA3FBJ6b+Na3cWJG6thf1i1HdccZXk=
Subject key identifier: 8D:38:DE:4F:AB:45:98:41:04:D1:0F:15:18:50:B0:D3:94:F4:1A:49
Certificate issuer: /CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Certificate serial: 0183C6BE2F978F3399449EE85F9918C48EA8
Authority key identifier: D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/jTjeT6tFmEEE0Q8VGFCw05T0Gkk.roa
Signing time: Tue 11 Oct 2022 11:11:36 +0000
ROA not before: Tue 11 Oct 2022 11:11:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62303
IP address blocks: 185.235.81.0/24 maxlen: 24
185.235.83.0/24 maxlen: 24
185.235.82.0/24 maxlen: 24
2a0d:4d00:83::/48 maxlen: 48
2a0d:4d00:81::/48 maxlen: 48
2a0d:4d00:82::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c6:be:2f:97:8f:33:99:44:9e:e8:5f:99:18:c4:8e:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Validity
Not Before: Oct 11 11:11:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d38de4fab45984104d10f151850b0d394f41a49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b8:9b:7f:1e:3a:00:9c:ef:2d:a8:0c:4f:cd:
95:dc:d7:0c:23:8f:99:5c:72:a9:af:51:00:4b:7c:
5b:d0:37:73:45:09:86:a1:98:0c:df:d8:cb:fe:2a:
22:01:1b:5a:7b:93:a9:a1:12:c5:de:4e:60:3e:3a:
49:d4:76:34:ee:5e:80:3d:0e:51:c3:21:e8:7a:73:
a5:49:3e:15:13:d3:f6:d1:48:37:0e:39:e1:a7:fa:
d1:b8:af:23:33:32:fe:3c:2c:2a:58:65:83:51:b4:
73:b8:7f:19:49:60:dd:47:e3:d3:a6:6b:17:4f:34:
cf:8e:43:dc:27:ac:1e:fa:c1:e6:76:9b:4a:d9:a6:
12:e6:e9:10:93:33:6a:5a:0b:ca:d4:97:9b:8c:6d:
87:37:b2:2f:9a:85:86:12:0f:fc:de:ad:40:b3:e9:
bf:5b:a5:26:22:e9:95:16:07:b2:2f:37:2b:5a:11:
34:97:f5:f2:5b:87:4c:7d:b8:2a:71:92:38:29:cd:
ac:82:e5:90:64:4f:78:bc:2f:ba:1b:aa:5f:f8:eb:
05:91:c9:41:96:67:7e:8d:d1:dc:ed:9c:8c:7d:61:
f4:a8:0e:b3:83:2d:a1:50:11:92:ca:4b:50:f4:3e:
bd:80:9f:32:3d:d6:a9:77:84:30:98:ac:b2:6a:69:
77:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:38:DE:4F:AB:45:98:41:04:D1:0F:15:18:50:B0:D3:94:F4:1A:49
X509v3 Authority Key Identifier:
keyid:D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/jTjeT6tFmEEE0Q8VGFCw05T0Gkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/04YKmzZYX7iqBR_Df8xqB3OZDL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.81.0-185.235.83.255
IPv6:
2a0d:4d00:81::-2a0d:4d00:83:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
41:e4:f2:d7:76:fa:bb:85:d0:02:05:2d:5b:92:f5:41:31:a3:
4b:75:91:39:41:c5:a9:75:0f:17:6e:de:37:8a:40:ae:6e:b2:
88:8b:0e:9d:02:a7:11:84:f3:d4:7e:b0:81:be:5c:03:57:9b:
ff:ae:39:65:cb:66:04:77:39:61:c2:3b:c5:48:2d:89:17:9c:
c1:90:68:83:65:7c:1b:b5:22:10:94:cb:dc:bd:13:eb:4a:87:
0f:c1:78:9b:7e:0e:07:e3:80:1a:24:83:12:51:bf:49:54:e1:
7e:01:72:4b:56:c0:e0:89:e4:cf:59:dd:d3:89:79:ce:20:ee:
ad:12:4d:a7:4e:5d:0b:14:81:79:5d:7e:f8:e0:13:4a:c1:2a:
2b:44:9c:04:b5:e3:d1:59:60:a8:af:b2:a5:5c:86:07:63:d6:
a0:88:62:7a:ad:64:98:42:57:df:73:f4:8e:f5:cf:6e:45:d5:
90:dc:4a:30:8b:96:c9:d3:c4:ed:29:f5:a9:fb:a1:31:56:54:
0e:66:02:70:64:72:77:9c:5f:85:d2:72:04:77:c4:1b:8e:df:
83:2b:7b:29:21:45:b7:d3:bf:4b:b0:d0:39:5e:fc:34:a0:34:
83:3e:4b:d4:73:2a:ea:cc:61:ba:b3:8f:ef:6d:c8:96:61:9c:
16:fb:b4:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:42 2023 by rpki-client on console-ams.rpki-client.org