Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/Bqbts4mfzZEfDzTqspEOEfmjWvs.roa
File: Bqbts4mfzZEfDzTqspEOEfmjWvs.roa (raw, json)
Hash identifier: FMdYpD2Zh6qPhJfko0/VLDM9m0AlsVltBOh3tFay674=
Subject key identifier: 06:A6:ED:B3:89:9F:CD:91:1F:0F:34:EA:B2:91:0E:11:F9:A3:5A:FB
Certificate issuer: /CN=69eb002f000bd426e4a640c71d6c0201b5050e34
Certificate serial: 01822A6DEC185EEE14CC041DE861E3D1F26D
Authority key identifier: 69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/Bqbts4mfzZEfDzTqspEOEfmjWvs.roa
Signing time: Sat 23 Jul 2022 09:40:23 +0000
ROA not before: Sat 23 Jul 2022 09:40:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206880
IP address blocks: 185.20.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:2a:6d:ec:18:5e:ee:14:cc:04:1d:e8:61:e3:d1:f2:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69eb002f000bd426e4a640c71d6c0201b5050e34
Validity
Not Before: Jul 23 09:40:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06a6edb3899fcd911f0f34eab2910e11f9a35afb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c6:ca:49:39:ef:ae:95:8a:42:f9:86:b6:67:
17:da:c6:a7:bb:45:5f:17:b2:d1:c0:2c:de:7d:35:
90:52:c4:42:33:18:68:ac:7a:18:7d:ad:a5:35:04:
a1:53:d0:47:c4:63:81:45:91:23:be:e3:16:54:5b:
11:76:a0:9b:e5:47:92:27:8a:6f:8c:d0:7b:a5:d9:
ca:97:14:ee:70:72:ef:2d:85:bd:3d:a9:b1:00:f5:
66:63:36:67:f4:c4:99:77:8e:6f:52:c4:80:2e:4f:
b7:fd:77:91:14:81:f4:01:ad:d0:4d:4c:a6:c9:b4:
40:50:be:05:b6:62:e3:9e:52:ef:32:f4:3c:e7:cf:
ba:e7:df:ed:93:16:36:b2:ba:c8:c1:7f:3a:7a:05:
15:7e:32:55:06:74:c8:8f:99:91:11:0d:83:cc:89:
db:0b:51:e8:4f:49:5a:33:04:98:ff:85:5f:20:fa:
a4:1e:c6:23:4c:f1:24:cb:61:a9:c8:e4:f5:71:24:
45:b6:4a:df:53:44:69:f0:23:5f:8f:59:d9:1c:18:
53:a3:cc:2e:bf:7e:62:fc:35:d3:d2:c8:7c:8f:d5:
ae:81:c4:06:a8:82:a7:8f:8d:11:42:c4:07:58:da:
a8:6e:0c:0a:32:aa:27:18:70:cd:fa:48:38:e7:51:
b2:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:A6:ED:B3:89:9F:CD:91:1F:0F:34:EA:B2:91:0E:11:F9:A3:5A:FB
X509v3 Authority Key Identifier:
keyid:69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/Bqbts4mfzZEfDzTqspEOEfmjWvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.20.232.0/24
Signature Algorithm: sha256WithRSAEncryption
82:95:93:81:e4:bc:90:33:ab:d1:68:63:af:e4:0a:ab:9b:93:
a9:a9:60:15:4a:39:d4:ed:7f:95:8a:34:ca:0e:4f:1d:42:ff:
6f:20:2c:4d:49:2c:91:03:98:6b:00:3d:87:86:fc:9a:6a:be:
