Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/819e39-c00c-49b0-a768-4406688eef85/1/BwLppYXVDQKaACyRrWtgMN3yWY8.roa
File: BwLppYXVDQKaACyRrWtgMN3yWY8.roa (raw, json)
Hash identifier: 9f9CW5gcTyEArXVstlAMenWJFEfQitCNDC/8Hr4SmDo=
Subject key identifier: 07:02:E9:A5:85:D5:0D:02:9A:00:2C:91:AD:6B:60:30:DD:F2:59:8F
Certificate issuer: /CN=74d34abbe9afba280432c2ab83898c7b950df7ac
Certificate serial: 0183A6F8C99EDEA36EA1EAC0FD2A0C5F9FFA
Authority key identifier: 74:D3:4A:BB:E9:AF:BA:28:04:32:C2:AB:83:89:8C:7B:95:0D:F7:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dNNKu-mvuigEMsKrg4mMe5UN96w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/819e39-c00c-49b0-a768-4406688eef85/1/BwLppYXVDQKaACyRrWtgMN3yWY8.roa
Signing time: Wed 05 Oct 2022 07:07:45 +0000
ROA not before: Wed 05 Oct 2022 07:07:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201895
IP address blocks: 85.117.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a6:f8:c9:9e:de:a3:6e:a1:ea:c0:fd:2a:0c:5f:9f:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74d34abbe9afba280432c2ab83898c7b950df7ac
Validity
Not Before: Oct 5 07:07:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0702e9a585d50d029a002c91ad6b6030ddf2598f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2a:35:8d:c7:bf:a4:2d:5d:26:45:8b:a7:52:
c1:fb:1e:01:44:96:02:98:b4:a2:85:14:2b:72:02:
35:3d:ce:d4:d0:e2:41:d9:e0:ca:b1:5d:f6:63:4a:
1d:78:a7:01:a9:45:78:e0:65:65:c4:ca:a0:33:c4:
7d:e4:e4:f6:96:7b:7e:fa:1b:ed:b8:49:51:34:bb:
34:f7:45:78:49:2b:ef:6b:54:60:e2:a2:d0:e0:5d:
42:d6:32:9d:55:8b:44:a7:71:b9:fd:b1:35:1f:c1:
5d:18:cf:ae:8a:57:a2:15:8f:7e:93:bb:fb:c8:b5:
a6:a7:f0:cc:e0:11:4d:36:52:3c:65:d5:21:cc:c6:
43:72:21:e9:00:6b:6f:5a:b6:0f:10:7b:3c:6f:4e:
79:eb:6e:f4:83:0d:f5:03:67:0b:2a:39:1c:f1:1a:
80:06:5c:eb:85:34:12:a4:62:69:fd:af:79:e1:2b:
d7:7a:01:bf:4b:fb:41:3e:58:13:8a:1d:61:83:4e:
5a:36:6a:c0:ea:a0:9a:e9:c8:0c:c4:dc:5b:14:f3:
53:f9:19:a4:67:1e:50:2b:93:6c:12:52:b2:87:f9:
41:fa:cc:0c:fc:d3:dc:a9:a4:2c:06:43:5a:14:bf:
cc:77:45:46:c3:04:24:34:f5:78:1f:01:8b:21:4a:
11:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:02:E9:A5:85:D5:0D:02:9A:00:2C:91:AD:6B:60:30:DD:F2:59:8F
X509v3 Authority Key Identifier:
keyid:74:D3:4A:BB:E9:AF:BA:28:04:32:C2:AB:83:89:8C:7B:95:0D:F7:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNNKu-mvuigEMsKrg4mMe5UN96w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/819e39-c00c-49b0-a768-4406688eef85/1/BwLppYXVDQKaACyRrWtgMN3yWY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/819e39-c00c-49b0-a768-4406688eef85/1/dNNKu-mvuigEMsKrg4mMe5UN96w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.228.0/24
Signature Algorithm: sha256WithRSAEncryption
61:5f:e3:e5:af:a3:2f:7e:0f:e7:4e:6f:23:41:d6:09:6f:4a:
4d:ca:0a:ae:c6:c9:54:61:ed:d9:1e:a8:b2:f2:6c:41:e2:18:
1e:4b:5a:87:6b:ad:65:79:a4:00:29:ca:86:85:10:18:01:da:
30:89:fa:fd:38:3a:df:62:39:c4:3f:71:c2:e1:9f:57:4e:97:
ba:89:64:a0:57:69:54:4c:23:69:88:cd:49:e6:dd:39:05:49:
4a:39:1c:aa:b5:01:c2:3f:a1:94:ee:4e:ca:5b:0e:e5:26:3c:
9a:14:37:7b:c2:78:3d:28:84:d7:8e:d2:37:35:89:0e:77:63:
67:58:51:cf:33:a1:80:7b:ec:71:4a:62:f8:6f:bf:00:e6:e3:
ef:bf:1e:f2:42:4c:47:dd:3a:98:6c:06:90:00:a2:11:9d:2b:
58:b1:f0:58:47:3a:ee:24:9b:80:18:9a:a7:c2:7c:bf:d5:bb:
44:f5:68:0d:59:8c:f7:4e:72:75:9c:f7:c4:d2:c1:3e:26:f9:
63:46:b2:e3:c5:2a:7c:ac:b8:c9:14:c8:3c:86:be:bc:cf:e2:
22:59:9b:f9:97:4c:88:ec:5a:64:95:e2:30:13:a8:78:5b:97:
0f:79:42:4d:9c:c4:02:53:92:25:56:6b:c8:3f:71:84:4e:66:
ac:e8:cf:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:58 2024 by rpki-client on console-ams.rpki-client.org