Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/86762b-aa61-484a-b159-97f39bb1332d/1/PKryEs_7ShCBJw9q5gwWR7XlQ8s.roa
File: PKryEs_7ShCBJw9q5gwWR7XlQ8s.roa (raw, json)
Hash identifier: QcwvHlNTsVnZ7wSHH10ieSuQH5Cv/KDcCVGkrPOzvLM=
Subject key identifier: 3C:AA:F2:12:CF:FB:4A:10:81:27:0F:6A:E6:0C:16:47:B5:E5:43:CB
Certificate issuer: /CN=00933848021d3888860dadf7188094d792af6ae6
Certificate serial: 0171EA86
Authority key identifier: 00:93:38:48:02:1D:38:88:86:0D:AD:F7:18:80:94:D7:92:AF:6A:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AJM4SAIdOIiGDa33GICU15KvauY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/86762b-aa61-484a-b159-97f39bb1332d/1/PKryEs_7ShCBJw9q5gwWR7XlQ8s.roa
Signing time: Sat 01 Jan 2022 05:54:50 +0000
ROA not before: Sat 01 Jan 2022 05:54:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201897
IP address blocks: 185.59.254.0/24 maxlen: 24
185.59.255.0/24 maxlen: 24
185.59.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24242822 (0x171ea86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00933848021d3888860dadf7188094d792af6ae6
Validity
Not Before: Jan 1 05:54:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3caaf212cffb4a1081270f6ae60c1647b5e543cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8d:db:0c:90:07:ce:38:2e:62:8d:c6:9b:60:
5d:d7:07:c8:cd:99:41:6a:1c:c2:1b:b4:be:8e:b7:
06:08:88:d4:c8:25:f3:a9:e7:36:13:d8:eb:99:0b:
fd:44:02:05:bc:8f:70:33:38:a6:39:bb:8a:1a:a6:
33:1a:32:92:94:54:e3:c8:91:4b:81:3e:f0:b3:df:
82:df:64:54:0a:ee:70:fb:8f:ce:ac:47:51:4d:e4:
d8:7b:53:9a:bd:87:f1:e0:2a:36:de:68:21:56:2c:
02:8d:7f:a8:6b:d0:07:8b:d5:72:03:a3:a3:a8:e8:
5e:b8:f4:4e:37:90:2e:f4:31:b3:be:44:b2:37:d6:
b9:95:e6:41:11:26:7e:b3:87:16:60:b9:02:a7:4c:
35:ab:25:00:9f:96:cd:30:e7:39:d1:f0:ec:56:d1:
a9:3f:54:32:26:df:e8:0d:b2:12:e2:27:db:c9:6a:
c4:8a:33:b3:0c:fd:12:47:47:c9:17:15:0f:74:aa:
38:86:88:51:b8:85:e0:aa:fc:3b:c5:8f:8a:e5:5a:
0a:f2:73:3a:c9:40:8c:48:ff:63:cc:f3:c6:bb:4e:
d8:29:8b:e1:7b:42:1b:b9:de:ee:9a:d1:a8:ef:21:
39:95:07:a7:92:c5:60:58:9a:0e:24:5e:45:90:fa:
d9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:AA:F2:12:CF:FB:4A:10:81:27:0F:6A:E6:0C:16:47:B5:E5:43:CB
X509v3 Authority Key Identifier:
keyid:00:93:38:48:02:1D:38:88:86:0D:AD:F7:18:80:94:D7:92:AF:6A:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AJM4SAIdOIiGDa33GICU15KvauY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/86762b-aa61-484a-b159-97f39bb1332d/1/PKryEs_7ShCBJw9q5gwWR7XlQ8s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/86762b-aa61-484a-b159-97f39bb1332d/1/AJM4SAIdOIiGDa33GICU15KvauY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.59.252.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:d7:54:7d:82:c0:21:f8:5d:23:69:8d:14:3e:fc:26:53:3f:
5d:0e:35:b9:6b:53:2c:2e:a3:cb:e6:ab:e3:b9:34:45:75:22:
ec:f8:c7:14:0a:8e:3e:9c:a8:29:7a:98:9e:b3:e8:55:5e:68:
3a:2c:f9:fb:ee:d9:98:2a:45:81:d5:54:2a:41:25:c8:80:dc:
31:63:9f:4c:37:5b:09:9a:3e:71:60:3d:95:18:e8:e3:12:2a:
38:0a:03:b7:09:53:ab:a6:05:fa:03:8f:76:f6:16:f4:69:d7:
e9:96:ff:0b:e3:2c:ef:37:0e:a0:97:7f:27:35:20:d7:8e:25:
01:35:3d:67:6b:d3:58:2a:39:a5:58:3e:8e:f9:d0:45:00:29:
b8:26:d3:bf:07:8a:12:27:8e:50:f6:a8:b0:83:a3:6c:ed:f9:
24:9a:ae:28:bb:0e:b6:b8:c8:6f:bd:22:9a:da:bf:fa:76:35:
5b:9a:28:5e:ef:a8:24:a9:ce:d1:de:e2:e0:fe:5d:68:cb:76:
12:4a:a6:8e:90:d8:a2:b3:48:18:5d:50:3a:be:7a:b1:7e:a5:
79:1c:7d:d5:cc:22:92:5f:9c:b1:f4:9f:53:5d:29:91:be:9e:
5e:44:34:5e:7b:6f:51:da:59:ce:52:de:31:21:86:a8:06:f3:
e8:74:ce:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:41 2024 by rpki-client on console-fra.rpki-client.org