Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/4ceNjwiDKrn8UuIZd23X_V9X66U.roa
File: 4ceNjwiDKrn8UuIZd23X_V9X66U.roa (raw, json)
Hash identifier: C4U5PPrgCvkHCXvmLzAopeWMEQTx07qlKzXlgBHpQyg=
Subject key identifier: E1:C7:8D:8F:08:83:2A:B9:FC:52:E2:19:77:6D:D7:FD:5F:57:EB:A5
Certificate issuer: /CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Certificate serial: 03E01B00
Authority key identifier: DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/4ceNjwiDKrn8UuIZd23X_V9X66U.roa
Signing time: Mon 02 May 2022 07:56:27 +0000
ROA not before: Mon 02 May 2022 07:56:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 185.248.50.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65018624 (0x3e01b00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Validity
Not Before: May 2 07:56:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1c78d8f08832ab9fc52e219776dd7fd5f57eba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d7:d1:5f:e4:41:28:f2:e3:a8:3d:cb:05:0f:
ed:5d:34:ea:4f:48:ae:54:88:8e:90:9d:87:21:b3:
88:d6:86:b8:14:d5:c6:75:27:9a:c5:cb:e1:91:f6:
61:86:b6:db:31:72:e1:b8:99:59:cd:8f:d3:f8:b8:
c8:4a:cc:a2:b3:2c:0c:b3:dc:15:fd:c0:86:11:27:
3b:6f:4a:8a:8f:8c:03:04:89:b1:b6:eb:35:bc:a9:
c7:46:c3:5f:a9:b9:ea:fa:61:a4:b3:40:70:83:73:
fe:46:11:63:ba:b1:77:49:ed:e3:26:08:f3:b9:fd:
8c:4e:22:6a:26:38:f4:2f:49:77:c5:68:39:fc:94:
a7:98:b8:3b:03:d0:1b:3e:a0:c2:dd:7e:90:4f:7d:
5f:b4:10:5b:6b:d4:19:4f:35:31:eb:e0:91:0e:79:
48:26:59:7a:c3:6b:13:25:90:4f:af:75:0a:0c:9e:
05:d4:e6:12:a2:01:c0:10:62:00:6f:b7:de:f6:1f:
9b:63:f7:63:26:8c:94:61:77:45:a2:1a:e9:d2:7c:
86:2e:07:be:f1:e8:b4:1a:46:d3:35:2a:f1:ba:0e:
61:41:70:ac:35:c7:f1:7a:04:ea:4c:08:e8:d5:ec:
a3:de:4c:46:0b:c9:55:c5:c6:eb:93:18:11:9c:ca:
66:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:C7:8D:8F:08:83:2A:B9:FC:52:E2:19:77:6D:D7:FD:5F:57:EB:A5
X509v3 Authority Key Identifier:
keyid:DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/4ceNjwiDKrn8UuIZd23X_V9X66U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.50.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:d5:0a:71:77:41:2a:33:0f:93:58:25:a7:39:68:71:2b:dc:
8f:05:60:03:27:ee:67:8a:18:d4:ee:81:c7:1d:ca:74:9d:5d:
ac:dd:9d:4a:8f:c7:42:12:dc:ad:2f:22:e6:0a:ce:df:9d:b8:
58:09:0d:11:b0:99:1f:11:00:c8:40:13:dc:f6:49:bb:53:34:
67:59:ae:29:8d:5f:65:14:29:4b:b9:e8:31:7b:6e:4f:7c:5e:
33:1a:39:bb:b6:9d:d4:c9:ec:e1:54:4a:d8:b3:47:01:cf:6d:
da:56:86:8f:22:5a:4e:7e:20:04:da:fc:ef:32:ae:f2:84:89:
07:a7:c4:72:3b:50:ff:18:88:59:55:7d:21:92:c3:f9:97:c6:
7d:0f:a8:6e:b3:61:49:4a:e4:aa:b3:18:2f:a6:82:d0:b6:31:
3c:de:7e:12:14:77:c1:49:35:cd:85:35:31:12:78:8f:76:d8:
ac:ac:89:fb:d9:e4:43:76:ff:f7:80:96:11:6e:0d:a7:b5:0d:
25:c2:e1:f8:a6:b9:84:34:92:93:65:61:1a:f8:ed:d0:57:4a:
de:86:56:fa:89:e2:8a:44:cb:01:62:ef:8a:40:14:60:53:da:
6a:01:60:04:64:26:01:32:13:c7:9f:ea:f8:e1:fe:f9:51:b7:
58:24:d9:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:15 2023 by rpki-client on console-fra.rpki-client.org