6c:41:6e:12:70:ce:6c:1b:59:22:70:86:5c:d4:03:9f:36:51:
a5:0b:be:a7:4f:dc:0b:1b:32:35:65:c0:1b:d3:7b:31:ba:0b:
4c:46:f5:77:87:f6:ab:ef:f3:1e:12:af:3b:b6:6f:49:4c:1c:
9c:cb:3e:ee:ae:84:e4:d4:d1:85:55:ee:63:79:ac:52:ab:cb:
ee:59:cf:49:12:07:bc:23:35:b4:0c:d5:d6:23:ec:6a:e8:18:
0e:83:64:7e:b8:6d:8d:bd:5d:00:ef:44:bc:97:11:02:2c:32:
0c:0a:ad:ad:a2:d6:68:d3:98:9f:c6:85:e9:e5:4f:54:e2:ec:
42:49:fd:f2:4c:23:5c:31:d4:02:5d:d4:4f:d6:06:d5:d4:7a:
4c:4e:87:c3:24:4b:b4:99:d0:9b:e8:60:0c:7b:d6:fc:f4:20:
6e:ba:c6:d6:4d:3e:e8:02:a2:22:6b:45:f6:9f:a4:65:a9:e0:
7a:55:a3:ee:34:4b:15:40:4d:b3:81:5f:f2:84:21:20:f3:86:
48:9c:9f:50
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIqbewYXu4UzAQd6GHj0fJtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5ZWIwMDJmMDAwYmQ0MjZlNGE2NDBjNzFkNmMwMjAxYjUw
NTBlMzQwHhcNMjIwNzIzMDk0MDIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNmE2ZWRiMzg5OWZjZDkxMWYwZjM0ZWFiMjkxMGUxMWY5YTM1YWZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk8bKSTnvrpWKQvmGtmcX2sanu0Vf
F7LRwCzefTWQUsRCMxhorHoYfa2lNQShU9BHxGOBRZEjvuMWVFsRdqCb5UeSJ4pv
jNB7pdnKlxTucHLvLYW9PamxAPVmYzZn9MSZd45vUsSALk+3/XeRFIH0Aa3QTUym
ybRAUL4FtmLjnlLvMvQ858+659/tkxY2srrIwX86egUVfjJVBnTIj5mREQ2DzInb
C1HoT0laMwSY/4VfIPqkHsYjTPEky2GpyOT1cSRFtkrfU0Rp8CNfj1nZHBhTo8wu
v35i/DXT0sh8j9WugcQGqIKnj40RQsQHWNqobgwKMqonGHDN+kg451GyYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAam7bOJn82RHw806rKRDhH5o1r7MB8GA1UdIwQY
MBaAFGnrAC8AC9Qm5KZAxx1sAgG1BQ40MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWVzQUx3QUwxQ2JrcGtESEhXd0NBYlVGRGpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9kM2U2ODItMzM3MC00MjcxLTk0Mzct
Nzg1NDc1YzIyYzliLzEvQnFidHM0bWZ6WkVmRHpUcXNwRU9FZm1qV3ZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9kM2U2ODItMzM3MC00MjcxLTk0MzctNzg1NDc1YzIyYzli
LzEvYWVzQUx3QUwxQ2JrcGtESEhXd0NBYlVGRGpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuRToMA0G
CSqGSIb3DQEBCwUAA4IBAQCClZOB5LyQM6vRaGOv5Aqrm5OpqWAVSjnU7X+VijTK
Dk8dQv9vICxNSSyRA5hrAD2Hhvyaar5sQW4ScM5sG1kicIZc1AOfNlGlC76nT9wL
GzI1ZcAb03sxugtMRvV3h/ar7/MeEq87tm9JTBycyz7uroTk1NGFVe5jeaxSq8vu
Wc9JEge8IzW0DNXWI+xq6BgOg2R+uG2NvV0A70S8lxECLDIMCq2totZo05ifxoXp
5U9U4uxCSf3yTCNcMdQCXdRP1gbV1HpMTofDJEu0mdCb6GAMe9b89CBuusbWTT7o
AqIia0X2n6RlqeB6VaPuNEsVQE2zgV/yhCEg84ZInJ9Q
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:48 2023 by rpki-client on console-ams.rpki-client.org