Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/FlXSszi0nfqQIuYlmBXcwD6qHw4.roa
File: FlXSszi0nfqQIuYlmBXcwD6qHw4.roa (raw, json)
Hash identifier: 8uveXxhpO5zHeuOdsOw2tbf76iVsmrFC4q7loXM7CnI=
Subject key identifier: 16:55:D2:B3:38:B4:9D:FA:90:22:E6:25:98:15:DC:C0:3E:AA:1F:0E
Certificate issuer: /CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Certificate serial: 0BD8792C
Authority key identifier: 5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/FlXSszi0nfqQIuYlmBXcwD6qHw4.roa
Signing time: Sat 01 Jan 2022 10:53:52 +0000
ROA not before: Sat 01 Jan 2022 10:53:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204108
IP address blocks: 185.229.232.0/23 maxlen: 23
185.229.232.0/22 maxlen: 23
185.229.234.0/23 maxlen: 23
185.253.42.0/23 maxlen: 23
185.253.40.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 198736172 (0xbd8792c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Validity
Not Before: Jan 1 10:53:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1655d2b338b49dfa9022e6259815dcc03eaa1f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:96:ec:b6:d0:fc:40:3b:6f:1f:08:93:5f:70:
c5:f0:0b:4e:d5:3a:7e:6d:ce:9e:97:56:97:6c:4c:
6d:23:29:7f:fd:8d:c2:71:cc:e4:cd:57:56:55:6a:
d7:f8:9e:65:a3:68:24:11:ec:1e:d4:8b:a2:31:19:
67:51:fc:30:37:50:6f:0e:52:95:de:20:a7:e1:13:
75:14:e1:6c:b8:f3:08:06:f6:20:9f:a6:3c:72:8b:
9c:57:09:40:e1:b1:59:b2:bc:d2:66:a3:4f:e0:d1:
8e:bd:27:93:96:eb:9d:bc:ac:e3:92:c3:ad:e7:f7:
44:53:f5:fd:08:63:7f:75:13:6c:86:c3:ec:83:52:
8d:27:f0:9f:84:ab:7f:bb:4a:aa:45:d1:6d:33:80:
e8:90:08:db:73:9e:ee:b7:c8:dc:ae:0d:cc:3f:c8:
4d:44:8d:65:df:4c:b2:5f:72:15:66:fd:67:87:7f:
64:04:b5:65:04:d0:fe:21:a0:1b:0b:56:7b:ba:b2:
e0:42:a2:a9:25:79:a9:b9:f7:c8:ec:0d:d5:09:51:
3f:30:fc:9c:4b:0c:16:3a:59:68:26:2d:c6:a6:93:
54:d3:96:3f:57:f1:d3:aa:b1:dc:0c:96:0a:36:d8:
49:de:78:11:8b:e6:1a:46:7f:fc:6a:48:ba:3c:f3:
60:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:55:D2:B3:38:B4:9D:FA:90:22:E6:25:98:15:DC:C0:3E:AA:1F:0E
X509v3 Authority Key Identifier:
keyid:5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/FlXSszi0nfqQIuYlmBXcwD6qHw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/XGT50E79Wp_C4jtC1bUa79mlAlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.232.0/22
185.253.40.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:f7:00:ed:62:32:40:5a:1d:3c:dd:d7:44:8c:62:5e:55:4c:
59:67:15:aa:52:a7:ac:19:18:e7:fb:4d:2f:84:d4:e3:5e:9a:
64:4a:a0:10:67:b0:91:14:0e:24:b0:fc:60:4e:0f:3c:2e:1f:
82:80:51:a5:f0:e3:fc:3b:37:87:de:ff:4d:43:30:67:81:1e:
5b:b4:43:b0:b2:74:14:c2:2b:55:23:b1:36:a2:96:e1:84:b7:
5e:03:c3:74:65:f9:dc:fd:b7:35:e0:bd:89:fe:84:f3:58:58:
c0:58:13:6d:ae:37:22:f5:a5:c2:a2:e6:32:6f:85:11:4a:68:
02:a3:df:8b:c4:55:9f:79:db:24:5d:3b:6f:a1:59:57:b5:32:
71:b7:6b:26:0b:8f:f0:68:af:d5:d5:90:98:e4:6c:92:73:7e:
34:4d:0b:e5:27:1c:ff:c9:52:c1:c5:dc:70:26:0e:3c:19:5f:
de:51:80:bd:64:c0:7d:64:6a:f0:74:67:51:cc:46:fc:4c:0d:
77:b6:45:85:69:8f:12:a4:15:ad:41:25:df:f3:7e:cc:89:6c:
a2:ba:2a:ef:f4:5e:3f:05:7b:19:ac:d4:29:3d:47:53:23:d7:
2c:7d:e1:24:33:d7:fd:85:e1:34:c4:55:a6:e1:fe:7c:72:d9:
52:fb:77:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:29 2024 by rpki-client on console-fra.rpki-client.org