Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/45c981-1780-4c66-9f98-dc10d5d3bd80/1/0KhHrFdIJgKYrK9l8eNzLtfqG74.roa
File: 0KhHrFdIJgKYrK9l8eNzLtfqG74.roa (raw, json)
Hash identifier: C71ZyW5+uErjda64VTC+y76gpVcQWcfZ8YUmnTrUPQ8=
Subject key identifier: D0:A8:47:AC:57:48:26:02:98:AC:AF:65:F1:E3:73:2E:D7:EA:1B:BE
Certificate issuer: /CN=c679522eb892589d7364af579a724040e929f0aa
Certificate serial: 0464594E
Authority key identifier: C6:79:52:2E:B8:92:58:9D:73:64:AF:57:9A:72:40:40:E9:29:F0:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xnlSLriSWJ1zZK9XmnJAQOkp8Ko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/45c981-1780-4c66-9f98-dc10d5d3bd80/1/0KhHrFdIJgKYrK9l8eNzLtfqG74.roa
Signing time: Mon 14 Mar 2022 17:51:00 +0000
ROA not before: Mon 14 Mar 2022 17:51:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202513
IP address blocks: 185.248.78.0/23 maxlen: 23
185.248.77.0/24 maxlen: 24
185.248.78.0/24 maxlen: 24
185.248.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73685326 (0x464594e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c679522eb892589d7364af579a724040e929f0aa
Validity
Not Before: Mar 14 17:51:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0a847ac5748260298acaf65f1e3732ed7ea1bbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:7b:32:f4:5b:34:63:51:ca:c2:40:d1:8c:a3:
08:2e:c9:c7:a7:5b:a5:ac:a1:c0:1c:2d:a6:1c:be:
d5:f6:c7:23:6b:96:79:3f:33:ce:79:a0:4f:58:59:
3a:d5:cd:64:97:b4:ae:1c:75:bd:ea:2b:e4:69:2a:
33:9c:25:21:51:dc:a0:06:36:52:f7:0a:08:87:fc:
2e:9f:1b:68:19:ab:89:51:b3:7e:5d:1b:95:3b:3b:
3f:6a:4a:8d:d4:b8:db:87:93:08:65:ed:9f:6b:b0:
ed:d3:52:50:a2:33:21:b6:20:aa:b3:a8:76:6f:4d:
97:8f:b8:91:ed:b1:16:6a:fc:81:0c:ad:13:ba:06:
13:08:48:59:10:e5:ab:9f:9b:ad:bc:bc:92:74:8c:
21:1c:11:96:f6:e5:ac:81:34:7b:a7:3f:f3:e1:25:
de:69:33:c8:53:ee:c3:9a:db:ea:7c:6f:22:34:f5:
3b:f8:80:57:21:4f:ac:06:56:a4:93:e0:9d:03:02:
e6:d3:58:31:0c:1e:4b:e3:33:24:1a:a9:e5:56:de:
42:01:9f:b6:08:bd:50:00:ac:db:28:4a:dd:69:e2:
c3:a2:32:9e:97:af:60:f8:8c:cc:46:2b:0d:e0:05:
65:14:01:5a:48:64:63:02:c3:c8:ca:1f:81:7f:73:
c1:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:A8:47:AC:57:48:26:02:98:AC:AF:65:F1:E3:73:2E:D7:EA:1B:BE
X509v3 Authority Key Identifier:
keyid:C6:79:52:2E:B8:92:58:9D:73:64:AF:57:9A:72:40:40:E9:29:F0:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xnlSLriSWJ1zZK9XmnJAQOkp8Ko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/45c981-1780-4c66-9f98-dc10d5d3bd80/1/0KhHrFdIJgKYrK9l8eNzLtfqG74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/45c981-1780-4c66-9f98-dc10d5d3bd80/1/xnlSLriSWJ1zZK9XmnJAQOkp8Ko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.77.0-185.248.79.255
Signature Algorithm: sha256WithRSAEncryption
45:3f:bd:ca:ff:1d:ed:3f:51:9a:6b:f5:b7:07:e8:cc:9a:e4:
ce:34:bd:c0:bc:b4:c6:f7:57:83:ef:9e:ff:5c:e7:ee:8c:9a:
fa:f8:32:a8:9f:5c:98:52:39:d2:4c:08:f2:d5:97:81:8c:23:
2f:9c:e4:ad:9f:a6:0d:39:b6:48:d4:3c:f6:88:fe:fe:fa:a9:
ba:9b:38:fb:d5:3d:b9:d9:c2:28:6e:e3:38:19:10:c8:19:71:
6a:71:44:66:3e:9a:c8:f0:98:36:82:9d:4a:42:6e:5e:da:63:
a8:d7:fc:a7:aa:22:7b:0e:a2:36:cb:d6:2c:b2:45:e7:e2:fe:
78:e8:52:60:1d:6a:9d:2a:22:1f:e4:7b:10:f6:d0:86:e8:90:
17:56:38:1f:46:7b:84:c5:97:5b:e8:ee:ee:56:83:c2:83:09:
ac:79:2d:9c:c1:26:8b:d3:29:c6:45:dd:80:00:94:b3:ee:4d:
f9:e5:71:41:12:62:6d:09:1a:82:3e:d3:32:78:a1:35:b4:4d:
ab:3b:82:1b:97:08:84:df:d3:26:fe:d0:3b:dd:88:85:8f:48:
69:a2:17:0a:bc:52:6f:c1:02:28:f5:2d:3f:91:4a:90:a8:61:
41:ff:6d:52:4f:62:09:ea:1e:23:5a:14:0a:31:a4:34:16:14:
a2:c4:0c:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:01 2023 by rpki-client on console.sobornost.net