Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/27911b-064f-4d62-ba1c-e6626af759b7/1/iPyXOK_YNApvlLUABRMv_rgxVAQ.roa
File: iPyXOK_YNApvlLUABRMv_rgxVAQ.roa (raw, json)
Hash identifier: HsmP9hdKZsZi/eeO6XTzvEZHXREuHadiRMYRcWy2q4c=
Subject key identifier: 88:FC:97:38:AF:D8:34:0A:6F:94:B5:00:05:13:2F:FE:B8:31:54:04
Certificate issuer: /CN=59602e4b08594c5caffbeb50d1e0a9d470eb92e5
Certificate serial: 03C2793A
Authority key identifier: 59:60:2E:4B:08:59:4C:5C:AF:FB:EB:50:D1:E0:A9:D4:70:EB:92:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WWAuSwhZTFyv--tQ0eCp1HDrkuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/27911b-064f-4d62-ba1c-e6626af759b7/1/iPyXOK_YNApvlLUABRMv_rgxVAQ.roa
Signing time: Sat 01 Jan 2022 15:54:48 +0000
ROA not before: Sat 01 Jan 2022 15:54:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56923
IP address blocks: 185.200.16.0/22 maxlen: 22
185.200.17.0/24 maxlen: 24
185.200.16.0/24 maxlen: 24
185.200.18.0/24 maxlen: 24
185.200.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63076666 (0x3c2793a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59602e4b08594c5caffbeb50d1e0a9d470eb92e5
Validity
Not Before: Jan 1 15:54:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88fc9738afd8340a6f94b50005132ffeb8315404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:06:de:32:ca:6e:df:e9:e1:71:71:31:93:d0:
f9:4c:ff:d7:15:6a:13:08:f3:1b:e9:9e:a1:63:3f:
8e:17:eb:7d:c0:88:5d:9d:17:8d:18:82:a9:71:a3:
32:ef:c0:e7:8e:01:fe:39:09:c1:3d:44:37:fe:07:
2a:51:43:7a:53:43:0c:58:6f:e8:8a:98:bc:3b:f8:
02:0b:b0:a6:b5:d4:1c:ab:6a:36:dd:b0:81:15:6d:
27:01:7d:e0:ca:68:23:85:8a:a8:91:cb:f7:4b:66:
93:f9:19:a9:96:cc:3e:8e:74:1f:32:21:0d:5a:ae:
34:a2:bc:5f:d4:45:07:00:c0:ad:ef:04:83:bb:3d:
ab:13:54:f5:fd:a2:fb:7e:fa:2b:75:cc:b6:3c:07:
4f:4c:52:e7:05:9b:d2:d7:4b:c9:bc:ef:ad:ac:27:
e7:db:84:5e:fd:58:4b:35:20:b5:d0:0b:f5:5c:31:
22:18:2e:bf:52:bb:72:c5:2c:f5:50:4c:d5:d8:46:
0a:6e:2c:6a:79:76:e5:b4:c4:74:ec:0c:38:a6:62:
1b:9d:97:e0:2c:8a:1a:f3:f1:c0:65:e7:ed:9d:44:
da:42:1d:ae:92:14:6d:5f:4f:0f:0c:d4:8b:ca:2a:
8d:ce:7d:fc:50:09:f7:6c:da:7a:09:85:d5:14:34:
86:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:FC:97:38:AF:D8:34:0A:6F:94:B5:00:05:13:2F:FE:B8:31:54:04
X509v3 Authority Key Identifier:
keyid:59:60:2E:4B:08:59:4C:5C:AF:FB:EB:50:D1:E0:A9:D4:70:EB:92:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WWAuSwhZTFyv--tQ0eCp1HDrkuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/27911b-064f-4d62-ba1c-e6626af759b7/1/iPyXOK_YNApvlLUABRMv_rgxVAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/27911b-064f-4d62-ba1c-e6626af759b7/1/WWAuSwhZTFyv--tQ0eCp1HDrkuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.16.0/22
Signature Algorithm: sha256WithRSAEncryption
15:e5:a8:a3:eb:a4:ae:95:e8:bb:8b:eb:18:6c:11:ea:d3:c5:
ed:9f:3d:21:3b:42:7a:54:76:aa:57:a4:a1:d6:ea:75:13:ff:
0a:5f:e9:75:d6:8b:35:5d:b3:c1:43:ac:df:9f:21:25:db:bd:
9e:8f:60:9c:42:9b:49:4d:d3:f0:7a:f0:b4:df:85:63:f6:9c:
da:ab:2f:66:84:3f:c1:20:5f:69:28:b8:8a:54:0c:a1:69:2d:
71:35:82:7f:2b:4e:eb:f6:1f:f6:ad:9d:44:2c:0e:2d:84:9d:
24:af:61:b9:3b:d0:2e:78:0b:2f:cb:68:de:18:51:57:ac:67:
55:a3:37:a6:0c:2c:95:6d:05:99:f4:92:c3:d0:87:95:3a:60:
ea:a8:df:92:6a:9b:f3:4a:20:f7:60:94:ea:07:4b:94:7d:f8:
aa:91:32:8d:a2:58:76:6e:07:62:fa:23:7a:41:c8:1c:fe:88:
ae:33:bd:0a:02:93:8a:3c:fd:9e:75:1c:9c:1e:45:98:10:c7:
2b:0c:d8:af:1c:ea:13:13:7d:9c:a6:b7:4f:96:8c:b3:6d:f0:
1d:67:ed:ba:27:47:13:48:1b:df:e3:c7:a9:c1:fb:09:93:d5:
2d:22:6d:0c:ed:5a:21:83:cd:45:bc:1f:c9:4d:47:17:42:85:
c8:5e:07:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:57 2024 by rpki-client on console-fra.rpki-client.org