Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/a56723-d37c-417b-a8a1-6e22bf436304/1/bfPzxfcc5Hxv1BV1zRng-tLdZ48.roa
File: bfPzxfcc5Hxv1BV1zRng-tLdZ48.roa (raw, json)
Hash identifier: sDWD9KWjoFK+A1JYOtXTbV+HbcZige3uvVc5ST7LrTI=
Subject key identifier: 6D:F3:F3:C5:F7:1C:E4:7C:6F:D4:15:75:CD:19:E0:FA:D2:DD:67:8F
Certificate issuer: /CN=1bfe6b9a0e6898a7a2e9d84d3dbf6327b453e662
Certificate serial: 137A5CCE
Authority key identifier: 1B:FE:6B:9A:0E:68:98:A7:A2:E9:D8:4D:3D:BF:63:27:B4:53:E6:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G_5rmg5omKei6dhNPb9jJ7RT5mI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/a56723-d37c-417b-a8a1-6e22bf436304/1/bfPzxfcc5Hxv1BV1zRng-tLdZ48.roa
Signing time: Sat 01 Jan 2022 08:55:41 +0000
ROA not before: Sat 01 Jan 2022 08:55:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45031
IP address blocks: 185.133.26.0/23 maxlen: 23
2a00:6700::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 326786254 (0x137a5cce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bfe6b9a0e6898a7a2e9d84d3dbf6327b453e662
Validity
Not Before: Jan 1 08:55:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6df3f3c5f71ce47c6fd41575cd19e0fad2dd678f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ee:65:8a:67:a3:c6:20:ad:ef:e1:1c:eb:1b:
cc:87:be:cc:60:0c:b7:dc:c9:1e:82:9f:d6:4e:76:
a2:15:28:22:fc:4e:ac:ad:f6:40:5d:0a:fc:5a:3f:
06:9a:03:5b:0a:5e:38:05:3c:ca:d3:f1:9f:bf:06:
08:45:a5:24:3d:9e:17:08:f5:e1:d1:f6:5c:41:c5:
dd:d4:ba:02:df:d3:a5:4f:b9:1b:67:7a:a6:9b:d5:
1d:75:3f:33:7d:77:ac:e4:35:ec:fc:95:5a:2c:0a:
f3:14:a3:ce:95:56:88:28:c5:2b:40:4d:09:cd:66:
33:56:d8:8a:5b:b3:e8:d9:15:f8:2c:bc:0c:b6:74:
d6:58:7d:c6:d0:fb:d1:fc:18:9a:b1:f6:c9:8b:bc:
e7:96:7e:41:10:e5:f2:5a:16:1c:3e:7f:ee:d1:8b:
1d:27:bb:1c:e4:4a:71:a2:71:c6:e2:95:ea:73:99:
e6:0a:65:43:0e:ef:ba:9d:cb:9a:7c:cb:ae:79:70:
03:fc:8f:fa:94:7d:80:4e:b1:c7:af:52:b1:5f:3a:
e1:85:25:64:a3:3e:02:27:f7:b5:55:35:89:24:f8:
8e:19:da:77:49:ef:3c:55:35:1f:1f:af:bc:9c:ee:
76:06:7f:e9:26:90:f7:6a:67:90:6e:f7:a7:50:6e:
f5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F3:F3:C5:F7:1C:E4:7C:6F:D4:15:75:CD:19:E0:FA:D2:DD:67:8F
X509v3 Authority Key Identifier:
keyid:1B:FE:6B:9A:0E:68:98:A7:A2:E9:D8:4D:3D:BF:63:27:B4:53:E6:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G_5rmg5omKei6dhNPb9jJ7RT5mI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/a56723-d37c-417b-a8a1-6e22bf436304/1/bfPzxfcc5Hxv1BV1zRng-tLdZ48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/a56723-d37c-417b-a8a1-6e22bf436304/1/G_5rmg5omKei6dhNPb9jJ7RT5mI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.26.0/23
IPv6:
2a00:6700::/48
Signature Algorithm: sha256WithRSAEncryption
77:fb:d1:69:06:f9:cb:f7:f8:c3:d7:01:37:a4:55:7d:0b:65:
9e:f4:b7:d3:5d:7e:28:c0:54:01:55:4c:c4:90:ce:90:68:1c:
33:cb:f2:f3:fe:3b:6c:f0:2d:e8:f8:c9:dd:b2:66:46:db:01:
ba:bd:a8:2d:8c:2d:aa:ff:97:71:50:6c:f0:92:e8:cb:ab:42:
2c:7f:c4:b3:31:26:75:2b:7e:24:d5:7b:77:b2:69:b8:a6:37:
7a:cc:d0:e7:0f:e3:bc:ca:72:50:eb:2c:bc:69:4d:a0:84:d2:
d0:d2:12:57:c7:9e:da:ee:f7:01:77:95:9d:3a:0d:4a:62:fa:
7b:a7:cf:e6:09:bd:b4:cb:67:5b:14:b6:1c:30:e2:9b:51:f8:
89:7e:41:d3:25:77:e1:87:19:b6:1c:a8:f9:1f:d7:82:a7:bb:
40:12:f5:6c:54:50:8a:3e:59:ce:2c:19:b6:17:07:77:7d:cd:
59:a6:77:fe:c8:d1:84:10:d9:88:6b:98:c6:fc:af:0a:c1:da:
ae:85:ca:28:e1:c7:04:72:e3:9b:56:44:58:d2:e0:1b:78:e1:
ce:2a:19:83:5d:e5:fa:60:20:44:08:d3:8d:cf:11:7a:f9:8b:
2f:40:63:d2:ed:23:dc:4a:1d:62:e3:f8:11:c0:b8:e6:9e:e4:
1e:5e:7b:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org