Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/hXQIu8cDsOp7Y03GQo3AOwebxvE.roa
File: hXQIu8cDsOp7Y03GQo3AOwebxvE.roa (raw, json)
Hash identifier: ZNWavsJjiQiHtl+yD4Z+Xk/ZyjUUqv3GmhwIkcMUaj4=
Subject key identifier: 85:74:08:BB:C7:03:B0:EA:7B:63:4D:C6:42:8D:C0:3B:07:9B:C6:F1
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 01852AEFF1B21BE7CB5E749C81C7A56A5DAA
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/hXQIu8cDsOp7Y03GQo3AOwebxvE.roa
Signing time: Mon 19 Dec 2022 15:10:46 +0000
ROA not before: Mon 19 Dec 2022 15:10:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204464
IP address blocks: 185.248.96.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:ef:f1:b2:1b:e7:cb:5e:74:9c:81:c7:a5:6a:5d:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 19 15:10:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=857408bbc703b0ea7b634dc6428dc03b079bc6f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d7:39:f5:66:e9:01:8d:7b:5f:63:52:28:79:
f3:8a:f7:2f:12:f7:03:66:a9:29:79:bb:11:61:0c:
39:46:ab:60:90:04:7d:b6:6b:a5:2a:1d:53:6c:17:
86:39:1b:0f:e7:e1:63:c2:65:09:00:fb:35:b9:d3:
1a:46:0e:ff:b3:d9:90:ce:ca:bc:97:10:76:56:78:
ea:1f:74:dd:a9:71:44:2f:5d:3c:06:12:94:98:e6:
32:0a:4b:59:49:5b:53:f0:df:07:0d:eb:5b:f2:71:
58:39:5d:31:f3:3b:c3:90:2e:96:b7:27:aa:39:21:
30:e6:c6:c0:1c:3c:dc:03:59:68:09:b1:41:6d:2e:
96:ef:fc:57:41:05:89:1c:09:41:a0:5c:38:db:80:
b0:16:ab:b4:77:c6:95:72:1a:d3:bd:82:cc:63:58:
09:2e:48:f0:d2:49:a7:12:a8:fe:5a:ac:6c:8d:34:
90:1b:05:09:a3:fb:48:50:dc:c1:9d:0d:c1:e7:1a:
0a:00:b1:1f:e4:5e:5d:fd:ef:6e:1a:49:a0:90:9a:
a2:9d:71:0e:aa:cb:3b:42:64:51:7f:54:68:14:78:
19:13:50:e4:5b:ac:1f:46:b5:ee:24:7d:8b:e3:f3:
44:49:8a:73:be:10:5e:07:c9:3b:4b:97:9e:bb:ea:
7b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:74:08:BB:C7:03:B0:EA:7B:63:4D:C6:42:8D:C0:3B:07:9B:C6:F1
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/hXQIu8cDsOp7Y03GQo3AOwebxvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.96.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:6f:f9:94:03:6c:d6:6a:d1:64:dc:45:05:dc:b8:36:03:d1:
a3:6c:0c:dc:f7:af:16:c2:4f:e0:5b:ed:17:4c:0e:4d:89:5a:
27:55:49:83:92:98:e7:6a:5c:04:70:11:4a:7b:a9:a3:25:f0:
51:92:08:69:78:86:db:29:87:00:d4:2a:48:c8:0d:20:89:63:
c1:84:61:ca:36:b8:9d:62:34:e3:0d:32:da:8e:c4:94:9c:87:
b2:3f:3f:17:63:a6:08:ba:3c:1f:d5:48:69:69:48:a3:c7:58:
c6:ff:42:52:26:09:09:0b:66:a2:6e:1a:05:37:41:8c:a6:0b:
6b:cf:01:f9:54:ec:36:b6:55:e0:34:6c:48:3a:6c:df:81:d4:
c5:b1:77:ce:9e:7a:83:a0:3e:5f:88:1f:be:b6:d1:eb:95:0b:
ac:ef:22:49:c7:1c:a1:46:6c:ae:ee:d8:5a:51:83:e2:92:41:
d5:c2:bf:44:e3:05:30:40:a4:11:0c:13:4d:3a:c5:fb:32:23:
ce:e6:94:13:e4:eb:a7:d3:c6:76:26:3e:45:b7:03:71:03:7d:
44:f6:ed:13:23:cb:20:fc:23:0a:8d:03:a1:08:ee:6e:cc:d0:
56:3c:4a:09:ad:37:92:bf:30:3a:6b:87:e4:cd:5c:b6:90:65:
cb:05:06:e0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUq7/GyG+fLXnScgcelal2qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NzVmYjA5MzRjZjZhNThkY2NlZjExMDg3NWRiZTVlM2U4
YjZiNzUwHhcNMjIxMjE5MTUxMDQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NTc0MDhiYmM3MDNiMGVhN2I2MzRkYzY0MjhkYzAzYjA3OWJjNmYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjdc59WbpAY17X2NSKHnzivcvEvcD
ZqkpebsRYQw5RqtgkAR9tmulKh1TbBeGORsP5+FjwmUJAPs1udMaRg7/s9mQzsq8
lxB2VnjqH3TdqXFEL108BhKUmOYyCktZSVtT8N8HDetb8nFYOV0x8zvDkC6Wtyeq
OSEw5sbAHDzcA1loCbFBbS6W7/xXQQWJHAlBoFw424CwFqu0d8aVchrTvYLMY1gJ
Lkjw0kmnEqj+WqxsjTSQGwUJo/tIUNzBnQ3B5xoKALEf5F5d/e9uGkmgkJqinXEO
qss7QmRRf1RoFHgZE1DkW6wfRrXuJH2L4/NESYpzvhBeB8k7S5eeu+p7gwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIV0CLvHA7Dqe2NNxkKNwDsHm8bxMB8GA1UdIwQY
MBaAFNR1+wk0z2pY3M7xEIddvl4+i2t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYt
Yzc5MTRhYjY0MjczLzEvaFhRSXU4Y0RzT3A3WTAzR1FvM0FPd2VieHZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYtYzc5MTRhYjY0Mjcz
LzEvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCufhgMA0G
CSqGSIb3DQEBCwUAA4IBAQBLb/mUA2zWatFk3EUF3Lg2A9GjbAzc968Wwk/gW+0X
TA5NiVonVUmDkpjnalwEcBFKe6mjJfBRkghpeIbbKYcA1CpIyA0giWPBhGHKNrid
YjTjDTLajsSUnIeyPz8XY6YIujwf1UhpaUijx1jG/0JSJgkJC2aibhoFN0GMpgtr
zwH5VOw2tlXgNGxIOmzfgdTFsXfOnnqDoD5fiB++ttHrlQus7yJJxxyhRmyu7tha
UYPikkHVwr9E4wUwQKQRDBNNOsX7MiPO5pQT5Oun08Z2Jj5FtwNxA31E9u0TI8sg
/CMKjQOhCO5uzNBWPEoJrTeSvzA6a4fkzVy2kGXLBQbg
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:51 2024 by rpki-client on console-ams.rpki-client.org