Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/BCnICyDYD6AtebrXX1PPu1oqWp8.roa
File: BCnICyDYD6AtebrXX1PPu1oqWp8.roa (raw, json)
Hash identifier: dpqDBaTMZf9SS+Pzq6xipGCoLCsw0w1v2SVredl+qso=
Subject key identifier: 04:29:C8:0B:20:D8:0F:A0:2D:79:BA:D7:5F:53:CF:BB:5A:2A:5A:9F
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B1DB2EE
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/BCnICyDYD6AtebrXX1PPu1oqWp8.roa
Signing time: Sat 01 Jan 2022 13:58:15 +0000
ROA not before: Sat 01 Jan 2022 13:58:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208750
IP address blocks: 178.16.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 723366638 (0x2b1db2ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0429c80b20d80fa02d79bad75f53cfbb5a2a5a9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a6:df:bf:e1:77:d1:5d:a5:52:45:88:f9:8d:
dc:64:d9:91:ec:d5:74:a6:19:27:88:b4:b6:a8:7d:
e6:a0:e6:4a:cc:94:ba:06:60:16:94:c0:5a:ef:be:
40:c3:a6:de:fa:2b:8a:08:eb:37:db:44:8d:ac:59:
f6:c0:44:22:1e:88:0b:38:6b:d2:f8:2e:b3:c7:ad:
23:72:56:43:b4:8b:a5:88:3c:3c:2f:75:e5:ae:4a:
84:3d:21:11:83:6b:62:e4:65:a8:52:e7:0f:51:d0:
21:c0:49:14:a3:06:11:bf:f8:be:9a:3b:15:da:ad:
dd:c6:47:84:92:4e:f1:27:ca:e2:89:03:16:9f:87:
f4:1e:4e:7f:30:63:b5:aa:2d:a9:87:cd:b4:15:c5:
7c:ad:00:25:91:72:d9:0b:ba:67:d9:0c:b0:e7:2c:
56:1e:52:b7:f6:73:3b:d2:72:1c:b4:71:ca:be:cf:
87:a6:4a:c4:59:c8:a5:66:ea:a7:d8:5a:68:d0:50:
ba:15:2a:97:61:24:5c:2e:61:d7:69:3b:91:e6:a5:
7c:f7:dc:82:24:24:ba:b0:82:83:23:6f:74:95:1e:
a4:3a:d6:85:5a:51:f7:ce:36:47:b1:25:a0:6d:f3:
ba:d1:17:a4:b4:0a:6a:3b:68:68:32:0e:ed:b8:64:
a6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:29:C8:0B:20:D8:0F:A0:2D:79:BA:D7:5F:53:CF:BB:5A:2A:5A:9F
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/BCnICyDYD6AtebrXX1PPu1oqWp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.16.124.0/24
Signature Algorithm: sha256WithRSAEncryption
23:eb:8b:17:35:9c:ab:9b:c4:80:f4:93:5d:cc:fe:32:d2:e5:
9a:ef:94:cb:a0:7c:ee:ff:a6:9a:22:3d:e6:e6:31:da:fb:63:
b1:ad:44:5d:4d:37:86:3c:da:52:9c:ae:8b:8c:a8:2d:1b:5a:
47:65:a3:97:f3:55:30:4b:77:90:36:16:0b:9a:78:79:d6:b9:
43:6b:40:38:12:d0:48:0d:08:51:e5:ec:96:f3:ed:c1:6c:fd:
25:07:23:ed:f6:f5:28:7d:c7:50:ee:55:35:81:db:47:48:66:
46:db:24:b1:24:79:51:eb:64:24:c2:40:be:3a:3e:f6:40:03:
6d:ed:6a:77:ea:51:ec:15:37:fb:d2:fa:5a:8b:1c:17:d2:41:
95:3a:3f:52:84:e7:71:b5:a0:b1:a4:14:f8:41:c9:cd:29:95:
21:da:44:bc:bd:6b:09:bf:5e:9a:79:da:9d:5c:0b:bd:93:16:
13:7d:65:d0:11:77:9d:a9:4a:9a:6f:65:2e:94:c8:61:d1:0c:
e2:52:f3:72:dd:ed:d2:75:47:a2:1b:12:8e:ca:c4:a4:36:7d:
cb:e9:60:f0:bf:36:11:5a:68:fb:b7:58:5d:12:91:3f:10:b1:
27:32:c8:1e:2d:2f:7e:bc:53:a1:98:7a:85:3f:27:60:8e:10:
ca:b3:40:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org