Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/aktrvhmji_ASPmOg-hzx234JiQc.roa
File: aktrvhmji_ASPmOg-hzx234JiQc.roa (raw, json)
Hash identifier: 6et3sCDwJr4aemm1aMFcp55fWXkzV0OR4p6Y03b112E=
Subject key identifier: 6A:4B:6B:BE:19:A3:8B:F0:12:3E:63:A0:FA:1C:F1:DB:7E:09:89:07
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 01825EDC7D7E96A8FDEA2E80EE107DA30E44
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/aktrvhmji_ASPmOg-hzx234JiQc.roa
Signing time: Tue 02 Aug 2022 14:01:24 +0000
ROA not before: Tue 02 Aug 2022 14:01:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56850
IP address blocks: 185.248.184.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5e:dc:7d:7e:96:a8:fd:ea:2e:80:ee:10:7d:a3:0e:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Aug 2 14:01:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a4b6bbe19a38bf0123e63a0fa1cf1db7e098907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e1:5c:27:a6:aa:cc:3e:c0:2a:25:7c:d4:46:
55:79:b9:ee:8b:33:51:68:c7:d1:84:dc:19:8c:e4:
3b:b9:73:6b:ab:1e:05:42:99:a1:85:bd:68:77:63:
ed:ef:4a:e3:9a:2b:0f:d4:db:08:a5:84:3b:5e:75:
4c:06:f5:21:79:7f:44:46:2d:fd:3f:63:af:bd:5c:
20:7a:54:90:8c:1f:58:36:00:3e:a4:76:8d:b3:68:
0f:e7:96:34:a3:0f:5e:5c:4d:ba:39:28:4a:5c:13:
ea:d7:0e:cf:b0:65:c5:2f:a9:cb:5e:e3:04:b7:1d:
aa:49:e9:db:f6:f8:e7:97:8b:dd:97:8c:ce:1b:bc:
c1:02:6c:bf:37:62:fe:cf:5b:85:9a:52:8c:83:c9:
97:39:77:cb:71:c2:84:3a:01:4c:1e:c0:ff:0a:1c:
07:70:66:85:f1:9c:dd:d0:c2:65:3c:b1:67:18:a2:
ea:ad:f4:25:c6:0b:94:f9:f3:f9:99:7b:90:2f:35:
0b:88:68:85:9e:f7:cb:17:10:d5:21:c5:26:88:5e:
6c:8e:b6:c8:e3:77:d0:8d:a0:e2:25:8c:64:c8:13:
bb:df:f7:81:49:a3:b3:0c:2c:ec:78:b0:a9:fb:b0:
93:c9:ca:e6:b5:a9:eb:3d:c7:34:02:8d:54:16:db:
cf:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:4B:6B:BE:19:A3:8B:F0:12:3E:63:A0:FA:1C:F1:DB:7E:09:89:07
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/aktrvhmji_ASPmOg-hzx234JiQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.184.0/23
Signature Algorithm: sha256WithRSAEncryption
c6:06:4c:8a:0e:cc:8d:3a:46:f7:ee:02:36:9c:7a:4a:fc:54:
61:4f:b5:d1:fd:b8:c7:92:8f:04:cd:a3:b3:af:a7:59:36:fc:
13:f4:e0:8e:c1:a8:e8:4e:06:96:37:be:21:91:4c:32:e1:74:
75:55:8c:36:3f:cd:f5:09:f0:7c:91:2a:bc:c4:ef:8c:33:b8:
89:e2:6f:4e:3f:7f:1c:fc:cd:6e:d4:4f:03:aa:9c:69:af:ce:
72:2f:fb:e3:36:8a:60:b5:09:76:60:13:ff:e1:4f:4c:d0:ce:
01:26:0a:b3:93:a4:1c:0d:90:e7:a7:75:6e:26:97:1a:c1:18:
0f:58:c4:aa:20:19:f6:07:2b:70:46:3d:24:8f:50:10:ae:7e:
9d:aa:21:69:71:63:75:3f:8d:d3:d5:8f:d1:07:1a:df:ad:45:
d7:18:7e:6f:54:12:18:65:b6:47:9a:3e:d7:ae:d9:e8:7a:b6:
a0:31:57:41:ed:53:21:43:3d:00:1c:20:57:57:8f:3a:1d:48:
a9:e3:37:ea:b0:ce:77:84:4e:49:90:1b:14:3f:57:65:0a:bc:
d6:4b:ec:38:a9:14:57:7f:04:ed:66:5d:25:a8:0e:4f:f1:99:
dd:da:59:50:11:4e:59:db:b2:c9:cf:36:b2:a5:25:2d:eb:0f:
9d:b3:bf:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:45 2023 by rpki-client on console-fra.rpki-client.org