Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vBylKiJh43zPqiSqa_e7Z_RrDWc.roa
File: vBylKiJh43zPqiSqa_e7Z_RrDWc.roa (raw, json)
Hash identifier: Csx+d66vtAWnzC+beuwbLNlaOmx6OEvCyd/3LeJCR2k=
Subject key identifier: BC:1C:A5:2A:22:61:E3:7C:CF:AA:24:AA:6B:F7:BB:67:F4:6B:0D:67
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01849F5D39E2F3DC7C2A79744B1F40B65DEB
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vBylKiJh43zPqiSqa_e7Z_RrDWc.roa
Signing time: Tue 22 Nov 2022 12:43:17 +0000
ROA not before: Tue 22 Nov 2022 12:43:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50200
IP address blocks: 185.238.188.0/24 maxlen: 24
185.238.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9f:5d:39:e2:f3:dc:7c:2a:79:74:4b:1f:40:b6:5d:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 22 12:43:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc1ca52a2261e37ccfaa24aa6bf7bb67f46b0d67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:fd:56:7b:b4:c2:a1:f3:80:27:27:f3:b0:30:
c4:d1:a2:ae:33:51:77:e5:4d:d7:35:ba:58:a8:91:
49:ae:8a:00:81:a6:cc:db:b8:42:18:fa:2e:c2:c2:
da:4b:f5:ee:8a:74:ab:2b:0b:1c:42:87:f8:22:89:
8e:f6:c2:d9:fc:37:04:5e:fa:26:ac:b1:74:14:e5:
32:a9:cc:1f:db:8c:06:17:b5:1f:f4:03:8e:84:5b:
3a:b9:4e:db:7f:86:7c:f3:f9:c4:fc:68:06:0c:66:
d6:e2:d1:21:95:d4:f5:f0:e5:7f:c4:9c:04:85:6d:
9c:c5:d8:2d:45:a0:4d:99:b1:09:e4:b3:8d:f7:c0:
45:bb:17:c7:63:a6:9c:a9:84:be:4d:aa:b2:d3:f4:
e2:43:a3:8d:9d:39:05:3c:af:2d:4b:d2:99:f5:f8:
e3:dd:c8:b7:26:76:61:79:10:33:8b:4c:25:30:bc:
b2:2d:b1:7f:7c:8b:e4:8c:6a:f4:53:09:49:64:75:
5a:f8:a3:4d:2a:bf:bb:11:37:69:7e:9b:fa:0d:4d:
fc:c1:79:82:83:59:84:62:da:be:6f:86:8e:01:7e:
65:47:22:a4:ef:46:d4:37:1c:3e:9d:52:d8:25:53:
9b:7e:6b:10:00:bc:b0:63:47:a0:78:9a:05:b9:53:
a6:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:1C:A5:2A:22:61:E3:7C:CF:AA:24:AA:6B:F7:BB:67:F4:6B:0D:67
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vBylKiJh43zPqiSqa_e7Z_RrDWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.188.0/24
185.238.191.0/24
Signature Algorithm: sha256WithRSAEncryption
61:0e:39:66:00:c1:2a:da:2b:db:08:32:f4:b4:c8:92:b9:e2:
32:75:c8:e8:eb:e4:8c:e9:9e:c9:22:d1:9e:2d:d5:d4:9c:c2:
32:90:92:82:09:8c:68:09:2a:40:59:76:b3:4d:9d:97:a7:48:
fc:e6:df:c1:69:9f:c1:a3:2c:fb:4a:5f:0c:c4:ec:94:eb:13:
39:2a:88:ac:b2:ec:b1:44:0c:af:f1:96:32:72:e6:6a:0a:61:
1e:a9:49:b6:08:b2:c2:81:e8:26:7d:9e:2b:a5:4d:2c:79:2b:
52:24:35:f7:59:c8:74:ea:c8:98:06:7f:a3:44:89:de:ce:b8:
06:cd:ed:0b:ba:b2:17:79:82:79:a0:62:1c:2c:bb:7f:3b:fa:
9d:44:79:2a:4c:b1:d2:e1:1f:0d:55:54:ac:89:80:b2:ec:be:
1a:ce:8a:dc:84:0f:9f:29:6a:31:14:a2:ff:f2:ca:8f:3e:e0:
ad:e3:2f:13:87:b8:8f:d5:be:3c:6a:12:5e:10:ea:90:b9:71:
a4:b5:f4:4e:6f:c5:7d:89:af:47:34:ac:97:5e:44:3d:13:b7:
5f:98:b3:b8:62:f7:be:eb:5f:d5:39:20:2e:d3:28:c8:27:c1:
9d:2d:69:d5:6e:45:7f:d3:13:2b:76:3d:19:a3:f5:6f:80:a3:
f5:de:32:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-fra.rpki-client.org