Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/1954a6-da23-4952-9c09-024868ffd315/1/BmHtQAEWrkrLRNI7ktN1j4C4Byc.roa
File: BmHtQAEWrkrLRNI7ktN1j4C4Byc.roa (raw, json)
Hash identifier: r99Rv/SqtO80Us70N2hh3xSZSTgSFV0pxwa4Yp6A/5g=
Subject key identifier: 06:61:ED:40:01:16:AE:4A:CB:44:D2:3B:92:D3:75:8F:80:B8:07:27
Certificate issuer: /CN=baaba2a56a0c30fdaf5934af8765c1ffd1357a48
Certificate serial: 01844262EAF46251CEE605C1D91F187B0D5F
Authority key identifier: BA:AB:A2:A5:6A:0C:30:FD:AF:59:34:AF:87:65:C1:FF:D1:35:7A:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uquipWoMMP2vWTSvh2XB_9E1ekg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/1954a6-da23-4952-9c09-024868ffd315/1/BmHtQAEWrkrLRNI7ktN1j4C4Byc.roa
Signing time: Fri 04 Nov 2022 11:24:49 +0000
ROA not before: Fri 04 Nov 2022 11:24:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209146
IP address blocks: 5.180.56.0/24 maxlen: 24
2a09:ff40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:42:62:ea:f4:62:51:ce:e6:05:c1:d9:1f:18:7b:0d:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaba2a56a0c30fdaf5934af8765c1ffd1357a48
Validity
Not Before: Nov 4 11:24:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0661ed400116ae4acb44d23b92d3758f80b80727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:16:11:01:f3:e8:44:75:c1:88:08:0f:dd:bc:
be:08:e1:74:a8:45:da:e9:95:fd:3d:b3:9b:f6:bd:
8f:0e:aa:08:41:4c:ca:55:b1:8b:e8:2c:96:14:4d:
93:47:1b:3b:b7:3f:bd:3c:1b:fa:94:c3:fb:2c:8b:
0c:80:76:20:81:4e:6c:68:f6:81:d3:48:c0:48:3a:
c9:0e:35:69:ab:5a:ec:36:b7:68:cb:e4:9a:de:be:
40:df:0b:5d:a9:ae:84:33:91:84:8c:fe:e0:66:bd:
93:64:8f:d6:07:b9:3f:6e:d9:ac:b8:d5:d5:bc:35:
28:5e:70:86:c4:a3:68:92:70:9e:0e:78:a6:5b:d8:
e2:9e:9d:98:ab:6c:a5:eb:56:65:80:f7:8e:d2:53:
f6:75:c8:47:87:da:5d:57:73:89:9d:bd:fb:70:d7:
d1:74:cb:12:1b:c6:54:25:a6:ba:c8:b4:a1:e6:be:
e6:2c:75:ed:e6:88:fc:85:ce:27:ed:9c:ee:4d:23:
f2:72:1c:90:d3:d2:f3:82:2a:fb:c6:ac:a4:b2:6f:
42:c8:f3:70:4b:19:2d:77:ba:01:5f:f0:0e:b2:20:
6b:c7:a7:4e:1c:34:3e:ef:82:42:22:76:f5:1f:82:
0e:ca:12:7d:75:5f:a2:f5:df:f2:f0:9c:d4:e2:24:
07:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:61:ED:40:01:16:AE:4A:CB:44:D2:3B:92:D3:75:8F:80:B8:07:27
X509v3 Authority Key Identifier:
keyid:BA:AB:A2:A5:6A:0C:30:FD:AF:59:34:AF:87:65:C1:FF:D1:35:7A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uquipWoMMP2vWTSvh2XB_9E1ekg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/1954a6-da23-4952-9c09-024868ffd315/1/BmHtQAEWrkrLRNI7ktN1j4C4Byc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/1954a6-da23-4952-9c09-024868ffd315/1/uquipWoMMP2vWTSvh2XB_9E1ekg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.56.0/24
IPv6:
2a09:ff40::/32
Signature Algorithm: sha256WithRSAEncryption
8f:3c:64:b2:12:55:0d:92:59:84:7e:1d:73:e1:12:fe:14:6d:
91:ee:67:92:98:92:ac:27:0d:e6:ff:61:b5:7a:c6:e2:00:35:
f3:95:58:e2:69:8d:81:0a:69:f7:24:5e:65:37:19:ef:89:6c:
92:a7:40:0c:5b:a1:f6:d0:1d:c7:be:4a:ca:e8:82:ec:56:fe:
89:ad:0e:2d:4f:93:d8:46:d1:22:61:08:de:fe:9f:97:61:cd:
60:b6:65:b3:ff:2a:ec:5d:c8:cb:d5:ad:90:8b:2f:fa:91:e0:
4a:06:9d:cd:c4:cb:d2:8b:5a:1a:e7:e3:81:59:c8:ec:38:3c:
b7:c9:40:d3:08:f6:a6:1f:2d:60:56:ff:ba:87:5e:95:91:ad:
ae:e2:76:12:46:7c:d1:bb:36:2d:5f:30:c0:1f:86:de:3f:4b:
b1:27:c9:e6:a2:7e:19:75:ee:7e:03:a2:39:b8:be:a5:6e:ba:
ef:5f:66:55:a9:c3:e4:13:ce:8f:32:f7:99:34:ee:9b:42:53:
81:dd:f8:47:b5:12:74:20:9b:02:37:1e:50:47:1a:31:e5:25:
3a:60:45:a9:6c:dd:0a:fd:09:0b:aa:dc:c9:60:54:e7:28:44:
61:b0:96:67:69:ca:b1:7c:f4:c7:ba:80:e7:4c:42:d1:99:d3:
c1:40:63:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:35 2024 by rpki-client on console-fra.rpki-client.org