Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/4bebe7-3f8e-4949-8980-9f6fa0e1a5a5/1/BKKZ9U_za6glH4dJ5Dvf3pwkeb0.roa
File: BKKZ9U_za6glH4dJ5Dvf3pwkeb0.roa (raw, json)
Hash identifier: 5Oa5GYcpnTSdXSt4tTSnJIM87X2MqhHEhAr9EFid2aM=
Subject key identifier: 04:A2:99:F5:4F:F3:6B:A8:25:1F:87:49:E4:3B:DF:DE:9C:24:79:BD
Certificate issuer: /CN=709eb6eaaa49dd6b483e04b1434e4dac79ed9d31
Certificate serial: 0281CE35
Authority key identifier: 70:9E:B6:EA:AA:49:DD:6B:48:3E:04:B1:43:4E:4D:AC:79:ED:9D:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cJ626qpJ3WtIPgSxQ05NrHntnTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/4bebe7-3f8e-4949-8980-9f6fa0e1a5a5/1/BKKZ9U_za6glH4dJ5Dvf3pwkeb0.roa
Signing time: Sat 01 Jan 2022 11:01:59 +0000
ROA not before: Sat 01 Jan 2022 11:01:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49825
IP address blocks: 195.211.76.0/22 maxlen: 24
195.211.78.0/23 maxlen: 23
195.211.76.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42061365 (0x281ce35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=709eb6eaaa49dd6b483e04b1434e4dac79ed9d31
Validity
Not Before: Jan 1 11:01:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04a299f54ff36ba8251f8749e43bdfde9c2479bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8d:04:4b:3d:33:41:5d:04:17:61:59:76:e9:
90:63:2a:47:a4:ed:14:78:89:21:7e:1b:fb:97:ce:
bd:51:e0:bb:43:30:33:b2:b9:b5:73:5d:12:96:84:
7a:2b:89:58:50:63:e4:af:d9:4d:47:b1:93:21:43:
82:a0:3b:f1:9e:7a:ca:a9:09:08:c1:1f:19:11:2d:
ef:19:cd:de:93:c1:a0:b5:56:16:97:e3:ad:c9:76:
0b:6e:d6:37:88:83:0d:9e:18:4f:19:48:94:af:22:
3d:d8:40:14:80:e9:16:0b:09:cc:4f:6d:0c:08:55:
e5:8b:d7:03:17:eb:2b:7c:ab:7f:84:63:71:fb:21:
12:23:0e:d8:25:54:29:9a:60:71:3d:07:1c:a2:f8:
50:37:f7:f0:af:b6:13:11:eb:7b:93:6c:36:56:80:
76:08:64:c4:30:36:b4:74:41:6d:ff:48:56:38:48:
2e:2e:94:b1:df:29:03:2d:c5:ae:54:2d:28:16:16:
00:7b:7e:55:7c:b3:19:7b:f3:cc:e0:d6:2a:2b:91:
0c:ad:7e:45:aa:24:e3:f2:50:23:a3:5e:f8:d4:e8:
f6:8d:36:35:2d:11:ef:32:26:26:5b:0b:06:7d:5b:
bf:f6:7a:9a:5c:55:a7:08:12:14:e4:62:1c:c9:7c:
db:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:A2:99:F5:4F:F3:6B:A8:25:1F:87:49:E4:3B:DF:DE:9C:24:79:BD
X509v3 Authority Key Identifier:
keyid:70:9E:B6:EA:AA:49:DD:6B:48:3E:04:B1:43:4E:4D:AC:79:ED:9D:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cJ626qpJ3WtIPgSxQ05NrHntnTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/4bebe7-3f8e-4949-8980-9f6fa0e1a5a5/1/BKKZ9U_za6glH4dJ5Dvf3pwkeb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/4bebe7-3f8e-4949-8980-9f6fa0e1a5a5/1/cJ626qpJ3WtIPgSxQ05NrHntnTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.211.76.0/22
Signature Algorithm: sha256WithRSAEncryption
18:07:62:f9:bf:d0:9b:b3:b0:02:35:c1:58:71:57:5f:6c:6e:
95:11:fc:8f:b9:84:36:79:fc:1c:d6:ee:15:be:ef:0b:ce:d2:
c7:4c:eb:60:73:a8:86:c2:72:a7:33:a1:18:2b:e3:e1:a2:38:
8c:23:75:5d:cd:e1:aa:15:18:c1:23:06:15:54:21:0e:d6:33:
75:12:8d:d2:57:0a:61:2d:cc:a2:fa:63:09:40:23:b0:32:a5:
15:c9:32:aa:f5:ae:4d:b6:b8:97:12:aa:4b:d0:92:c7:50:50:
34:38:8c:62:29:8c:90:45:8c:72:9e:1c:8f:45:77:87:5d:a5:
37:5d:e1:8f:d0:a4:80:29:ad:12:b3:1d:57:91:c8:0f:6f:42:
33:91:f4:5f:2d:35:b4:2d:f3:31:a8:81:4b:ae:a8:2c:96:61:
7e:f6:bc:66:84:c8:17:bf:d5:95:3f:25:41:e0:46:52:f0:52:
bf:12:51:24:7c:61:9e:73:9c:81:15:e9:10:fb:14:46:3f:8b:
a3:68:8e:49:87:76:2b:88:20:d9:d2:f9:d6:c1:3b:3a:a0:17:
c3:04:ff:be:bd:4a:be:2c:8a:c4:c7:f4:7e:87:01:4a:13:46:
a6:00:e7:f0:bb:6a:80:8d:22:22:7a:6b:71:c8:c7:7c:0c:d5:
35:52:f9:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:03 2024 by rpki-client on console-ams.rpki-client.org