Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/bljpmc97xnfuT6QjgMOEJVr3JE0.roa
File: bljpmc97xnfuT6QjgMOEJVr3JE0.roa (raw, json)
Hash identifier: hB0s5UkY0Ps5eY4seJJOutR+jQo7ixO1NKED/GNGVnM=
Subject key identifier: 6E:58:E9:99:CF:7B:C6:77:EE:4F:A4:23:80:C3:84:25:5A:F7:24:4D
Certificate issuer: /CN=dc899c28664ee8194a64048e46c60c6e5f190c53
Certificate serial: 09F1ED02
Authority key identifier: DC:89:9C:28:66:4E:E8:19:4A:64:04:8E:46:C6:0C:6E:5F:19:0C:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ImcKGZO6BlKZASORsYMbl8ZDFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/bljpmc97xnfuT6QjgMOEJVr3JE0.roa
Signing time: Sat 01 Jan 2022 08:56:27 +0000
ROA not before: Sat 01 Jan 2022 08:56:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212885
IP address blocks: 213.167.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166849794 (0x9f1ed02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc899c28664ee8194a64048e46c60c6e5f190c53
Validity
Not Before: Jan 1 08:56:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e58e999cf7bc677ee4fa42380c384255af7244d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b8:29:2b:82:ea:21:d1:e7:3b:cb:89:cb:f6:
0b:09:b8:27:ff:c8:ed:ff:2c:cf:f6:63:ee:30:22:
45:e7:04:da:74:bf:8c:71:1f:22:5b:43:62:35:d4:
bf:44:7c:2b:27:fa:b8:b1:70:ab:cf:fa:35:19:a4:
02:d4:8b:c1:22:b9:47:18:30:36:4b:c9:f3:e4:86:
56:a4:74:f0:33:1d:95:95:e8:c1:e2:13:78:ca:15:
e8:c4:3d:d8:a6:15:c6:08:4c:61:b8:3a:91:66:15:
82:9f:b7:9d:bb:e6:9c:f1:0c:8d:21:f5:15:cf:29:
7c:6b:cb:c0:bc:67:59:a8:ab:44:c6:f6:27:75:b5:
8d:e2:46:72:82:2a:29:2f:df:49:e3:98:19:3b:af:
70:b1:80:80:e7:42:a1:ea:2c:f5:3e:d6:9d:a6:28:
1e:04:7c:ef:47:69:66:71:90:94:23:9d:ef:f4:a5:
f9:bc:b2:6b:00:17:18:61:07:1d:5f:54:89:ef:67:
e5:35:d8:52:88:b0:60:a5:11:59:99:ab:fe:a0:d5:
7c:d2:fc:e0:22:05:68:18:a3:1b:77:c9:91:8d:7b:
a3:be:f3:f9:83:51:c0:46:09:2a:7b:18:89:ce:2a:
78:70:60:f2:9d:b4:7e:c2:b8:c3:16:21:51:d7:c1:
45:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:58:E9:99:CF:7B:C6:77:EE:4F:A4:23:80:C3:84:25:5A:F7:24:4D
X509v3 Authority Key Identifier:
keyid:DC:89:9C:28:66:4E:E8:19:4A:64:04:8E:46:C6:0C:6E:5F:19:0C:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ImcKGZO6BlKZASORsYMbl8ZDFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/bljpmc97xnfuT6QjgMOEJVr3JE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/3ImcKGZO6BlKZASORsYMbl8ZDFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.167.82.0/24
Signature Algorithm: sha256WithRSAEncryption
28:3e:f9:e0:de:8a:85:87:0f:5f:20:fe:bc:ef:af:52:02:89:
5f:39:8f:ab:2a:00:a4:6f:87:c0:da:bf:59:be:a3:db:a6:38:
c8:e7:52:50:6d:78:af:b5:87:d8:e6:71:84:e8:a0:0a:24:82:
b8:4f:28:d5:6e:dd:74:71:0a:67:a2:a6:9f:98:53:23:46:12:
77:a9:67:8d:dc:72:fa:14:c9:7e:bd:c0:05:f7:1d:ad:37:ea:
67:28:c4:be:3e:04:57:15:f5:ca:45:8a:14:c9:4c:2e:98:1c:
64:63:07:a3:a1:f3:d1:4e:83:ce:64:c0:15:bf:d8:07:09:35:
61:64:50:02:36:58:25:cb:45:b5:67:df:48:ac:9b:10:69:b8:
fc:ee:14:83:cb:83:b4:05:aa:c5:e6:30:49:80:c5:ea:df:c6:
99:88:db:93:99:04:83:c0:4b:6f:05:6c:b9:c0:e2:b4:6e:c5:
46:bc:92:ba:9f:b1:c9:d9:0b:17:7c:71:d3:6f:cb:37:6e:8b:
49:96:2f:d8:92:b1:8d:40:17:8d:9e:ba:52:5a:38:39:9d:8b:
24:1b:14:db:1c:56:73:32:d5:9d:9c:6a:80:a0:c1:fb:32:20:
92:1d:35:23:7e:3c:9b:2e:60:9f:14:02:84:66:fc:c0:38:f7:
39:7a:0a:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:30 2024 by rpki-client on console-fra.rpki-client.org