Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/321f74-092d-4dff-b335-2054f6e61922/1/1-pJgTXQdSsJd0qupFBmQ-R2JBIA.roa
File: 1-pJgTXQdSsJd0qupFBmQ-R2JBIA.roa (raw, json)
Hash identifier: 8jUNYo9OC/mmBFFleROR1ffQoHsEISwXx5Y6zS2NEtY=
Subject key identifier: FA:92:60:4D:74:1D:4A:C2:5D:D2:AB:A9:14:19:90:F9:1D:89:04:80
Certificate issuer: /CN=1651d3ddc6add483b761ac0476269533fe7ea717
Certificate serial: 100470CC
Authority key identifier: 16:51:D3:DD:C6:AD:D4:83:B7:61:AC:04:76:26:95:33:FE:7E:A7:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FlHT3cat1IO3YawEdiaVM_5-pxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/321f74-092d-4dff-b335-2054f6e61922/1/1-pJgTXQdSsJd0qupFBmQ-R2JBIA.roa
Signing time: Sat 01 Jan 2022 15:56:11 +0000
ROA not before: Sat 01 Jan 2022 15:56:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202894
IP address blocks: 185.149.251.0/24 maxlen: 24
185.149.250.0/24 maxlen: 24
185.149.249.0/24 maxlen: 24
185.149.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 268726476 (0x100470cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1651d3ddc6add483b761ac0476269533fe7ea717
Validity
Not Before: Jan 1 15:56:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa92604d741d4ac25dd2aba9141990f91d890480
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:33:0a:45:6d:3c:8c:d1:7c:c7:1b:a3:2f:44:
b5:b5:46:fd:5f:bd:01:03:ca:2a:a5:6a:75:3f:34:
74:cb:8a:e2:c6:3e:e5:e4:58:2b:48:dd:f8:53:b3:
0c:a2:88:91:97:9b:2e:6a:11:ab:5f:d0:1e:0d:84:
fe:2f:28:57:90:a6:53:e7:f7:af:1b:52:1f:ee:31:
9c:72:20:ef:6f:9d:98:36:55:59:d3:7e:86:c3:d9:
e9:78:c4:58:2f:52:ec:26:50:93:b3:b1:ea:bb:85:
54:40:e5:e1:6d:a8:32:25:2b:a2:23:d5:4e:88:5e:
b3:dd:89:a0:a3:0f:d0:66:95:78:9f:70:38:fb:b1:
f8:98:25:51:8d:87:44:a7:7e:ef:c5:cd:29:6f:0e:
76:fc:b4:a5:36:09:62:66:f4:57:cc:12:2f:3c:b7:
da:d5:4b:36:cf:60:35:54:90:28:fc:cc:75:e4:9d:
82:fa:bc:af:ea:bb:f5:ba:b1:fc:c0:d0:8b:b1:06:
7f:07:2f:84:d4:62:9a:fb:c7:24:16:9e:4c:7b:2c:
14:9c:33:66:50:16:7b:67:b0:f7:24:b0:55:85:2f:
fc:da:ad:ca:f7:b4:0d:88:53:32:77:9d:30:c5:f3:
ae:ab:14:0b:0a:2a:0f:00:64:71:9b:77:ea:cf:74:
31:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:92:60:4D:74:1D:4A:C2:5D:D2:AB:A9:14:19:90:F9:1D:89:04:80
X509v3 Authority Key Identifier:
keyid:16:51:D3:DD:C6:AD:D4:83:B7:61:AC:04:76:26:95:33:FE:7E:A7:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FlHT3cat1IO3YawEdiaVM_5-pxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/321f74-092d-4dff-b335-2054f6e61922/1/1-pJgTXQdSsJd0qupFBmQ-R2JBIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/321f74-092d-4dff-b335-2054f6e61922/1/FlHT3cat1IO3YawEdiaVM_5-pxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.248.0/22
Signature Algorithm: sha256WithRSAEncryption
19:8f:87:ca:a9:8b:f2:e4:f2:15:d8:be:07:5f:c2:ac:41:d2:
75:2c:9c:90:de:46:42:9c:c0:14:1b:ef:a5:84:29:10:0d:18:
c0:e1:0d:99:e8:ff:d9:44:13:fa:e7:70:1e:b7:46:6d:a6:3d:
13:be:db:ca:e7:82:e4:f0:05:ef:3e:9e:83:9a:84:67:a6:c0:
d2:c2:8c:c2:63:43:16:ad:de:0c:c2:28:eb:29:a0:62:e7:39:
f5:d0:fe:a7:f1:3d:01:ed:a2:bb:e1:74:6f:f5:89:d1:2e:ec:
87:c4:6a:cf:82:e4:6f:95:b3:22:2e:6d:3a:ab:7b:4c:71:96:
c7:1d:76:cf:7c:94:93:bb:79:5b:c6:e2:84:44:13:c2:f2:63:
68:b5:eb:82:ca:05:16:0b:82:65:23:46:43:19:23:61:84:ec:
31:b0:8f:5a:f6:64:6f:d4:32:7e:3f:d7:3a:f3:03:39:f4:aa:
c9:0a:2e:8b:34:4e:17:e9:fd:da:bf:0e:37:89:ba:ae:48:37:
db:96:35:05:cf:cf:94:78:55:9a:5b:e9:a0:9d:79:1d:74:a9:
9c:70:ab:c3:ef:fd:35:6e:82:e2:af:0f:cd:74:06:36:b4:5d:
58:c0:6c:7d:bd:05:2a:0d:4f:3e:5a:ad:6f:33:b5:06:be:67:
7b:09:bd:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:30 2023 by rpki-client on console-ams.rpki-client.org