Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/d983cd-3f8e-4d6e-a38c-4d8d62b18e89/1/SP8FDjVG43mumVoZG0x_8BEe9Og.roa
File: SP8FDjVG43mumVoZG0x_8BEe9Og.roa (raw, json)
Hash identifier: mcSXHkqLMz03/8OInFxHi4k303yf6OXCfDluFXRhRbg=
Subject key identifier: 48:FF:05:0E:35:46:E3:79:AE:99:5A:19:1B:4C:7F:F0:11:1E:F4:E8
Certificate issuer: /CN=6c5311a57ccfcb5135261ff39bd19a115ef3e7cf
Certificate serial: 0933B487
Authority key identifier: 6C:53:11:A5:7C:CF:CB:51:35:26:1F:F3:9B:D1:9A:11:5E:F3:E7:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bFMRpXzPy1E1Jh_zm9GaEV7z588.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/d983cd-3f8e-4d6e-a38c-4d8d62b18e89/1/SP8FDjVG43mumVoZG0x_8BEe9Og.roa
Signing time: Sat 01 Jan 2022 16:06:15 +0000
ROA not before: Sat 01 Jan 2022 16:06:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205187
IP address blocks: 185.226.248.0/22 maxlen: 24
2a0c:7e00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154383495 (0x933b487)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c5311a57ccfcb5135261ff39bd19a115ef3e7cf
Validity
Not Before: Jan 1 16:06:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48ff050e3546e379ae995a191b4c7ff0111ef4e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:05:62:34:2b:ce:ba:ee:13:a5:9a:f5:e1:5b:
9b:f6:77:91:ae:d1:80:14:39:a6:e3:46:18:3f:0b:
3c:52:17:33:5a:58:87:0f:d2:22:91:8c:e4:f0:f1:
7f:ab:6b:eb:d0:3f:08:22:a8:c7:60:cc:3d:40:38:
9d:2e:d3:7f:eb:93:e8:43:5e:4a:93:94:77:9b:f7:
b2:22:ff:f5:82:43:1f:e6:8c:26:56:d1:51:b0:dc:
67:54:54:ee:80:e0:1a:52:af:d8:5e:ae:01:1b:c4:
c0:06:d6:78:4e:f5:82:01:e0:fc:7c:89:eb:e2:39:
fd:1a:92:28:ba:04:a1:f3:6f:bf:32:dd:62:ce:5c:
0b:55:cb:fc:21:63:6a:f4:11:ca:1c:9d:fb:b8:8e:
b3:3c:ac:11:e4:a2:30:87:87:3b:77:d8:c5:5d:cd:
78:e9:4e:3b:59:1b:08:d8:46:ab:09:9f:25:1b:c4:
b3:b9:e6:ab:aa:e9:ca:5d:0b:1b:be:4c:76:00:2d:
2d:47:08:10:eb:b1:dc:49:a7:7a:19:93:64:ed:b0:
de:17:5c:8a:64:e8:86:d3:d0:55:cf:74:8b:84:c2:
61:5b:33:cc:de:ce:75:38:30:35:e9:45:3e:b5:52:
05:bc:c8:60:d8:cd:30:22:a2:d5:31:dc:0f:19:6d:
bf:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:FF:05:0E:35:46:E3:79:AE:99:5A:19:1B:4C:7F:F0:11:1E:F4:E8
X509v3 Authority Key Identifier:
keyid:6C:53:11:A5:7C:CF:CB:51:35:26:1F:F3:9B:D1:9A:11:5E:F3:E7:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bFMRpXzPy1E1Jh_zm9GaEV7z588.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/d983cd-3f8e-4d6e-a38c-4d8d62b18e89/1/SP8FDjVG43mumVoZG0x_8BEe9Og.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/d983cd-3f8e-4d6e-a38c-4d8d62b18e89/1/bFMRpXzPy1E1Jh_zm9GaEV7z588.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.248.0/22
IPv6:
2a0c:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
54:c2:39:e7:05:60:1a:0b:e6:2b:01:1a:af:13:b2:99:66:99:
1d:a2:3c:16:4a:5d:eb:04:04:84:b3:21:e9:e3:f8:dc:59:47:
0e:31:0e:42:80:6a:20:22:18:87:4b:05:bf:f3:19:98:e8:46:
35:14:c9:ac:bb:00:26:04:97:8b:74:8b:cb:ac:d2:25:eb:9d:
18:f6:59:9e:ac:a8:a0:3e:9a:ef:d7:a2:2a:7e:6a:38:dc:ef:
0a:63:2f:0f:d8:51:33:58:6e:d1:0a:a1:49:54:5c:6a:fd:71:
db:f4:6b:cd:a8:de:41:7c:38:6e:e9:06:c5:c5:64:68:11:7a:
c3:07:82:dc:e2:ee:30:92:84:45:1d:bb:71:3e:4d:00:41:3f:
81:d2:e0:44:77:68:27:cb:fe:4c:64:53:63:95:9b:26:fe:b1:
0c:86:08:00:29:45:0e:ec:63:26:66:ec:02:83:80:13:a2:2a:
cd:2a:82:5c:cc:8b:4a:25:18:e0:fe:b6:f8:7a:af:6d:64:90:
cd:b3:a2:8d:f3:d0:4c:9c:d0:e7:a4:24:64:02:86:51:1a:e2:
b3:79:2f:ca:02:84:b4:06:b5:f6:36:f3:e3:f4:a6:20:52:1b:
45:51:a0:17:fd:22:21:36:47:24:d8:21:c5:9a:db:53:18:3a:
e2:49:2f:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:44 2023 by rpki-client on console.sobornost.net