Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/BI-bZa5-9jHQ5It0YA19uGQ_gu4.roa
File: BI-bZa5-9jHQ5It0YA19uGQ_gu4.roa (raw, json)
Hash identifier: e418jHOsQpq92zE43g1YhSO8V/1CAKg3fpMHsqhJffw=
Subject key identifier: 04:8F:9B:65:AE:7E:F6:31:D0:E4:8B:74:60:0D:7D:B8:64:3F:82:EE
Certificate issuer: /CN=808e238e30dcb759759fb8a394d9e211a28b9d87
Certificate serial: 059D7CAA
Authority key identifier: 80:8E:23:8E:30:DC:B7:59:75:9F:B8:A3:94:D9:E2:11:A2:8B:9D:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gI4jjjDct1l1n7ijlNniEaKLnYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/BI-bZa5-9jHQ5It0YA19uGQ_gu4.roa
Signing time: Sat 01 Jan 2022 08:02:05 +0000
ROA not before: Sat 01 Jan 2022 08:02:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6789
IP address blocks: 91.247.96.0/19 maxlen: 19
185.99.168.0/22 maxlen: 22
185.92.136.0/22 maxlen: 22
185.92.144.0/22 maxlen: 22
80.245.112.0/24 maxlen: 24
85.91.192.0/19 maxlen: 19
185.186.232.0/22 maxlen: 22
80.245.112.0/20 maxlen: 20
109.200.128.0/19 maxlen: 19
185.100.103.0/24 maxlen: 24
2a00:1d80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94207146 (0x59d7caa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=808e238e30dcb759759fb8a394d9e211a28b9d87
Validity
Not Before: Jan 1 08:02:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=048f9b65ae7ef631d0e48b74600d7db8643f82ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:28:8a:1b:76:fe:73:ae:ac:7f:62:d4:92:77:
65:ae:68:1f:8d:7e:a7:ad:d4:8f:6e:16:bd:76:4b:
9b:2c:20:fe:3a:ac:a3:b6:71:39:0a:5c:57:c3:fe:
20:86:04:28:9e:77:ae:eb:ba:34:f5:b6:c4:0a:45:
1f:d6:4f:01:6c:10:8c:1b:d8:1f:b1:9a:63:5c:f6:
9a:8a:55:20:c2:82:44:70:bb:92:c1:4c:3d:19:c2:
a6:68:32:71:0d:32:ae:63:d5:d9:35:16:2c:ae:74:
aa:40:c1:e9:86:72:79:a3:fe:6e:96:e5:14:f1:2e:
ec:47:46:c2:1e:1c:8b:3c:67:e4:f4:ca:22:68:49:
3d:80:27:45:48:94:52:39:8a:a5:43:d2:3c:c1:4b:
6c:49:9e:f9:c8:0a:2c:4c:3a:a8:e2:11:ae:76:fb:
94:08:cc:23:8b:86:29:b0:2e:94:4b:4d:8b:3d:14:
0f:f8:2c:7c:c8:91:a3:01:51:03:00:e4:1e:f1:12:
ec:14:4b:03:03:bf:60:f7:7c:c6:e3:df:7f:5a:1f:
f6:66:11:86:f6:7a:3d:8a:78:cb:84:80:14:34:e1:
48:16:85:16:3d:6d:86:ba:9c:b1:82:32:ab:2e:13:
45:42:5c:9b:16:39:e3:c1:d0:66:2b:76:00:e0:c1:
ec:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:8F:9B:65:AE:7E:F6:31:D0:E4:8B:74:60:0D:7D:B8:64:3F:82:EE
X509v3 Authority Key Identifier:
keyid:80:8E:23:8E:30:DC:B7:59:75:9F:B8:A3:94:D9:E2:11:A2:8B:9D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gI4jjjDct1l1n7ijlNniEaKLnYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/BI-bZa5-9jHQ5It0YA19uGQ_gu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/gI4jjjDct1l1n7ijlNniEaKLnYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.245.112.0/20
85.91.192.0/19
91.247.96.0/19
109.200.128.0/19
185.92.136.0/22
185.92.144.0/22
185.99.168.0/22
185.100.103.0/24
185.186.232.0/22
IPv6:
2a00:1d80::/32
Signature Algorithm: sha256WithRSAEncryption
45:aa:c0:a1:33:85:2f:75:3c:f0:ff:f6:e4:08:e7:2f:aa:e3:
52:14:9c:92:d6:07:03:de:29:a7:19:97:ae:4d:7a:f4:0c:f0:
8a:41:bb:a9:74:8b:93:e5:e4:46:05:12:81:5f:6a:58:53:27:
fa:8f:c9:60:ed:dd:98:6c:da:8c:d7:d1:48:6e:78:08:b8:fc:
f4:79:2f:a5:89:c5:58:98:51:3b:53:68:be:a1:fe:61:a2:81:
ae:85:cf:22:0b:4e:f4:29:35:0a:1e:62:0f:92:79:e5:23:72:
f2:10:33:55:9f:63:d1:95:df:f8:d0:09:11:cc:a7:ba:ad:fb:
92:e5:ca:09:b8:b8:9d:86:42:da:1e:8e:d2:f4:3e:17:d2:e0:
70:a7:60:4c:b6:52:e7:92:41:47:be:34:fb:ed:dd:af:4c:b1:
50:d6:7c:75:8d:28:a8:84:23:74:4e:53:07:7a:9f:f8:9a:49:
d1:4e:d5:ef:1f:84:34:f4:92:e2:dd:ea:23:5e:e3:62:8d:7b:
c6:19:56:14:d4:18:b6:43:75:93:86:d7:9e:9b:6f:f5:1f:e9:
c8:3a:54:94:78:5c:dd:c4:a9:f9:7c:30:a9:4a:47:a9:75:5d:
66:c2:f7:e1:3b:1b:b7:8a:0f:24:65:8e:2d:6b:50:a8:58:d9:
17:b2:5d:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:02 2024 by rpki-client on console-fra.rpki-client.org