Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/KYjljRZqA2z0LaSjQV_bko-6IeY.roa
File: KYjljRZqA2z0LaSjQV_bko-6IeY.roa (raw, json)
Hash identifier: gKCjR58gNk2gfe94zHzIEr/DyhEeTRK3nwYcA4lOMFI=
Subject key identifier: 29:88:E5:8D:16:6A:03:6C:F4:2D:A4:A3:41:5F:DB:92:8F:BA:21:E6
Certificate issuer: /CN=e15136feff3574ef9b2262de59b06a21908fab3e
Certificate serial: 04054CF7
Authority key identifier: E1:51:36:FE:FF:35:74:EF:9B:22:62:DE:59:B0:6A:21:90:8F:AB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VE2_v81dO-bImLeWbBqIZCPqz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/KYjljRZqA2z0LaSjQV_bko-6IeY.roa
Signing time: Fri 03 Jun 2022 19:48:23 +0000
ROA not before: Fri 03 Jun 2022 19:48:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49801
IP address blocks: 185.248.32.0/24 maxlen: 24
2a10:a440::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67456247 (0x4054cf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15136feff3574ef9b2262de59b06a21908fab3e
Validity
Not Before: Jun 3 19:48:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2988e58d166a036cf42da4a3415fdb928fba21e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2c:f4:5e:4a:c9:a1:3c:06:fe:38:2f:48:bc:
41:fa:5c:ed:8b:f2:99:8c:d2:c3:d1:48:f0:9b:9a:
61:13:2b:10:3c:f8:24:e5:6d:34:48:7b:83:0f:17:
3c:e4:8b:72:79:d4:f4:2b:87:a5:fc:1f:bb:88:a9:
c4:fa:03:dc:51:01:15:b8:b8:a5:03:fa:f8:e6:09:
47:dc:ff:3f:d5:a4:53:ad:2b:ee:37:53:65:e7:d3:
6d:5c:54:3a:38:64:63:0c:18:b2:dd:fd:50:95:b2:
c5:a4:5b:bc:4d:54:a6:96:ae:75:4c:6a:fb:62:58:
5c:cd:31:c7:51:fb:b0:6a:cd:24:51:64:2e:8a:f9:
92:8d:5c:99:c1:76:2b:e1:5a:bd:97:77:0c:06:7d:
d4:1e:c7:21:49:9f:94:1d:02:35:d2:a7:82:be:85:
4a:12:fe:51:71:a1:3f:3a:37:6d:5d:d7:8b:bb:ee:
19:12:6f:38:87:06:06:50:eb:2d:f3:fa:ba:aa:b3:
3d:ce:33:14:62:ef:81:97:26:b0:3b:d4:a9:6f:4c:
38:71:bd:cc:88:5e:d0:6c:d2:83:84:e1:2e:8e:05:
89:21:01:07:93:b0:07:2e:b4:3e:e9:bb:ac:e4:fa:
51:4a:f1:4a:e9:84:d9:27:20:ce:32:36:af:2f:23:
15:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:88:E5:8D:16:6A:03:6C:F4:2D:A4:A3:41:5F:DB:92:8F:BA:21:E6
X509v3 Authority Key Identifier:
keyid:E1:51:36:FE:FF:35:74:EF:9B:22:62:DE:59:B0:6A:21:90:8F:AB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VE2_v81dO-bImLeWbBqIZCPqz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/KYjljRZqA2z0LaSjQV_bko-6IeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/4VE2_v81dO-bImLeWbBqIZCPqz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.32.0/24
IPv6:
2a10:a440::/29
Signature Algorithm: sha256WithRSAEncryption
a9:c7:a4:c3:b3:7b:58:ab:9d:07:b2:75:29:49:f0:36:4e:87:
31:22:4a:5f:09:5c:e7:fe:4b:84:2e:23:50:e6:a7:fd:25:3d:
22:cb:28:1a:31:cb:a0:0c:ef:c9:77:17:9f:bb:52:aa:0c:81:
2a:66:2b:a3:b3:5f:19:30:68:a1:e8:7b:bb:6f:e8:a9:33:79:
8b:5f:5e:55:ac:ec:e4:b7:1a:b4:6a:8c:1e:75:b6:b5:5e:7c:
a8:fa:54:0a:ba:9e:20:cb:19:96:a2:20:4f:55:10:73:aa:76:
79:3c:1e:a9:17:e1:14:c4:e4:b3:93:4f:f2:29:1d:9f:62:3d:
44:1f:7b:61:1f:80:7d:b1:6f:0e:bf:ca:de:d3:17:5e:52:02:
ae:d0:b0:11:0d:f5:8a:c7:f0:bd:97:10:13:1b:75:fe:c9:a3:
ae:28:20:60:75:b5:ff:a3:10:cf:78:06:17:f2:4c:23:b4:05:
a4:96:a0:85:21:0d:64:79:93:44:0e:f9:be:ce:2b:f1:2d:1d:
25:35:fb:ed:9d:fb:0d:e3:25:0a:85:a8:d6:82:27:f3:3b:40:
8d:df:c8:61:a5:94:d7:2c:57:3b:2f:a2:2a:94:fa:c6:55:a1:
94:aa:d8:72:f8:3e:2c:95:90:e2:74:fd:9c:51:d2:ac:e9:2b:
f2:04:85:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:42 2023 by rpki-client on console-ams.rpki-client.org