Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/239c74-3c43-4251-9a85-9be869a9c60c/1/jDMOSkQ8JlkgbXulS3BZCIGZUno.roa
File: jDMOSkQ8JlkgbXulS3BZCIGZUno.roa (raw, json)
Hash identifier: lbPT4pZGNoOodRYm/DKNHDBggGL5NVk1blOFg3HT7Fg=
Subject key identifier: 8C:33:0E:4A:44:3C:26:59:20:6D:7B:A5:4B:70:59:08:81:99:52:7A
Certificate issuer: /CN=bd116d35b11c938233acbadf5d7c2d5b2c6d0154
Certificate serial: 0181F170CBB49AC5BF2E024EDF1AAC0030F9
Authority key identifier: BD:11:6D:35:B1:1C:93:82:33:AC:BA:DF:5D:7C:2D:5B:2C:6D:01:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vRFtNbEck4IzrLrfXXwtWyxtAVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/239c74-3c43-4251-9a85-9be869a9c60c/1/jDMOSkQ8JlkgbXulS3BZCIGZUno.roa
Signing time: Tue 12 Jul 2022 08:05:09 +0000
ROA not before: Tue 12 Jul 2022 08:05:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30848
IP address blocks: 185.210.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f1:70:cb:b4:9a:c5:bf:2e:02:4e:df:1a:ac:00:30:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd116d35b11c938233acbadf5d7c2d5b2c6d0154
Validity
Not Before: Jul 12 08:05:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c330e4a443c2659206d7ba54b7059088199527a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ed:33:fe:00:f1:37:76:78:7a:d0:96:e6:fb:
83:74:ad:23:94:a3:3f:a2:a3:ba:7b:2b:85:9c:47:
e7:e5:e7:4a:81:4d:bc:3c:0c:5e:f8:48:89:ab:48:
ad:d5:a8:b6:54:85:8f:bf:d6:26:7c:a2:09:cd:ed:
c8:5c:9f:0e:5d:71:5f:5b:fa:18:ee:73:05:f8:3b:
7b:9e:35:c1:16:f8:dc:65:1c:48:a6:96:9b:59:25:
25:a3:14:17:9a:15:5f:da:b1:45:e4:61:9a:28:c9:
8a:47:67:c4:ba:3b:a4:8d:9c:b5:fa:c5:11:b4:97:
19:48:91:f0:e5:87:ea:e6:4a:ba:3e:c5:84:51:44:
50:f3:b4:59:e9:4e:90:d4:f1:34:01:a5:0c:71:60:
3c:69:07:94:64:22:1d:4d:6a:f0:32:1a:cb:c5:91:
20:99:88:8d:4a:79:2a:bc:60:c3:a0:b9:2f:fb:0e:
2e:08:4f:51:50:85:de:a3:ed:88:f1:73:94:0d:a0:
ea:51:12:1f:97:d1:43:e2:f3:da:c3:89:56:0f:da:
84:71:7c:12:f9:39:c2:77:0e:7c:cb:ba:1f:2e:39:
45:53:a9:6f:cf:3a:71:f0:a3:80:08:c2:28:0a:64:
1b:01:ab:a8:39:7b:f5:13:9c:c9:0a:fe:39:4b:e0:
e4:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:33:0E:4A:44:3C:26:59:20:6D:7B:A5:4B:70:59:08:81:99:52:7A
X509v3 Authority Key Identifier:
keyid:BD:11:6D:35:B1:1C:93:82:33:AC:BA:DF:5D:7C:2D:5B:2C:6D:01:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vRFtNbEck4IzrLrfXXwtWyxtAVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/239c74-3c43-4251-9a85-9be869a9c60c/1/jDMOSkQ8JlkgbXulS3BZCIGZUno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/239c74-3c43-4251-9a85-9be869a9c60c/1/vRFtNbEck4IzrLrfXXwtWyxtAVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.248.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:a0:17:52:51:b9:eb:1b:cf:91:63:d7:7e:09:1a:b0:31:09:
1e:2f:76:74:06:32:b1:67:a5:de:78:a5:01:92:27:b9:46:f7:
35:bd:17:47:74:36:d5:a0:b7:fd:64:f9:45:92:b8:8a:fa:05:
39:86:8f:6a:8f:99:a0:c0:b9:fb:53:61:07:3d:b4:49:e4:cc:
d2:8f:f1:94:8c:ce:74:20:ad:87:27:b2:d7:56:82:cf:a5:33:
9b:5b:26:6d:4b:83:a6:37:c5:2a:29:a6:5b:19:19:14:36:74:
8f:f5:12:66:81:05:8e:92:61:91:d7:e8:98:19:a2:c2:e3:5d:
52:9b:ff:10:92:92:af:e0:39:16:5a:a9:d5:8f:da:c1:90:89:
ed:d4:32:a1:f3:07:b2:4e:d3:e2:d5:fc:2a:88:dc:0d:aa:8e:
b9:7c:d8:25:73:a0:75:ca:0b:cd:f7:c0:ad:30:e0:c5:bb:26:
d1:b4:dc:7e:e2:0b:17:73:f3:8f:92:f2:1e:3a:d8:97:9f:09:
20:16:fd:d7:b6:51:0f:5a:57:02:f3:04:60:cf:90:ee:07:7f:
dd:26:8e:15:33:c6:6e:27:a5:a1:b1:4c:c8:6f:38:4e:99:9f:
d1:75:5b:b2:9d:2f:62:25:f8:e2:82:15:b5:a6:c6:6e:85:13:
43:f7:45:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:03 2023 by rpki-client on console-ams.rpki-client.org