Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/hXNV4hmehZ3sRRKv0rGre1lX_o8.roa
File: hXNV4hmehZ3sRRKv0rGre1lX_o8.roa (raw, json)
Hash identifier: fv44nbvfA7MSglCPLpOdNokeVEpKKuHfoZYHnwMbE+o=
Subject key identifier: 85:73:55:E2:19:9E:85:9D:EC:45:12:AF:D2:B1:AB:7B:59:57:FE:8F
Certificate issuer: /CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Certificate serial: 0840AF6F
Authority key identifier: 90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/hXNV4hmehZ3sRRKv0rGre1lX_o8.roa
Signing time: Sat 01 Jan 2022 07:58:57 +0000
ROA not before: Sat 01 Jan 2022 07:58:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205704
IP address blocks: 185.200.150.0/23 maxlen: 23
185.200.150.0/24 maxlen: 24
185.200.149.0/24 maxlen: 24
185.200.148.0/24 maxlen: 24
185.200.148.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138456943 (0x840af6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Validity
Not Before: Jan 1 07:58:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=857355e2199e859dec4512afd2b1ab7b5957fe8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:56:1e:ac:c4:a7:53:bf:38:14:4e:1b:d9:c2:
ee:d6:bf:d7:4a:7b:1e:14:7a:51:c2:20:51:67:9a:
a1:0f:66:ac:4d:8c:37:f4:a9:28:26:68:68:1d:9f:
16:22:f9:00:0f:21:40:26:d1:76:33:92:69:e7:ca:
54:f2:3c:54:9d:21:ee:50:02:ba:56:e7:96:42:63:
0c:6f:27:ff:10:e6:18:f4:92:0b:bd:b1:a6:91:8d:
00:b0:78:60:c6:e5:82:5b:5f:47:b0:d9:80:b7:31:
9d:c2:0d:4a:bd:3c:b9:43:40:27:7b:a6:e8:12:a6:
10:3b:ac:e4:07:79:04:46:da:82:e2:2b:93:c9:5c:
84:94:73:a4:47:fa:3d:1f:03:d2:87:fa:8c:4c:e0:
72:53:ba:ab:70:1e:00:9f:c3:34:56:6d:85:bb:24:
c1:72:3a:fd:84:33:ba:f8:b5:33:22:45:d8:c5:45:
f5:fd:08:8c:08:b6:7d:8f:a3:2b:20:82:a5:50:32:
0e:91:e7:29:43:cd:be:f4:ca:c5:4e:23:9e:b0:f4:
59:75:e5:80:93:2f:c9:3a:65:19:a5:11:3f:94:eb:
df:96:63:06:a5:f1:9a:5b:36:22:a8:79:f3:6e:2d:
ef:cf:67:a1:3e:69:e8:fa:bb:0a:55:63:e0:8b:13:
81:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:73:55:E2:19:9E:85:9D:EC:45:12:AF:D2:B1:AB:7B:59:57:FE:8F
X509v3 Authority Key Identifier:
keyid:90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/hXNV4hmehZ3sRRKv0rGre1lX_o8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.148.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:1d:6e:65:1f:1b:cf:0a:e7:2b:c1:01:8c:e5:0b:6f:d7:86:
93:cb:d2:bd:2f:a6:23:83:23:5f:86:f0:d0:a9:27:ec:42:e2:
18:5d:2f:92:31:ce:e2:59:ce:d3:82:11:20:05:2a:88:22:f0:
b9:7b:86:be:2b:1c:d1:f1:8e:2c:34:a6:5a:e8:9b:07:e5:92:
1e:c2:d6:0d:75:e3:93:fc:c3:f2:53:2b:60:97:13:79:c9:13:
7a:1c:6d:b5:cc:ad:a1:25:03:56:44:86:32:e4:88:67:d2:ca:
05:b2:0f:6e:cf:4c:5d:e6:a7:c3:b5:bd:69:a7:1a:26:f1:0e:
dd:61:d5:9a:71:3f:2c:98:00:95:47:d0:c3:8d:a5:b6:76:14:
40:3a:ea:59:c1:47:d8:02:2e:bc:d9:cc:ea:35:ca:75:91:d9:
3e:8d:23:66:7d:bb:d2:59:fb:03:47:2b:23:a8:ab:db:e8:c2:
d6:44:5b:c2:a4:8b:cb:79:2a:36:67:f0:7a:11:65:06:d5:9f:
c5:cd:9d:26:1f:4c:ce:46:78:ed:df:81:b4:54:79:6b:c3:b6:
11:ea:68:5f:1f:80:70:dc:37:22:2a:9e:f7:97:fc:98:76:3f:
c3:05:91:43:12:3e:0e:d0:a4:cd:17:cf:6c:d1:8a:6c:5c:0c:
cf:b4:92:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:03 2024 by rpki-client on console-ams.rpki-client.org