Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/bb520c-cd0d-48d8-96a8-0fbe7bd76ffb/1/iJJWVIWxf2SUBH-yBBEojB3v8Gg.roa
File: iJJWVIWxf2SUBH-yBBEojB3v8Gg.roa (raw, json)
Hash identifier: ySvwfF85HcMOyhg2N8P6xAtVaY6ZYC+yqfgcplenrT8=
Subject key identifier: 88:92:56:54:85:B1:7F:64:94:04:7F:B2:04:11:28:8C:1D:EF:F0:68
Certificate issuer: /CN=6c1ce5315a43d5661cdcdcc1b9d7daacfa6990f7
Certificate serial: 0C8A4030
Authority key identifier: 6C:1C:E5:31:5A:43:D5:66:1C:DC:DC:C1:B9:D7:DA:AC:FA:69:90:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bBzlMVpD1WYc3NzBudfarPppkPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/bb520c-cd0d-48d8-96a8-0fbe7bd76ffb/1/iJJWVIWxf2SUBH-yBBEojB3v8Gg.roa
Signing time: Sat 01 Jan 2022 09:03:13 +0000
ROA not before: Sat 01 Jan 2022 09:03:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198551
IP address blocks: 185.200.145.0/24 maxlen: 24
185.200.144.0/22 maxlen: 22
185.200.144.0/24 maxlen: 24
185.200.147.0/24 maxlen: 24
185.200.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 210386992 (0xc8a4030)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c1ce5315a43d5661cdcdcc1b9d7daacfa6990f7
Validity
Not Before: Jan 1 09:03:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8892565485b17f6494047fb20411288c1deff068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:b7:a4:40:b8:fa:30:e8:87:de:a0:62:a2:a1:
40:26:c2:46:63:54:07:36:58:5b:cb:a6:30:48:46:
00:67:01:9d:20:03:48:a0:25:06:95:bd:db:e4:58:
9b:8d:90:50:cb:a7:71:2c:18:31:4d:41:3f:49:50:
dd:b2:d9:31:c8:93:9c:cd:67:b2:b9:7c:55:76:b7:
73:67:e0:51:a3:6c:1c:c5:b9:34:29:d7:c4:c8:aa:
c6:38:15:93:ec:79:84:dd:cf:14:41:89:8e:a2:d7:
4d:49:13:85:8a:9c:45:81:8e:7b:2a:9a:ef:37:21:
fa:ee:b9:47:86:72:21:4a:25:e9:08:82:ab:29:a7:
6c:2d:27:9d:01:a0:8b:1b:ca:95:6f:2c:ad:9e:ca:
5e:4f:fd:43:89:f1:1c:31:9b:bc:9b:fc:4c:09:7e:
5f:6a:e0:6b:13:53:3b:98:b0:2b:ee:b8:88:dc:42:
50:76:09:2f:eb:4b:f2:50:5a:6a:a9:e2:99:14:6a:
cd:97:da:92:4f:24:4d:c9:c9:6e:66:53:7b:4d:d2:
ae:a6:ab:05:ce:75:6f:05:d4:fd:5d:14:bb:59:3f:
ae:65:7b:16:9e:ff:23:d3:1b:89:e1:e4:c7:2a:ee:
5b:2d:c0:0e:b7:44:be:37:bf:53:5b:2c:7d:b9:1a:
35:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:92:56:54:85:B1:7F:64:94:04:7F:B2:04:11:28:8C:1D:EF:F0:68
X509v3 Authority Key Identifier:
keyid:6C:1C:E5:31:5A:43:D5:66:1C:DC:DC:C1:B9:D7:DA:AC:FA:69:90:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bBzlMVpD1WYc3NzBudfarPppkPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/bb520c-cd0d-48d8-96a8-0fbe7bd76ffb/1/iJJWVIWxf2SUBH-yBBEojB3v8Gg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/bb520c-cd0d-48d8-96a8-0fbe7bd76ffb/1/bBzlMVpD1WYc3NzBudfarPppkPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.144.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:23:64:55:b7:b1:72:b8:bc:c7:2c:80:83:6e:6d:06:53:fe:
d0:af:e2:fc:0c:e9:70:0d:a3:6f:40:ff:bf:9d:11:88:b3:c5:
d4:94:d6:8f:67:e7:8a:e2:3f:e6:3f:78:b3:23:85:86:b7:e4:
ec:a8:7d:28:aa:70:a1:25:56:8d:84:3b:32:3d:84:56:03:35:
57:dc:22:fb:4e:ba:29:c3:c6:5b:22:3a:9d:d4:19:0f:ab:75:
af:e0:c6:79:b7:2d:d1:af:a1:be:ca:42:54:48:ee:24:5b:14:
ac:33:2d:e5:ad:61:79:b8:e0:d7:9d:4b:4a:75:8a:4a:1c:b8:
c0:f0:e8:62:75:78:18:25:77:dd:c1:c4:a0:ce:ff:6f:17:fd:
87:7d:ba:e4:5f:dd:11:4b:8e:bb:e9:b5:5b:74:6d:cc:6e:0a:
2f:da:d8:a7:84:c6:4e:1c:61:30:b5:f1:d2:e5:34:64:be:1f:
7a:2b:c7:96:6c:f8:75:9b:b7:45:16:06:2f:e1:7a:5e:2d:48:
0a:29:f4:81:80:6f:cb:39:ed:3b:95:cc:9e:6d:c0:ed:de:54:
fa:b2:75:9c:da:d1:3d:66:38:54:1d:e5:0f:4a:a2:fc:18:6f:
b6:a2:ce:40:6b:d3:e0:7b:b4:e4:d7:6a:19:17:54:e8:57:36:
a4:52:d2:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:03 2023 by rpki-client on console-fra.rpki-client.org