Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/4f3d1b-8361-411e-a148-8858a559f251/1/61sFTFVOWruGUJvk1emZpNQbOM4.roa
File: 61sFTFVOWruGUJvk1emZpNQbOM4.roa (raw, json)
Hash identifier: sXQNZ2ZRIJWRP0SPAXzB8EhbSOV/t9D1eEclgJpy3Bw=
Subject key identifier: EB:5B:05:4C:55:4E:5A:BB:86:50:9B:E4:D5:E9:99:A4:D4:1B:38:CE
Certificate issuer: /CN=99dcbdf0632a101613a8f6c9449b29ed45c1a872
Certificate serial: 0183F049300EA3C7D95D32FA0FF2F6BC3B19
Authority key identifier: 99:DC:BD:F0:63:2A:10:16:13:A8:F6:C9:44:9B:29:ED:45:C1:A8:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdy98GMqEBYTqPbJRJsp7UXBqHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/4f3d1b-8361-411e-a148-8858a559f251/1/61sFTFVOWruGUJvk1emZpNQbOM4.roa
Signing time: Wed 19 Oct 2022 12:47:51 +0000
ROA not before: Wed 19 Oct 2022 12:47:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 185.248.0.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f0:49:30:0e:a3:c7:d9:5d:32:fa:0f:f2:f6:bc:3b:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99dcbdf0632a101613a8f6c9449b29ed45c1a872
Validity
Not Before: Oct 19 12:47:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb5b054c554e5abb86509be4d5e999a4d41b38ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a7:73:2f:7b:38:54:30:35:f2:52:af:d3:84:
f8:d0:be:02:58:23:d7:34:e6:fd:96:d9:2d:a9:8a:
2d:41:9e:59:d9:f2:68:25:c8:40:74:c9:50:e6:00:
5b:5f:33:89:19:0f:87:8c:4e:89:d4:66:00:53:47:
a6:b2:1b:24:bb:21:bb:80:40:dd:4c:3f:05:d1:c4:
2a:b7:c1:fb:8d:13:9a:49:12:33:cf:24:20:e3:49:
29:9d:cc:d0:ef:a0:00:57:98:93:80:dc:c1:23:47:
dd:b6:78:68:ab:ed:cb:f4:85:cc:a6:df:4a:ee:df:
d6:9b:ad:4a:53:3b:e9:eb:8d:34:9d:6f:0c:9c:6e:
d4:43:17:0e:8b:c6:10:50:b7:35:2c:57:dc:2d:68:
c5:0e:24:95:d8:25:88:da:b0:de:e3:d5:d5:3c:4c:
24:2d:c6:e2:ae:b6:80:bf:96:04:f2:e0:dc:b9:fb:
07:b8:56:50:11:ab:b1:5b:c6:a8:52:af:b3:1d:24:
2f:ba:05:e2:6c:29:02:a6:f6:2d:c5:3a:74:45:d7:
ef:be:0d:13:ce:e5:82:be:a0:ff:80:92:60:22:3f:
dc:e7:cc:b2:f8:e5:6c:6f:80:21:9c:8f:46:a7:45:
bc:e8:cf:62:9c:7b:f7:32:19:94:65:d5:a3:a4:b4:
a7:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:5B:05:4C:55:4E:5A:BB:86:50:9B:E4:D5:E9:99:A4:D4:1B:38:CE
X509v3 Authority Key Identifier:
keyid:99:DC:BD:F0:63:2A:10:16:13:A8:F6:C9:44:9B:29:ED:45:C1:A8:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdy98GMqEBYTqPbJRJsp7UXBqHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/4f3d1b-8361-411e-a148-8858a559f251/1/61sFTFVOWruGUJvk1emZpNQbOM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/4f3d1b-8361-411e-a148-8858a559f251/1/mdy98GMqEBYTqPbJRJsp7UXBqHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.0.0/23
Signature Algorithm: sha256WithRSAEncryption
80:25:6d:31:11:46:6b:13:2a:c7:c7:c6:8d:eb:86:c9:2b:6b:
5c:1a:e0:ca:e2:d4:1d:11:6d:cf:13:98:25:3f:6d:17:03:e3:
54:37:4c:b8:b1:76:f7:10:a9:ff:a0:77:2c:6b:40:91:e4:44:
22:e9:f3:2d:59:6c:1f:36:2d:f2:56:af:31:40:a4:5e:88:a0:
13:f6:84:55:96:cd:bf:f7:72:7d:6a:5d:dc:0a:8c:64:30:17:
e6:7f:2e:e7:c3:79:0c:68:82:ec:e8:fe:9b:e2:09:ad:ee:a7:
f0:64:7d:e2:e8:5c:2b:21:b4:70:85:c7:33:3b:e3:a8:a1:7f:
f3:5c:1a:5c:47:43:9b:a5:02:0a:19:54:2d:af:0c:c1:be:df:
07:fd:0a:f0:15:0a:8c:c0:0f:4a:ef:c6:d8:6b:6c:9f:7b:5a:
6e:3f:87:d3:e9:02:e1:56:4d:86:70:58:6e:9c:9b:8a:cb:8a:
5d:42:26:7c:50:28:c6:82:43:61:9a:e7:c8:dd:0d:e6:c7:38:
c3:27:47:cb:a2:42:55:3a:01:b0:98:e4:ea:eb:32:cc:03:c1:
e3:8b:20:c7:7e:7b:fe:11:22:94:53:46:18:c5:ba:f0:7f:f2:
53:8d:96:73:8d:03:6a:4e:5d:72:6d:04:17:1d:dd:cf:be:06:
37:9a:b6:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:21 2023 by rpki-client on console-ams.rpki-client.org