Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/btZBFgrZyJQObvBC9i019iM9OBo.roa
File: btZBFgrZyJQObvBC9i019iM9OBo.roa (raw, json)
Hash identifier: 9Uad7VeL9lAe8YTG/CHrtpxV9A4QYpqgF0w+fCbNsms=
Subject key identifier: 6E:D6:41:16:0A:D9:C8:94:0E:6E:F0:42:F6:2D:35:F6:23:3D:38:1A
Certificate issuer: /CN=bd19d4535c7e62b921e859e6557b821f278e716a
Certificate serial: 0183F4FD1CE4E1617043DDDAB53D9A4D5929
Authority key identifier: BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/btZBFgrZyJQObvBC9i019iM9OBo.roa
Signing time: Thu 20 Oct 2022 10:42:52 +0000
ROA not before: Thu 20 Oct 2022 10:42:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47823
IP address blocks: 185.23.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f4:fd:1c:e4:e1:61:70:43:dd:da:b5:3d:9a:4d:59:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd19d4535c7e62b921e859e6557b821f278e716a
Validity
Not Before: Oct 20 10:42:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ed641160ad9c8940e6ef042f62d35f6233d381a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:a2:e4:71:66:d9:3e:2e:fb:ce:bc:6e:7a:49:
64:dc:3e:43:03:19:21:34:05:a1:0d:a0:5b:8e:a4:
34:85:43:77:2a:70:7a:d9:47:6f:88:f0:e6:67:a6:
54:fe:30:e9:97:5e:32:d4:21:cf:26:74:da:66:11:
da:58:ff:f9:bd:3a:d6:9d:87:9b:f0:27:41:f9:1c:
75:97:d3:f6:1a:e5:3a:d3:3b:57:ae:ed:c4:7d:73:
73:fa:54:e5:ee:8b:2d:0a:3c:10:77:df:24:fa:68:
b6:eb:93:ab:87:c9:ec:3a:1b:ca:57:61:28:fa:a2:
17:77:b9:ef:c7:17:5e:af:b4:43:d8:ce:ef:5a:19:
7c:c6:d9:bb:0e:45:dd:d8:a7:4d:22:74:e4:92:72:
57:fc:bf:b3:c7:81:d4:0c:79:3e:36:13:e2:a3:83:
91:57:a2:45:b5:e7:51:f9:ca:fa:89:a2:1c:0f:2c:
93:9a:a6:93:b6:d0:02:1f:69:0b:c8:ff:70:95:e8:
a6:24:c9:29:14:4a:58:f5:5d:00:36:dd:ce:38:a6:
d4:c2:f4:39:94:98:9f:97:89:15:81:6f:64:16:a2:
18:cb:8b:3c:83:18:3c:cb:b2:5a:3a:78:39:94:65:
45:48:8c:c5:e2:cd:5e:d8:fe:c2:61:92:b0:88:dc:
0f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:D6:41:16:0A:D9:C8:94:0E:6E:F0:42:F6:2D:35:F6:23:3D:38:1A
X509v3 Authority Key Identifier:
keyid:BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/btZBFgrZyJQObvBC9i019iM9OBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.6.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:4a:e5:26:c3:e9:29:20:13:58:67:77:7e:88:d8:65:d7:9f:
db:22:86:23:58:00:7f:7c:30:0c:65:ac:40:03:e0:02:24:df:
d5:60:07:c3:f3:11:e3:ec:3b:01:32:fe:02:9d:f4:e7:85:44:
c6:96:87:34:03:fc:2b:6f:87:7f:74:d3:4f:1d:b4:02:19:d6:
61:2e:ea:b6:4d:5a:64:d0:9e:17:b6:1b:92:d0:87:8e:fc:45:
e3:23:be:fa:93:e4:07:31:a3:c1:3a:c3:10:8e:53:4e:91:68:
a2:83:8c:83:bb:4e:f4:11:ef:41:3b:ac:0d:95:96:29:fa:2f:
b4:f6:38:f8:f4:36:10:02:4f:a5:14:0d:19:ae:35:a1:39:2e:
68:bf:6b:67:06:b1:92:ff:43:b6:f9:74:b2:b6:d0:1e:b3:76:
3b:eb:6e:2b:38:ea:be:70:1e:52:a0:c8:02:82:f0:41:37:23:
47:88:fe:14:3a:e0:06:6e:40:8c:e1:e9:4c:a9:b9:42:91:0e:
f2:83:ef:e2:fd:b3:ea:cc:5e:c1:22:56:2e:a0:36:2c:14:5e:
ec:f9:32:8a:1c:2f:b7:a5:9b:3d:68:ef:c2:62:a7:4b:0a:d1:
85:05:3f:32:43:f0:d9:b2:18:8d:39:76:2a:a1:6a:81:0b:cf:
cf:08:2d:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:18 2024 by rpki-client on console-ams.rpki-client.org