Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/7dbe93-5df8-48a3-8613-293b62794850/1/bjiXSsk9yXQzK-1U0LTsJg2vXUc.roa
File: bjiXSsk9yXQzK-1U0LTsJg2vXUc.roa (raw, json)
Hash identifier: Op/tH9Oq7VgzPSNjJaElHMzTrMNqmEUvp25vAgWHOjY=
Subject key identifier: 6E:38:97:4A:C9:3D:C9:74:33:2B:ED:54:D0:B4:EC:26:0D:AF:5D:47
Certificate issuer: /CN=88d5e09af82a96918c86a647b4edcd8ebb23820d
Certificate serial: 0C76C69C
Authority key identifier: 88:D5:E0:9A:F8:2A:96:91:8C:86:A6:47:B4:ED:CD:8E:BB:23:82:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iNXgmvgqlpGMhqZHtO3Njrsjgg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/7dbe93-5df8-48a3-8613-293b62794850/1/bjiXSsk9yXQzK-1U0LTsJg2vXUc.roa
Signing time: Sat 01 Jan 2022 05:55:49 +0000
ROA not before: Sat 01 Jan 2022 05:55:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30761
IP address blocks: 185.73.252.0/24 maxlen: 24
193.22.7.0/24 maxlen: 24
2a05:4780::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 209110684 (0xc76c69c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88d5e09af82a96918c86a647b4edcd8ebb23820d
Validity
Not Before: Jan 1 05:55:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e38974ac93dc974332bed54d0b4ec260daf5d47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3a:34:92:60:11:a8:ce:c0:5b:ad:00:2b:4c:
e7:fe:95:0f:45:00:28:e7:9c:dd:c4:42:08:c1:01:
a7:0d:6a:33:2b:78:13:b9:89:7b:d6:c3:a9:f7:f6:
e1:25:0c:38:83:b6:fd:27:bc:a6:f8:93:34:05:65:
9b:c0:c1:33:dc:67:c1:4e:e4:af:3c:2d:3b:2c:21:
16:4d:db:b2:ce:7c:76:51:4e:f6:cb:26:9f:6d:68:
89:f8:1c:48:89:e8:72:35:7c:76:c5:67:29:09:7b:
78:f9:ab:1e:a5:ec:83:c8:14:81:3c:1f:7a:af:c5:
ba:63:02:c6:3d:be:c5:49:34:aa:55:87:c8:6a:3c:
af:ce:fe:ad:a4:41:6c:7b:f4:cf:75:5b:fe:07:5d:
b6:35:f4:ef:a9:30:9d:9b:bd:52:22:35:b3:79:a5:
9b:2e:78:67:39:19:86:12:f9:a2:26:01:88:5b:a5:
ca:03:ef:0e:2a:23:f0:25:1f:b9:ae:ca:39:be:01:
d5:de:45:0b:5b:82:2d:06:b8:9b:ca:82:f8:a5:7d:
29:7b:d3:2b:cd:9d:56:a6:81:82:73:9d:88:d3:2f:
54:03:5a:4e:1e:17:40:30:6d:f3:2a:3c:47:53:d9:
1c:fc:c4:03:0a:9a:93:22:d5:bd:37:f0:11:b1:88:
16:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:38:97:4A:C9:3D:C9:74:33:2B:ED:54:D0:B4:EC:26:0D:AF:5D:47
X509v3 Authority Key Identifier:
keyid:88:D5:E0:9A:F8:2A:96:91:8C:86:A6:47:B4:ED:CD:8E:BB:23:82:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iNXgmvgqlpGMhqZHtO3Njrsjgg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/7dbe93-5df8-48a3-8613-293b62794850/1/bjiXSsk9yXQzK-1U0LTsJg2vXUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/7dbe93-5df8-48a3-8613-293b62794850/1/iNXgmvgqlpGMhqZHtO3Njrsjgg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.252.0/24
193.22.7.0/24
IPv6:
2a05:4780::/29
Signature Algorithm: sha256WithRSAEncryption
98:41:02:19:24:1e:aa:b6:41:68:79:76:09:75:a0:1f:22:15:
23:a6:19:b7:78:56:2c:e5:bf:6e:30:3e:f9:d0:22:2e:ba:da:
cf:c9:25:ac:82:b7:64:71:9d:c8:fe:9d:a8:e6:db:60:37:d2:
57:1f:78:83:5d:c1:33:d8:4d:ab:2b:06:3e:e8:96:e4:9e:5e:
7e:d2:3e:53:20:ad:75:55:c6:11:4b:0f:4e:41:f4:02:82:d2:
49:f6:b9:2c:2e:73:ec:0b:05:6d:31:5d:51:c7:6a:f0:21:f4:
71:da:87:7f:db:b4:fb:1f:2d:1a:16:a1:b3:97:62:e0:5a:f7:
18:0f:99:2e:36:df:3f:13:0d:5d:05:80:d9:dd:ca:32:4b:9e:
5d:c2:5f:88:e5:3d:77:27:49:b1:21:7a:df:9b:44:eb:4c:d2:
3b:ca:d8:89:a5:6a:be:cf:04:41:f3:bf:8c:ad:dd:b1:0e:46:
e7:0b:92:98:f4:f6:d8:d4:3f:48:bb:e5:cb:99:9f:82:bc:b4:
a3:7b:d0:ac:13:c1:94:64:80:a6:18:26:45:b8:11:e1:4f:f1:
1b:93:1a:b7:01:04:7e:66:70:db:7b:5d:40:88:d6:9b:80:24:
0c:3a:3c:68:87:3d:aa:d9:59:e0:cb:b5:3c:6a:52:92:0a:2e:
ef:28:15:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:54 2024 by rpki-client on console-ams.rpki-client.org