Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/BsGxqgKrLZ2W6tG8dPK5JqgcIhw.roa
File: BsGxqgKrLZ2W6tG8dPK5JqgcIhw.roa (raw, json)
Hash identifier: Ld2mTHollGdtwD9j1AdeQQe34xbgVdlPG/XSqJ6bY9M=
Subject key identifier: 06:C1:B1:AA:02:AB:2D:9D:96:EA:D1:BC:74:F2:B9:26:A8:1C:22:1C
Certificate issuer: /CN=47e94ccb7b601da0ca09469f60f653640fed8c1c
Certificate serial: 01852AA309CB89AFC7B7904E8BCD4588C0B5
Authority key identifier: 47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/BsGxqgKrLZ2W6tG8dPK5JqgcIhw.roa
Signing time: Mon 19 Dec 2022 13:46:46 +0000
ROA not before: Mon 19 Dec 2022 13:46:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 4913
IP address blocks: 84.22.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:a3:09:cb:89:af:c7:b7:90:4e:8b:cd:45:88:c0:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47e94ccb7b601da0ca09469f60f653640fed8c1c
Validity
Not Before: Dec 19 13:46:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06c1b1aa02ab2d9d96ead1bc74f2b926a81c221c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c6:e6:08:67:45:f3:b3:7b:a0:39:e4:a3:2c:
d5:34:ab:f7:2d:e6:43:c8:6a:89:d6:31:0f:a6:7f:
7a:af:b8:ce:13:9e:79:8a:8a:0f:fc:77:79:3e:72:
db:e1:be:c1:7e:7d:d7:11:cf:cd:ed:bc:cc:24:4a:
96:77:bc:e3:c8:52:07:57:99:21:70:1b:94:4e:f4:
97:03:0a:b9:f4:fe:bb:d8:22:69:64:d5:42:f9:cb:
00:3a:0a:22:21:fa:20:a0:3c:dc:d2:dc:bd:0f:84:
20:2f:dd:15:40:c3:e1:99:76:00:54:67:e0:80:7c:
45:b8:87:77:6a:43:1f:c8:54:bf:61:c5:54:71:c0:
6e:36:e1:c9:f3:8b:3b:29:9d:e1:1d:c2:a7:29:46:
d6:63:4a:99:e5:6c:cf:35:4c:f3:83:a1:c6:2d:5d:
54:67:06:6a:ec:38:b7:b5:4f:b5:c3:79:c0:f6:da:
75:05:dd:b0:30:72:d3:33:9d:80:02:9f:e9:23:3c:
ca:4b:fe:ff:0a:82:99:3c:0e:ab:92:60:fd:96:50:
78:68:b4:e3:91:cb:8f:1c:15:8b:3b:4b:a2:3c:83:
d5:d5:6f:77:16:99:c5:2c:b9:77:3f:89:08:c3:ad:
49:7e:3a:7d:26:e2:da:19:8b:91:a4:11:7c:78:1d:
fa:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:C1:B1:AA:02:AB:2D:9D:96:EA:D1:BC:74:F2:B9:26:A8:1C:22:1C
X509v3 Authority Key Identifier:
keyid:47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/BsGxqgKrLZ2W6tG8dPK5JqgcIhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/R-lMy3tgHaDKCUafYPZTZA_tjBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.22.76.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:a8:e7:50:ad:49:d1:45:11:ce:01:3e:3d:00:62:62:89:fb:
bc:df:19:97:ab:ac:e2:57:15:6f:37:2a:da:8d:f5:38:29:ce:
f4:f7:fe:8b:f1:3c:80:19:62:4a:bb:0c:19:ac:0f:42:8e:1f:
e8:94:b4:0b:2a:03:dd:97:11:86:f6:e7:de:79:e8:12:a2:66:
6b:ed:1d:e6:0a:87:20:2c:b4:ad:cb:b6:2b:7d:fa:ea:da:a4:
78:78:55:a8:d7:9a:30:9f:e8:60:e4:77:c2:b0:b9:04:a6:bc:
a2:be:04:d2:fd:ef:ea:1b:de:8f:38:fa:fb:60:ec:26:25:51:
f4:2a:25:ff:86:9b:a9:95:46:e1:76:82:ac:1b:df:12:4a:72:
b8:dd:55:05:f9:71:91:20:49:ab:30:7f:a8:8e:f4:fd:57:f5:
87:94:70:09:1d:c1:7d:7b:00:b4:f9:c4:58:b0:e0:1e:0f:25:
e9:17:5f:50:51:20:14:31:57:6c:ac:9c:ed:70:be:86:2b:0b:
17:fb:44:3c:76:88:dc:35:e6:44:02:ad:66:ef:4f:55:69:16:
d4:20:6f:1f:8d:c0:2c:bc:9a:09:a1:ab:ca:f1:ef:ce:06:aa:
48:63:50:78:37:07:94:10:50:1e:3e:59:5d:ba:70:62:18:a1:
01:ee:d8:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:47 2024 by rpki-client on console-fra.rpki-client.org