Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/rPDjcDY2UtYTgkKoF-HltOCeuuc.roa
File: rPDjcDY2UtYTgkKoF-HltOCeuuc.roa (raw, json)
Hash identifier: 6bqXHvStx/yAfpJGcpj90C0fiKmKhWXIHftt8BysS+s=
Subject key identifier: AC:F0:E3:70:36:36:52:D6:13:82:42:A8:17:E1:E5:B4:E0:9E:BA:E7
Certificate issuer: /CN=e15136feff3574ef9b2262de59b06a21908fab3e
Certificate serial: 02ABD923
Authority key identifier: E1:51:36:FE:FF:35:74:EF:9B:22:62:DE:59:B0:6A:21:90:8F:AB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VE2_v81dO-bImLeWbBqIZCPqz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/rPDjcDY2UtYTgkKoF-HltOCeuuc.roa
Signing time: Sat 01 Jan 2022 04:58:55 +0000
ROA not before: Sat 01 Jan 2022 04:58:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41227
IP address blocks: 185.248.32.0/24 maxlen: 24
2a10:a440::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44816675 (0x2abd923)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15136feff3574ef9b2262de59b06a21908fab3e
Validity
Not Before: Jan 1 04:58:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=acf0e370363652d6138242a817e1e5b4e09ebae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:cb:bc:71:d7:6c:d7:6f:d3:4f:fd:65:26:04:
b5:94:7a:fb:8d:6c:d9:9d:cc:09:14:97:a0:e6:31:
c6:bb:5f:d2:4d:d4:b6:ea:01:63:7c:bd:3b:d8:9d:
cb:16:81:69:81:9e:eb:a5:ef:5b:a4:b2:5f:7f:b3:
bf:06:e7:45:db:f8:d8:d7:57:1f:bb:c4:c5:35:3e:
97:8f:09:9d:fe:73:8f:27:6c:a9:3c:29:28:4a:54:
44:29:a7:0a:f6:b2:a9:29:a0:75:1c:3a:f3:6f:db:
1f:d2:13:e2:51:b7:ec:56:af:74:88:2c:35:9e:27:
fa:26:32:26:9d:9a:04:cb:d9:ed:b0:4e:83:7c:8a:
5f:70:fe:44:9e:c3:57:96:6a:ae:fe:4a:aa:83:3e:
06:0f:61:2b:3e:97:a7:71:51:15:28:13:da:f6:a2:
e6:12:e6:05:71:51:6d:57:a4:ad:13:2b:cb:28:82:
e9:3b:c8:66:ae:df:a9:49:af:f7:78:09:c8:b1:c4:
67:d0:bc:32:5c:c7:0d:d8:b0:cf:06:91:94:5d:c6:
9e:56:55:ec:95:37:1e:55:19:5c:4f:73:f0:b3:d9:
6f:f0:6b:85:81:41:27:54:5d:e2:da:60:04:b0:7d:
49:ce:8a:ca:21:58:61:ba:b4:42:a8:29:48:c4:27:
52:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:F0:E3:70:36:36:52:D6:13:82:42:A8:17:E1:E5:B4:E0:9E:BA:E7
X509v3 Authority Key Identifier:
keyid:E1:51:36:FE:FF:35:74:EF:9B:22:62:DE:59:B0:6A:21:90:8F:AB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VE2_v81dO-bImLeWbBqIZCPqz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/rPDjcDY2UtYTgkKoF-HltOCeuuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/4VE2_v81dO-bImLeWbBqIZCPqz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.32.0/24
IPv6:
2a10:a440::/29
Signature Algorithm: sha256WithRSAEncryption
22:9c:56:fc:68:1d:69:59:d1:c3:78:f9:1d:59:9e:80:8f:22:
d3:8b:0e:9a:9d:fa:6b:46:03:17:75:c8:d2:bd:5d:9f:2f:8c:
f5:a3:5c:07:56:86:27:3c:55:11:9a:3e:0e:30:fe:5b:a3:73:
90:ac:67:dd:e0:39:99:7f:16:ea:48:25:da:74:d7:79:24:10:
cf:51:a7:fc:99:81:08:ac:01:4b:21:c5:84:ed:80:96:85:95:
ba:77:7e:b4:17:3c:a4:a5:28:5a:84:ac:e4:7e:ad:69:18:a3:
62:d1:46:4f:04:4f:20:c8:6d:bb:25:19:3d:85:06:27:00:17:
2f:15:93:1e:35:b3:80:4a:c1:9a:5b:d3:1c:73:d3:ee:20:5a:
38:2b:ac:56:80:be:d2:f8:14:ca:a1:e5:5f:d2:d2:e3:cd:0a:
d0:89:c9:ef:f3:8d:06:1d:96:40:b1:71:a7:22:83:6e:1a:a7:
97:43:f6:70:ce:a1:58:3b:69:84:f7:9d:74:18:bc:26:bb:55:
56:1c:2c:bd:db:53:7d:d9:29:95:e6:d4:1a:07:2f:5f:4a:58:
6f:b0:3c:f3:b0:3c:90:63:4a:02:97:86:4e:c7:c3:8e:e4:0d:
22:4e:e2:db:a1:b3:7c:dc:18:9b:0d:4b:82:f1:7e:ff:4d:39:
74:81:e0:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:42 2023 by rpki-client on console-ams.rpki-client.org