Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/479d06-9e84-4f76-8ae0-131d2916488c/1/fmoJbhXld4Z93_FA35y3OCgEZC4.roa
File: fmoJbhXld4Z93_FA35y3OCgEZC4.roa (raw, json)
Hash identifier: ZIciJgmew29XJTM8aTYpX4aiwWp5Cg0uEPOO6o7DFOw=
Subject key identifier: 7E:6A:09:6E:15:E5:77:86:7D:DF:F1:40:DF:9C:B7:38:28:04:64:2E
Certificate issuer: /CN=54e5d6917dc2dabfb5caf907c3e745149502c90e
Certificate serial: 0503FAA7
Authority key identifier: 54:E5:D6:91:7D:C2:DA:BF:B5:CA:F9:07:C3:E7:45:14:95:02:C9:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VOXWkX3C2r-1yvkHw-dFFJUCyQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/479d06-9e84-4f76-8ae0-131d2916488c/1/fmoJbhXld4Z93_FA35y3OCgEZC4.roa
Signing time: Sat 01 Jan 2022 15:02:07 +0000
ROA not before: Sat 01 Jan 2022 15:02:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204440
IP address blocks: 185.248.248.0/23 maxlen: 24
185.248.248.0/24 maxlen: 24
185.248.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84146855 (0x503faa7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54e5d6917dc2dabfb5caf907c3e745149502c90e
Validity
Not Before: Jan 1 15:02:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e6a096e15e577867ddff140df9cb7382804642e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3a:b2:68:08:7d:d6:37:19:bb:3c:ce:ee:ad:
a2:ca:a2:98:79:80:22:d4:f2:2c:fe:b5:95:88:8e:
10:34:9e:0e:05:47:f5:90:04:65:31:c2:ec:2e:24:
9b:7e:fe:a1:24:41:a5:af:ac:b4:b6:c8:2e:90:8d:
34:9c:25:b5:de:91:c6:2c:98:91:a7:91:25:61:3f:
7b:9f:4b:2a:3b:f5:43:c7:c5:44:b0:3f:86:bc:e4:
c2:48:81:cc:1c:d3:ba:1d:8e:05:75:4e:4e:05:e2:
ad:52:6d:8b:23:42:b4:6d:af:4c:f5:94:02:cd:d8:
ba:fb:4d:34:7e:3a:9d:a7:79:0d:84:bc:66:e9:5c:
b7:6a:23:f4:42:d2:00:1d:16:0e:27:12:3d:5d:48:
ee:e5:27:37:62:8c:a3:84:50:73:a8:3c:67:b5:ae:
3d:d9:d7:35:db:b9:92:9a:92:74:3b:ef:a1:8e:dc:
5e:7a:66:67:7a:a4:a4:08:65:db:c9:e2:2b:f0:3e:
e0:fc:ef:96:df:df:91:d4:fe:d6:7f:99:66:35:2e:
6f:b3:f6:19:78:7e:d8:b8:0f:6b:9c:c9:8b:3c:2d:
b9:9c:a6:5b:cc:43:34:6b:2a:43:f8:49:09:68:86:
e8:7c:d7:ff:e2:69:5d:3c:7e:1d:c8:f5:49:fa:cb:
cb:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:6A:09:6E:15:E5:77:86:7D:DF:F1:40:DF:9C:B7:38:28:04:64:2E
X509v3 Authority Key Identifier:
keyid:54:E5:D6:91:7D:C2:DA:BF:B5:CA:F9:07:C3:E7:45:14:95:02:C9:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VOXWkX3C2r-1yvkHw-dFFJUCyQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/479d06-9e84-4f76-8ae0-131d2916488c/1/fmoJbhXld4Z93_FA35y3OCgEZC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/479d06-9e84-4f76-8ae0-131d2916488c/1/VOXWkX3C2r-1yvkHw-dFFJUCyQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.248.0/23
Signature Algorithm: sha256WithRSAEncryption
39:91:cb:44:37:cf:d4:0c:4c:07:2f:63:2c:3b:6c:4a:4d:ac:
d5:ae:0c:55:dd:a3:87:4f:19:bf:0d:6c:1f:f1:80:c7:98:fc:
9c:e5:fe:10:76:46:69:69:dc:7f:cc:a2:15:aa:46:be:e0:68:
f1:eb:11:a4:5d:26:84:49:c0:8e:35:d8:25:6f:a6:da:35:b8:
e6:23:5b:71:41:d4:9e:f4:da:8f:eb:b4:01:83:4d:a8:24:59:
75:3a:48:82:ce:b5:39:c8:1c:ca:82:0f:4b:04:98:a0:2b:ff:
b6:78:e2:d9:96:2d:5c:f6:2c:30:1c:d6:f1:7c:9e:52:9f:42:
bb:ce:90:06:bf:b7:b3:ff:01:53:3c:be:ae:d7:33:51:63:e6:
ba:35:3d:ce:5e:3b:16:5f:d6:ac:c4:9a:8a:87:ae:ad:aa:45:
71:6f:14:cf:82:1a:74:54:c2:4c:40:a3:ed:09:b9:04:eb:03:
08:7f:f3:3f:f2:b7:90:0e:0e:19:34:7a:df:d1:ef:22:c9:52:
2a:bb:93:79:b2:b8:ff:0e:95:49:37:b7:47:dc:5c:cf:69:60:
40:1a:2b:0c:ac:03:da:ed:4c:a3:bd:83:60:c8:19:2e:b1:78:
51:49:5a:e4:9b:81:7d:68:b5:5b:67:5b:3a:22:51:e8:20:a0:
6e:01:ee:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:17 2023 by rpki-client on console-ams.rpki-client.org