Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/512313-afcd-4e9a-bb70-71005f7f02a8/1/bhwqBcLoLmLZ0BlrgCPev0oZgd8.roa
File: bhwqBcLoLmLZ0BlrgCPev0oZgd8.roa (raw, json)
Hash identifier: HS8LMv38ByALfbOolJlz98wruu7h3zTfy+G89HeLlhU=
Subject key identifier: 6E:1C:2A:05:C2:E8:2E:62:D9:D0:19:6B:80:23:DE:BF:4A:19:81:DF
Certificate issuer: /CN=98690af062ea9b3ae5f64cf9a9fea56324c6bd97
Certificate serial: 07DE2E63
Authority key identifier: 98:69:0A:F0:62:EA:9B:3A:E5:F6:4C:F9:A9:FE:A5:63:24:C6:BD:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGkK8GLqmzrl9kz5qf6lYyTGvZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/512313-afcd-4e9a-bb70-71005f7f02a8/1/bhwqBcLoLmLZ0BlrgCPev0oZgd8.roa
Signing time: Sat 01 Jan 2022 06:02:05 +0000
ROA not before: Sat 01 Jan 2022 06:02:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60576
IP address blocks: 185.74.12.0/22 maxlen: 24
2a05:4840::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132001379 (0x7de2e63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98690af062ea9b3ae5f64cf9a9fea56324c6bd97
Validity
Not Before: Jan 1 06:02:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e1c2a05c2e82e62d9d0196b8023debf4a1981df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7d:75:61:5d:6a:1d:57:11:e1:b1:48:3c:3a:
c2:43:62:58:e1:49:33:18:a1:77:3e:7c:d7:d1:27:
b2:22:ed:24:d6:0d:5d:f3:20:9a:3d:32:13:7e:21:
0b:ab:4e:41:b1:d0:45:cf:34:96:5e:d0:44:db:9a:
cb:3b:35:01:25:fd:ca:e2:76:fe:71:ca:5c:00:a7:
88:0e:e5:fa:79:ab:b1:5f:5e:f7:dd:70:3e:ba:93:
45:19:a1:46:ad:e4:08:1d:d9:87:78:d6:b7:90:e5:
9d:72:55:b4:ef:67:ad:df:9b:a2:43:b9:7e:8d:66:
23:e6:d9:7c:1c:ab:5e:15:ae:02:a3:6c:67:4e:01:
a7:41:16:ac:b6:10:19:e0:16:ff:92:bd:e1:e7:df:
8f:58:ab:80:cb:ea:6f:12:9f:63:2d:eb:82:9e:61:
ea:b9:67:66:de:d6:3c:b7:7e:c0:11:78:d8:9e:d0:
8a:f3:90:38:92:6c:96:48:54:03:17:95:de:c2:a2:
f6:b6:69:e7:be:da:6d:2f:20:f6:cc:e9:94:a6:b0:
1c:6c:54:9e:e6:fc:0b:10:24:12:0d:53:66:09:bc:
e4:c7:fb:df:ff:88:f3:ac:5e:03:c5:e9:37:68:d2:
28:e6:ce:78:a6:ea:c0:f7:f6:24:0d:6b:41:8e:f0:
af:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:1C:2A:05:C2:E8:2E:62:D9:D0:19:6B:80:23:DE:BF:4A:19:81:DF
X509v3 Authority Key Identifier:
keyid:98:69:0A:F0:62:EA:9B:3A:E5:F6:4C:F9:A9:FE:A5:63:24:C6:BD:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGkK8GLqmzrl9kz5qf6lYyTGvZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/512313-afcd-4e9a-bb70-71005f7f02a8/1/bhwqBcLoLmLZ0BlrgCPev0oZgd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/512313-afcd-4e9a-bb70-71005f7f02a8/1/mGkK8GLqmzrl9kz5qf6lYyTGvZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.74.12.0/22
IPv6:
2a05:4840::/29
Signature Algorithm: sha256WithRSAEncryption
02:5b:11:30:51:19:34:82:8e:c5:a4:33:0c:4b:8d:68:88:3e:
d8:34:00:05:1d:67:37:a5:4f:cb:73:b0:a4:86:4f:d7:4c:2b:
2a:06:e9:9a:7e:c0:83:9c:2c:90:b7:82:a7:c8:0f:f4:32:cc:
f0:ce:41:62:54:94:2a:ef:1d:9d:ef:41:52:32:c3:6f:10:ee:
1d:50:86:8a:dc:3c:a7:9f:68:b6:dd:fd:d0:74:7c:20:25:9e:
2d:24:12:2d:7f:f7:a8:c3:f7:4c:98:ba:b6:f9:c8:eb:09:12:
ff:bc:79:27:c1:69:97:09:a4:d6:0c:95:af:20:29:3d:af:28:
6c:0a:b1:2b:ff:35:32:d6:d3:5b:0b:ba:e1:78:1e:42:fc:9c:
f4:a9:64:f3:95:f2:a0:3c:02:99:21:93:ee:0e:92:ed:0c:94:
82:39:98:22:d9:40:93:97:ee:2f:e3:5e:10:78:70:ff:3b:94:
39:6e:a0:63:3c:fa:64:f5:7a:88:2a:3f:df:bf:d7:67:1b:fc:
e2:84:01:77:79:97:12:44:8a:10:43:77:7b:f5:e6:1f:cb:ad:
e6:8f:59:b7:29:44:d7:e9:ea:ff:a9:89:93:0e:ce:93:b7:ab:
d5:14:b5:c1:32:1d:64:1e:6a:f3:5d:49:11:67:62:5d:c0:f4:
6c:39:2a:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:37 2024 by rpki-client on console-ams.rpki-client.org