Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/bTiYNWImfW097y575G8yxw9ZDl4.roa
File: bTiYNWImfW097y575G8yxw9ZDl4.roa (raw, json)
Hash identifier: eyR9lhNp0EipoiwHEtoFf1oTzWoTc77TX4Vac2DTLgY=
Subject key identifier: 6D:38:98:35:62:26:7D:6D:3D:EF:2E:7B:E4:6F:32:C7:0F:59:0E:5E
Certificate issuer: /CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Certificate serial: 052D3DE2
Authority key identifier: 81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/bTiYNWImfW097y575G8yxw9ZDl4.roa
Signing time: Sat 01 Jan 2022 12:57:12 +0000
ROA not before: Sat 01 Jan 2022 12:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199313
IP address blocks: 195.64.236.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86851042 (0x52d3de2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Validity
Not Before: Jan 1 12:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d38983562267d6d3def2e7be46f32c70f590e5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:3f:63:1e:f2:95:0f:80:0b:f0:cf:83:47:45:
79:cd:37:65:b0:1c:06:8e:95:87:57:50:4b:c0:ec:
b1:19:90:db:50:df:07:12:5b:ea:8c:c7:19:f2:88:
3d:74:42:65:a6:76:f0:25:fb:7d:89:37:56:c8:10:
bb:4b:12:8a:b1:36:a5:16:b3:db:1c:cc:9e:9d:e0:
8b:34:72:0b:07:93:18:92:65:45:72:e4:32:44:2b:
3a:92:31:1f:18:f2:9b:ab:24:04:f2:77:26:3b:d3:
17:34:1d:c3:b2:af:c7:b1:b1:ee:51:4d:cd:56:3a:
e8:e2:ba:1d:6f:79:6b:f1:18:52:11:a5:77:cf:67:
ca:d6:68:11:87:54:bd:73:a0:a3:a1:1c:bf:e0:a6:
e5:10:70:03:4d:82:4e:32:9b:57:b8:7d:7a:3f:f5:
08:48:f8:48:18:1d:b0:76:12:a2:e4:ce:71:8e:7b:
ff:01:0c:33:60:37:d8:06:8e:e6:f5:72:54:6c:86:
b2:b3:cf:28:fc:24:1d:e9:a3:34:a3:10:87:93:04:
09:d2:40:88:44:1d:93:ed:24:5a:0d:67:7a:c2:d9:
c8:13:84:a1:47:08:76:a6:c7:88:30:e5:69:31:f2:
ad:21:63:2c:f6:29:31:38:1e:23:27:bc:91:f9:a8:
72:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:38:98:35:62:26:7D:6D:3D:EF:2E:7B:E4:6F:32:C7:0F:59:0E:5E
X509v3 Authority Key Identifier:
keyid:81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/bTiYNWImfW097y575G8yxw9ZDl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/gfpI9AvIRUDEa9I76bkIl6oYT00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.236.0/23
Signature Algorithm: sha256WithRSAEncryption
03:86:05:c7:0a:bd:ba:66:fe:08:68:7d:ad:a2:66:d8:b5:1a:
2f:d8:b4:fb:3c:a8:cb:cf:e7:9b:dd:8b:1f:09:99:ac:be:ce:
75:f5:ce:05:41:e5:ee:f3:73:53:a2:cd:f5:d1:b1:ee:49:9b:
00:70:1d:d2:cd:26:a0:d7:09:13:d5:74:f9:b4:db:be:18:b2:
88:cd:b5:86:6f:cc:be:05:4c:59:56:f7:d3:1e:3a:72:6d:33:
4e:0c:23:0a:59:0e:76:5b:a5:60:a5:b2:eb:ae:35:22:d0:89:
fc:ce:34:12:38:16:58:b7:9a:f6:7d:9f:4e:76:ac:af:3f:9f:
67:79:df:1f:7e:4a:3e:5a:6a:8c:37:8d:c6:48:f1:81:b9:85:
ac:1a:5a:33:bd:8b:02:21:08:93:f2:dc:3a:7e:af:0d:e8:cc:
56:b1:5e:bb:a2:fa:26:05:1a:6b:a9:04:34:09:72:7b:5f:00:
47:f2:a7:94:9f:78:ce:dc:6e:7c:c1:91:60:f5:a3:e2:10:59:
39:50:79:a9:db:07:7a:a8:53:3d:5e:b2:c7:bd:d2:2c:60:31:
03:60:bf:8f:2d:14:ee:13:81:f6:48:b2:28:12:f1:ed:77:c3:
4b:06:ab:bb:08:f1:8c:ab:de:cf:ce:2e:60:ad:48:62:74:0c:
01:0b:54:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:56 2024 by rpki-client on console-fra.rpki-client.org