Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/45c981-1780-4c66-9f98-dc10d5d3bd80/1/8OejVwnGoADIGPoKluZwHlR8lN8.roa
File: 8OejVwnGoADIGPoKluZwHlR8lN8.roa (raw, json)
Hash identifier: FFRDkV+l7cYq+fTpqcvYZAFGJBLegyPvruIc5O4XQF8=
Subject key identifier: F0:E7:A3:57:09:C6:A0:00:C8:18:FA:0A:96:E6:70:1E:54:7C:94:DF
Certificate issuer: /CN=c679522eb892589d7364af579a724040e929f0aa
Certificate serial: 018C691FE0F059A453DFD1E04F8CF7858C89
Authority key identifier: C6:79:52:2E:B8:92:58:9D:73:64:AF:57:9A:72:40:40:E9:29:F0:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xnlSLriSWJ1zZK9XmnJAQOkp8Ko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/45c981-1780-4c66-9f98-dc10d5d3bd80/1/8OejVwnGoADIGPoKluZwHlR8lN8.roa
Signing time: Thu 14 Dec 2023 16:19:06 +0000
ROA not before: Thu 14 Dec 2023 16:19:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202513
IP address blocks: 185.248.78.0/23 maxlen: 23
185.248.78.0/24 maxlen: 24
185.248.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:69:1f:e0:f0:59:a4:53:df:d1:e0:4f:8c:f7:85:8c:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c679522eb892589d7364af579a724040e929f0aa
Validity
Not Before: Dec 14 16:19:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0e7a35709c6a000c818fa0a96e6701e547c94df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:9b:42:89:15:0d:15:6c:5d:b3:cf:06:5d:c8:
58:93:59:73:c6:e2:bf:df:8a:8f:76:df:a8:7f:76:
fd:86:dd:ee:4c:06:49:ca:9c:8f:bb:46:83:ef:1a:
3c:32:2d:b4:e0:e1:37:0b:4e:6e:99:52:a5:28:ac:
c9:43:f4:53:bb:f7:b8:e8:4e:a8:03:cb:09:7a:40:
24:de:e7:92:3a:9a:71:f2:36:eb:fc:e1:e4:48:91:
90:1d:6c:63:d2:07:fd:23:2c:a9:48:73:ae:5a:8f:
58:af:c3:9b:6e:2d:d7:5e:33:4b:7e:a5:91:d5:9b:
08:c0:14:30:e8:0f:ce:37:9c:7a:fe:a7:96:f0:47:
d5:12:46:56:93:79:73:a3:b3:f4:79:e7:08:95:f9:
7d:c1:10:99:cd:5d:1e:48:47:38:a3:51:dc:22:e7:
c5:9b:b3:0f:7c:aa:40:f4:78:17:82:5a:30:97:f8:
dc:c4:46:bc:2c:7d:e8:b3:6a:e1:d0:67:74:49:77:
69:d1:8b:fc:db:40:1f:e1:05:64:01:e0:26:41:77:
00:e0:8e:85:1e:6e:38:d7:86:bd:88:ac:b0:1e:f5:
20:27:14:c4:56:0f:1a:54:c8:16:0d:9e:5b:d5:d8:
f1:f2:58:e1:27:4c:7f:41:14:48:a3:96:e2:80:f4:
87:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E7:A3:57:09:C6:A0:00:C8:18:FA:0A:96:E6:70:1E:54:7C:94:DF
X509v3 Authority Key Identifier:
keyid:C6:79:52:2E:B8:92:58:9D:73:64:AF:57:9A:72:40:40:E9:29:F0:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xnlSLriSWJ1zZK9XmnJAQOkp8Ko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/45c981-1780-4c66-9f98-dc10d5d3bd80/1/8OejVwnGoADIGPoKluZwHlR8lN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/45c981-1780-4c66-9f98-dc10d5d3bd80/1/xnlSLriSWJ1zZK9XmnJAQOkp8Ko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.78.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:be:ca:98:46:c4:bb:4e:26:11:87:74:9f:d4:03:1b:78:fc:
77:f1:d7:bc:63:4b:6f:64:7c:3d:97:b0:2e:48:e4:3d:89:f9:
b8:23:ee:a0:ac:9b:bb:a9:2b:3c:00:5a:8d:cc:70:80:0e:d3:
f1:a6:91:cb:a5:94:75:99:ec:76:12:fe:d8:b9:21:db:4e:72:
7d:c7:fe:fa:77:e3:29:14:fb:0f:ee:9d:cf:6b:07:be:9a:6a:
90:58:40:69:3a:ac:86:a7:dc:55:a6:00:b2:0f:e7:c3:9f:08:
ab:e9:28:b4:cf:33:5b:f1:4a:31:e7:df:3c:1d:c1:4d:b8:c8:
14:c0:e5:10:57:68:21:0d:13:6d:42:89:04:46:23:cb:c8:4f:
6e:f0:2f:76:6c:4a:c5:8c:ce:0a:f8:fe:d6:af:4c:49:34:66:
cf:54:31:08:bd:44:1d:49:ab:3f:d5:9d:24:10:c0:e5:fb:20:
25:9a:21:db:1b:5d:c2:f1:ed:80:36:7e:b4:da:f4:2c:ff:ca:
c2:0d:cd:34:8d:fc:ed:a3:11:40:99:08:bf:ed:c3:90:bf:6d:
31:d5:48:68:9f:df:d4:5d:8f:87:a7:30:e7:36:1b:e9:4e:d5:
4f:c0:f4:dd:46:ad:a2:51:a0:24:65:ad:9d:3d:80:89:25:ef:
f6:63:17:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 04:54:06 2025 by rpki-client