Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/BqhNBU85Wmyvnmmeq7V26mVsvXs.roa
File: BqhNBU85Wmyvnmmeq7V26mVsvXs.roa (raw, json)
Hash identifier: PL4fRR3cLYuNPwH3RvnFQuN8r/6cf2x8pdbinrOVv7o=
Subject key identifier: 06:A8:4D:05:4F:39:5A:6C:AF:9E:69:9E:AB:B5:76:EA:65:6C:BD:7B
Certificate issuer: /CN=836a73bed75aa4efa577ed90ad3562e21951d1b2
Certificate serial: 0455EE3B
Authority key identifier: 83:6A:73:BE:D7:5A:A4:EF:A5:77:ED:90:AD:35:62:E2:19:51:D1:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2pzvtdapO-ld-2QrTVi4hlR0bI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/BqhNBU85Wmyvnmmeq7V26mVsvXs.roa
Signing time: Sat 01 Jan 2022 10:54:36 +0000
ROA not before: Sat 01 Jan 2022 10:54:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200797
IP address blocks: 185.95.212.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72740411 (0x455ee3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=836a73bed75aa4efa577ed90ad3562e21951d1b2
Validity
Not Before: Jan 1 10:54:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06a84d054f395a6caf9e699eabb576ea656cbd7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0f:03:74:1f:3b:f9:d7:83:d9:25:ac:a5:ca:
06:8f:7d:21:85:27:c6:f5:b4:32:f1:29:a8:33:99:
24:b9:05:99:71:1f:c1:75:4f:6b:53:1a:bc:ff:c0:
ed:4f:ef:b2:56:19:e1:46:20:e5:a7:ee:34:cb:35:
a4:df:92:87:78:88:5a:68:56:4f:72:bd:0e:ee:38:
be:0f:df:cf:b2:6f:a5:55:e9:d1:6d:fa:ca:3d:e6:
9d:08:2b:71:22:73:72:75:cc:2b:a1:bb:29:d2:24:
18:1d:10:ec:19:84:38:49:09:e9:1e:a2:b8:94:05:
5e:2c:56:d8:27:82:a4:ac:97:d5:fa:7a:13:80:5b:
3a:cc:ff:e0:94:57:aa:9d:27:64:c5:b4:99:29:1c:
9e:f5:36:83:65:9e:3c:cf:8b:2f:c7:70:e2:ac:49:
01:16:f2:fa:ac:f0:e5:1e:1c:ba:5d:20:60:78:c8:
07:da:0d:25:dc:93:33:80:44:a4:47:08:1d:64:74:
58:f7:61:b8:5b:b3:ca:ce:83:dd:18:7c:fb:f1:80:
15:33:f8:99:15:63:d2:08:45:77:ac:c6:d7:3b:9a:
e2:e2:bf:5c:78:74:4f:c9:9b:13:28:37:fc:45:dd:
55:98:fb:b6:d6:7d:96:e6:7c:17:4a:10:2e:c8:c3:
64:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:A8:4D:05:4F:39:5A:6C:AF:9E:69:9E:AB:B5:76:EA:65:6C:BD:7B
X509v3 Authority Key Identifier:
keyid:83:6A:73:BE:D7:5A:A4:EF:A5:77:ED:90:AD:35:62:E2:19:51:D1:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2pzvtdapO-ld-2QrTVi4hlR0bI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/BqhNBU85Wmyvnmmeq7V26mVsvXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.212.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:33:24:72:02:13:16:fd:9e:f3:5d:f4:c1:1d:fc:cf:f0:3a:
0b:94:35:d4:5e:d3:57:1b:74:1b:a7:85:18:5c:f3:86:60:f6:
e7:23:51:59:0d:ad:ea:10:68:6d:f3:d9:fb:33:e5:f1:35:39:
42:e8:0f:6a:0e:bc:f0:f1:84:8c:42:97:01:28:fa:74:a0:14:
2b:21:a4:1f:c4:14:32:86:69:9b:f4:d5:19:c8:fb:d8:d7:43:
fd:e7:c3:e6:f8:0d:93:cf:a1:16:be:a8:0a:2d:75:60:fb:6d:
e4:e3:2b:59:0f:d7:b4:3a:33:46:9d:42:e4:98:64:3b:c7:51:
17:c2:5e:90:1c:f7:20:07:2d:43:85:d6:4c:74:3d:37:3d:0b:
b3:11:db:ae:27:61:ff:6a:d9:f9:01:d2:d4:0b:bc:14:30:ed:
9c:21:55:1a:f7:6c:00:63:f1:f7:ac:7f:ad:58:da:c0:4e:32:
49:04:82:c7:f3:5e:76:0d:13:4c:db:e0:d8:d4:80:ca:9e:c2:
87:49:49:50:45:f8:73:3f:62:c1:ed:d0:f2:23:06:0c:b8:45:
af:26:b5:41:44:ad:00:0b:97:30:2b:86:e4:68:5f:d3:84:c6:
5a:00:05:f2:77:25:35:54:63:d6:68:68:ca:b8:36:8c:5b:56:
f5:b5:d9:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:22 2024 by rpki-client on console-ams.rpki-client.org