Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/BykE5p6Fvy8NVLPPaozp1O9w95Y.roa
File: BykE5p6Fvy8NVLPPaozp1O9w95Y.roa (raw, json)
Hash identifier: cRQJWZrV2HnE/W9VluyLuFGnQxFOP4MSNCct27IX6TI=
Subject key identifier: 07:29:04:E6:9E:85:BF:2F:0D:54:B3:CF:6A:8C:E9:D4:EF:70:F7:96
Certificate issuer: /CN=fc44297e9271c6edf064915f6180ae12690dda8b
Certificate serial: 0A56CE49
Authority key identifier: FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/BykE5p6Fvy8NVLPPaozp1O9w95Y.roa
Signing time: Thu 07 Apr 2022 15:57:55 +0000
ROA not before: Thu 07 Apr 2022 15:57:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199270
IP address blocks: 82.114.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173461065 (0xa56ce49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc44297e9271c6edf064915f6180ae12690dda8b
Validity
Not Before: Apr 7 15:57:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=072904e69e85bf2f0d54b3cf6a8ce9d4ef70f796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a2:36:66:4e:5b:a1:cd:d9:e2:85:1a:0c:54:
6f:79:51:e7:9b:a5:12:d2:fa:87:ca:ab:a6:a2:8b:
b9:10:0d:46:47:c3:90:14:2b:b9:f2:61:f4:d2:a7:
dc:78:72:26:61:af:8a:97:f5:42:f4:42:6e:36:d0:
fb:ea:a7:6a:25:97:a4:bd:6e:66:bb:1c:90:d2:73:
95:89:f3:41:7d:6e:ca:ca:aa:4f:d3:53:bc:71:06:
5f:48:62:03:c2:5a:e9:ca:ef:6d:05:df:3a:cc:e9:
7a:f7:a1:aa:3d:e2:bd:25:d4:99:6b:89:38:54:e2:
17:ff:ed:eb:7c:98:9c:4f:83:ee:1b:4d:85:f4:fd:
4f:95:23:d8:8f:22:1a:50:bc:97:67:42:e0:ad:ab:
fc:c9:90:ff:e4:6f:47:79:46:87:3d:6c:64:e9:62:
8c:2e:f8:d5:2f:70:a4:6d:db:3e:9f:64:e1:ee:ff:
f4:2a:a6:62:7a:84:2a:d7:e8:28:6e:04:68:ec:70:
e6:17:36:44:bd:5b:94:71:da:b9:7a:ef:85:82:12:
a8:92:5e:23:e7:a4:24:99:e3:61:77:cd:6f:e2:ec:
57:af:0f:46:5e:56:2c:4c:81:f9:7f:a1:32:23:f1:
fb:f1:1f:7c:21:2f:9d:64:fa:06:3e:33:b6:3e:d7:
32:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:29:04:E6:9E:85:BF:2F:0D:54:B3:CF:6A:8C:E9:D4:EF:70:F7:96
X509v3 Authority Key Identifier:
keyid:FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/BykE5p6Fvy8NVLPPaozp1O9w95Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.114.44.0/22
Signature Algorithm: sha256WithRSAEncryption
21:11:f0:ca:a7:1a:70:ef:b2:16:98:29:57:dc:e6:ad:96:a2:
4f:c9:23:42:4c:b1:94:f3:b8:38:16:13:ef:fe:d8:69:2d:f4:
7e:69:64:f6:95:bc:29:8d:95:d6:28:ab:be:ec:8d:9b:8b:c8:
e6:ef:1c:ab:14:78:d7:7c:06:22:fd:18:ac:7a:bc:17:97:26:
72:e9:ee:c7:aa:06:ca:36:3d:29:76:ae:ac:11:92:4e:85:65:
5a:bc:90:4e:2c:d3:c1:b6:c4:95:49:5b:56:eb:87:f5:9e:14:
08:03:47:11:0a:1b:a3:e5:8a:06:7e:d1:7f:0f:a2:f7:e9:0a:
79:4d:b8:19:44:11:68:5a:93:6e:e8:12:a6:09:eb:2b:f2:95:
b6:68:fe:33:c5:08:ea:bc:36:89:e1:33:bf:2a:54:45:04:cc:
01:b9:51:6b:f7:01:6f:b0:63:61:35:b0:51:6b:95:a2:bc:a0:
3a:69:8b:40:4b:c8:65:c8:8f:dc:2c:97:1d:76:7f:86:88:77:
28:dc:0b:05:80:9f:6d:16:2b:ee:92:42:09:f9:21:ea:e3:7c:
7d:c3:41:5d:e6:89:be:d7:ac:4c:9c:1e:49:84:5b:39:c6:7f:
d7:6d:91:2c:4a:af:60:ed:1f:75:a7:c8:61:06:92:27:95:8f:
ea:eb:04:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:10 2024 by rpki-client on console-fra.rpki-client.org