Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/DBwBewVOlO1Vzs7iXDmqUVka14Y.roa
File: DBwBewVOlO1Vzs7iXDmqUVka14Y.roa (raw, json)
Hash identifier: UIJK6PRnOAN9RZ0JsDmRRhn1e1rGPP0S/DKW/pDmsF0=
Subject key identifier: 0C:1C:01:7B:05:4E:94:ED:55:CE:CE:E2:5C:39:AA:51:59:1A:D7:86
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 01824457D5FA766238B0F4A346D14B12F284
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/DBwBewVOlO1Vzs7iXDmqUVka14Y.roa
Signing time: Thu 28 Jul 2022 10:26:23 +0000
ROA not before: Thu 28 Jul 2022 10:26:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203648
IP address blocks: 185.200.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:44:57:d5:fa:76:62:38:b0:f4:a3:46:d1:4b:12:f2:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jul 28 10:26:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c1c017b054e94ed55cecee25c39aa51591ad786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f8:50:97:3c:96:c2:2d:59:4c:ee:0d:de:00:
94:85:13:55:1e:97:84:c3:2f:45:8f:67:d7:b8:4f:
40:9b:21:1a:5b:92:58:fa:2d:df:72:4d:57:1c:b0:
1d:cf:59:08:c4:9a:7f:ff:91:35:41:09:06:49:f0:
ca:76:3a:72:11:45:24:a7:33:71:c2:fd:79:dc:5e:
4a:2d:bb:ce:f8:0d:a7:fd:e7:e9:68:31:96:96:27:
14:93:4e:6d:81:93:de:f7:51:1e:23:e4:d3:a5:3b:
fa:8a:8d:3f:81:78:96:57:a2:ad:7b:f9:c5:5d:0d:
28:e9:c0:19:36:40:f8:83:28:b5:d3:d7:23:f9:c6:
bf:7a:03:5e:c6:20:13:c3:88:bb:dd:27:b1:57:66:
ec:6b:4c:b9:49:0d:6c:5d:eb:f5:92:85:3f:e0:d7:
66:c0:40:57:9b:07:4c:8c:eb:e2:5a:9a:b3:2f:69:
c2:f5:36:f3:e2:9d:f0:a6:d7:dd:0d:a7:c9:1d:ed:
e2:e9:7a:fd:76:59:48:11:10:5c:31:f4:7e:8d:3f:
4c:e8:f1:08:c4:69:95:ae:fc:fb:cf:e7:8f:8c:7e:
6c:93:06:c2:67:4a:d2:9a:a2:ba:47:a2:20:d8:52:
08:01:96:b0:7c:0a:9d:52:99:86:25:79:1f:ef:43:
a2:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:1C:01:7B:05:4E:94:ED:55:CE:CE:E2:5C:39:AA:51:59:1A:D7:86
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/DBwBewVOlO1Vzs7iXDmqUVka14Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.63.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:94:e0:54:79:4f:76:99:86:e6:89:75:f6:16:a2:e7:51:11:
40:a7:40:fd:b7:8b:80:b4:76:38:68:16:87:5a:28:72:4e:4d:
9a:05:c7:c4:b8:16:d8:2e:54:1d:c4:97:10:70:a0:e5:97:ed:
95:a0:51:9d:f4:cf:e7:49:94:3b:ed:0e:70:1b:34:37:96:5a:
bb:81:18:9f:10:04:de:b4:2f:f0:de:fa:35:db:e9:1b:87:87:
da:27:a7:29:0b:ec:14:ba:b8:d9:a5:f0:64:9a:03:a0:38:5b:
ff:7b:de:5d:71:76:f9:8e:fd:96:97:29:a0:b0:83:63:34:5a:
cb:b9:87:99:52:a1:55:da:2c:72:ed:e7:de:21:34:b8:d6:d4:
46:58:5a:18:3e:c9:4e:b9:9c:63:d9:e6:3b:49:af:d4:0e:71:
28:f8:53:7d:6d:43:71:df:36:76:33:80:8f:f4:3c:18:49:84:
1d:21:8d:fa:d9:37:fd:23:99:06:59:85:e8:59:63:25:74:c3:
37:78:f8:ec:00:87:c2:54:7b:ac:0b:2a:b7:2b:d8:85:1b:38:
94:25:bd:50:b8:2e:52:23:36:4c:5f:31:b5:5e:a8:ad:b2:07:
a0:b9:af:58:a0:ab:75:00:01:57:89:58:d7:e8:4f:93:6d:a9:
ff:a8:9e:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-ams.rpki-client.org