Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/yUnbzC0yGmn6WMCg3S4Dledh_R0.roa
File: yUnbzC0yGmn6WMCg3S4Dledh_R0.roa (raw, json)
Hash identifier: cdYWNPSd70fUkykkxc3kUHWt/zOq72KIqKvSUJcz4SE=
Subject key identifier: C9:49:DB:CC:2D:32:1A:69:FA:58:C0:A0:DD:2E:03:95:E7:61:FD:1D
Certificate issuer: /CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Certificate serial: 02C08821
Authority key identifier: DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/yUnbzC0yGmn6WMCg3S4Dledh_R0.roa
Signing time: Sat 01 Jan 2022 04:58:22 +0000
ROA not before: Sat 01 Jan 2022 04:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.248.49.0/24 maxlen: 24
185.248.48.0/24 maxlen: 24
185.248.48.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46172193 (0x2c08821)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Validity
Not Before: Jan 1 04:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c949dbcc2d321a69fa58c0a0dd2e0395e761fd1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a2:a3:1f:95:3a:0f:08:06:37:14:44:1e:20:
09:52:37:d6:99:b1:1f:9d:03:ba:f1:d2:40:c0:da:
23:b4:3f:51:18:eb:a0:63:47:a3:28:68:44:0b:d5:
55:37:b7:29:b5:77:60:18:58:bb:2e:f3:a2:0d:42:
f8:62:e0:f3:02:f9:ce:b5:6f:8a:b9:8a:b3:7a:8b:
e6:2d:22:0e:cd:c8:43:33:d5:af:c5:ca:57:82:fd:
b0:9d:28:d2:7f:d3:5d:22:73:38:14:b5:b5:8c:74:
dd:ea:0c:3a:e8:1f:17:8f:d0:17:bf:a4:74:66:7d:
73:76:09:40:25:62:4f:6f:52:5e:24:a1:0f:11:78:
2a:6c:2f:23:ac:b9:56:f4:33:37:fd:34:67:0b:cb:
85:15:e4:bb:aa:f4:09:7d:0c:34:aa:40:16:8f:45:
59:00:9f:58:c5:00:95:73:52:a4:03:9a:c2:eb:e0:
d2:df:e1:89:fe:d9:a0:92:7f:97:e1:d2:25:f0:f7:
7c:67:4d:7f:bb:e0:bd:a4:1f:a3:8c:10:28:25:58:
af:29:3d:70:d2:c7:90:cb:72:2c:49:e5:d2:11:75:
44:6b:ee:61:30:c6:3c:e5:c5:49:b1:1f:71:29:b1:
00:fb:1e:fa:c4:39:52:bc:b3:b7:3d:bd:8f:0a:05:
b0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:49:DB:CC:2D:32:1A:69:FA:58:C0:A0:DD:2E:03:95:E7:61:FD:1D
X509v3 Authority Key Identifier:
keyid:DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/yUnbzC0yGmn6WMCg3S4Dledh_R0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.48.0/22
Signature Algorithm: sha256WithRSAEncryption
08:f0:31:4d:23:ac:af:54:26:4a:3d:99:cb:88:6d:a2:a2:96:
cd:4a:70:42:8b:78:46:b6:c0:c6:20:a1:a8:d2:85:3c:0e:5c:
90:99:5d:ff:bd:5a:1e:50:86:44:f7:61:32:3f:38:82:d9:bb:
0a:0f:ee:d1:4a:a9:6a:60:7e:ff:8e:ff:15:89:25:f9:de:41:
ac:11:e5:f5:33:18:b3:ea:8d:ec:cc:c9:6c:26:27:e4:78:92:
ec:84:7b:83:e0:15:c0:8c:4f:a4:cf:0b:1f:ce:4c:0f:b4:6b:
93:3c:f6:80:1c:e6:54:1b:6d:14:90:74:ad:44:ee:72:48:f5:
e3:cd:b3:e3:c6:97:8c:e2:15:6e:86:53:a9:2e:f0:be:8f:02:
71:e4:c4:93:40:e1:94:54:7c:1f:b9:84:ac:14:96:ae:59:1e:
42:0f:5b:14:3d:0c:75:7a:c1:58:ca:49:f0:2d:91:96:14:d3:
63:b2:f9:ca:4d:90:59:07:7f:51:9b:68:2a:c6:6a:46:8b:44:
32:30:aa:17:5f:d7:8c:11:d8:42:5a:36:4c:ed:64:43:e8:0f:
5c:eb:f4:33:75:6d:27:b4:02:9b:90:95:6e:0d:10:af:1a:6b:
04:fc:0c:6e:cd:5a:91:ed:63:40:ac:e8:68:a1:39:2f:a8:66:
d1:7a:eb:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:15 2023 by rpki-client on console-fra.rpki-client.org