Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/70f8bb-9a37-4f3e-a581-3ea8194fb446/1/jFQz1BGNm-O_o40wHdgXjoOK9sE.roa
File: jFQz1BGNm-O_o40wHdgXjoOK9sE.roa (raw, json)
Hash identifier: A9YnpY3nQuKxcOs2UiOJAM0Hz9fFE6Fi5LZHMGFuGAU=
Subject key identifier: 8C:54:33:D4:11:8D:9B:E3:BF:A3:8D:30:1D:D8:17:8E:83:8A:F6:C1
Certificate issuer: /CN=74f1059c273c50edcf3dcedfc5800152ec91dba2
Certificate serial: 018A5F2AA3F3FF7EA3879652EE261BD6D2A9
Authority key identifier: 74:F1:05:9C:27:3C:50:ED:CF:3D:CE:DF:C5:80:01:52:EC:91:DB:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dPEFnCc8UO3PPc7fxYABUuyR26I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/70f8bb-9a37-4f3e-a581-3ea8194fb446/1/jFQz1BGNm-O_o40wHdgXjoOK9sE.roa
Signing time: Mon 04 Sep 2023 07:49:04 +0000
ROA not before: Mon 04 Sep 2023 07:49:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43853
IP address blocks: 185.254.80.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:2a:a3:f3:ff:7e:a3:87:96:52:ee:26:1b:d6:d2:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74f1059c273c50edcf3dcedfc5800152ec91dba2
Validity
Not Before: Sep 4 07:49:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c5433d4118d9be3bfa38d301dd8178e838af6c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ce:5c:3f:7a:ea:49:81:d5:ff:ed:95:20:27:
cd:d3:b8:b7:29:ad:0e:3f:f6:70:7b:dd:38:50:e4:
b4:5a:4d:34:79:c0:dc:80:4e:49:18:92:1c:fa:ca:
ba:47:bb:98:aa:08:ea:65:58:84:37:46:9b:94:02:
d4:85:c6:69:3e:f1:e1:34:e9:7b:97:3e:b8:f7:62:
c6:89:3c:d6:93:47:5a:bf:ee:66:9b:34:cd:83:27:
c2:ee:42:64:88:18:cd:cc:dc:1c:2b:92:0c:51:a7:
98:21:61:bc:15:1d:1e:ad:84:a8:77:99:9d:16:4f:
c3:b0:5f:e5:07:cf:18:56:ae:d9:7b:78:14:a3:35:
d8:d6:ee:c8:a0:29:1c:a2:0d:e3:f4:18:18:f7:e2:
fa:50:e9:fa:8a:c2:a6:1e:47:99:a4:13:ce:00:d3:
e8:86:e9:a5:ef:cf:52:24:19:68:ea:09:f4:84:04:
38:3d:b6:32:f7:60:3f:4c:c0:3a:1e:c4:b7:05:5d:
5f:c0:b4:60:00:24:8d:c9:57:26:93:da:82:82:ea:
fd:51:b3:b8:f2:bb:7a:fc:d1:0e:0f:2f:a7:bb:85:
26:ff:b0:ec:05:10:8e:27:ba:b0:80:05:5c:12:76:
b4:60:76:a7:f5:62:0f:93:16:20:f0:af:83:cd:4e:
a3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:54:33:D4:11:8D:9B:E3:BF:A3:8D:30:1D:D8:17:8E:83:8A:F6:C1
X509v3 Authority Key Identifier:
keyid:74:F1:05:9C:27:3C:50:ED:CF:3D:CE:DF:C5:80:01:52:EC:91:DB:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dPEFnCc8UO3PPc7fxYABUuyR26I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/70f8bb-9a37-4f3e-a581-3ea8194fb446/1/jFQz1BGNm-O_o40wHdgXjoOK9sE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/70f8bb-9a37-4f3e-a581-3ea8194fb446/1/dPEFnCc8UO3PPc7fxYABUuyR26I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.80.0/22
Signature Algorithm: sha256WithRSAEncryption
20:c6:53:4d:9b:75:ec:45:a2:41:d6:0f:1c:f5:75:dc:2b:a6:
42:6e:ca:9d:be:29:94:5c:f1:9b:63:87:eb:ea:41:81:45:18:
4e:86:b0:14:67:cb:d6:18:ac:66:f0:19:38:3c:23:f2:a3:c2:
33:17:23:ff:23:de:26:6e:99:a4:b2:27:e7:d0:ec:7f:62:e5:
21:1e:d8:86:c9:04:28:43:9e:6b:b0:b7:1c:94:90:e1:19:8b:
26:6a:f5:39:20:f6:c5:58:b6:25:8f:51:8b:20:31:b1:a2:bf:
38:c0:02:9e:ea:9b:35:f1:75:ac:a7:76:02:a1:35:ee:da:79:
43:3d:8e:96:56:6d:46:49:88:89:ad:93:2f:5d:b2:af:4c:78:
52:fb:9d:6e:b2:79:22:e5:3d:5b:14:a3:b3:cb:0c:67:17:4d:
06:93:fe:f6:19:bb:c4:4e:12:c7:54:1b:e5:45:29:2a:0d:2c:
01:22:82:d4:da:5c:de:41:0f:8f:a0:0d:1d:43:db:11:66:4b:
19:e9:61:35:d6:29:6a:23:a1:f0:ea:17:49:64:aa:cf:d7:cd:
4f:d9:40:af:43:03:cc:67:71:70:59:5b:89:15:57:e1:e5:b3:
f1:cc:5d:21:dc:cd:29:b4:4c:e7:f5:bd:42:99:7e:1f:69:69:
50:04:f3:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:36 2025 by rpki-client