Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/415945-5dce-40d7-b800-9072411e2498/1/bhsA7YjzDW9HWEnc9Cg6XdCfx9o.roa
File: bhsA7YjzDW9HWEnc9Cg6XdCfx9o.roa (raw, json)
Hash identifier: nK42SpQvslR4dG9jBy9+P9Uj+Q84z573BIY9bGJa0NI=
Subject key identifier: 6E:1B:00:ED:88:F3:0D:6F:47:58:49:DC:F4:28:3A:5D:D0:9F:C7:DA
Certificate issuer: /CN=f60250dc6621f69764fa7b5f399cba82c3445072
Certificate serial: 10B9CAED
Authority key identifier: F6:02:50:DC:66:21:F6:97:64:FA:7B:5F:39:9C:BA:82:C3:44:50:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9gJQ3GYh9pdk-ntfOZy6gsNEUHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/415945-5dce-40d7-b800-9072411e2498/1/bhsA7YjzDW9HWEnc9Cg6XdCfx9o.roa
Signing time: Tue 08 Mar 2022 16:30:06 +0000
ROA not before: Tue 08 Mar 2022 16:30:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24867
IP address blocks: 88.211.192.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 280611565 (0x10b9caed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f60250dc6621f69764fa7b5f399cba82c3445072
Validity
Not Before: Mar 8 16:30:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e1b00ed88f30d6f475849dcf4283a5dd09fc7da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:15:a7:fb:0d:05:8d:42:a2:a4:3f:7f:82:8b:
ec:89:56:18:85:2c:5b:f1:2e:6e:2d:97:fd:39:91:
5c:c1:bf:51:e6:17:49:89:f7:fb:5e:08:cc:af:5c:
f5:48:e1:55:f4:b1:cb:a9:cd:dc:3f:ca:4d:6e:97:
ab:7a:a0:24:1d:e9:0c:2e:e9:24:29:14:aa:40:87:
9e:47:52:73:93:4b:cb:40:57:01:41:af:a5:06:c7:
a4:46:48:b1:84:d9:7d:95:db:47:c7:3d:30:49:fc:
51:27:e5:0b:fa:cb:3e:7e:4f:1a:17:67:82:ae:ba:
58:52:c1:d6:e3:42:55:bf:bf:39:63:1e:ec:1b:28:
59:1e:65:07:a0:43:97:89:50:0a:5c:66:2e:51:f7:
0d:0d:fb:56:41:43:4a:84:04:82:ef:ff:b8:d1:56:
7d:8a:38:ea:5c:e3:68:5d:38:4d:44:72:60:bf:ba:
49:e3:55:3c:84:17:ba:a8:5b:c7:fe:be:dd:9b:b6:
fc:64:63:2d:44:af:79:34:b3:74:25:8f:f2:2c:77:
4c:e6:68:68:fa:98:c8:66:b8:8e:8e:9e:a5:5d:44:
f3:e4:71:e7:5e:92:8b:8c:99:ed:11:ea:cb:d4:e9:
ce:dd:db:27:0d:1e:f7:fd:4d:e7:1c:47:21:52:85:
b1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:1B:00:ED:88:F3:0D:6F:47:58:49:DC:F4:28:3A:5D:D0:9F:C7:DA
X509v3 Authority Key Identifier:
keyid:F6:02:50:DC:66:21:F6:97:64:FA:7B:5F:39:9C:BA:82:C3:44:50:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9gJQ3GYh9pdk-ntfOZy6gsNEUHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/415945-5dce-40d7-b800-9072411e2498/1/bhsA7YjzDW9HWEnc9Cg6XdCfx9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/415945-5dce-40d7-b800-9072411e2498/1/9gJQ3GYh9pdk-ntfOZy6gsNEUHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.211.192.0/18
Signature Algorithm: sha256WithRSAEncryption
8d:f1:5b:c3:37:c6:39:a3:f4:13:1e:58:a8:17:bc:d5:78:ff:
e4:03:f1:0c:5d:a3:dc:6b:3a:c7:72:22:05:f7:19:bd:d1:25:
a4:f7:36:5e:d0:80:02:e0:25:48:e2:27:6e:21:01:ce:82:09:
3b:df:38:6f:81:cc:8c:12:95:ef:ce:d3:41:96:44:d2:8d:c5:
28:17:3e:b2:bf:d1:fd:39:c8:95:5f:b1:73:2b:c1:61:de:f9:
d5:d8:81:56:83:af:81:7d:f4:f1:13:ac:a0:60:6e:af:40:34:
69:bf:64:9f:df:b9:10:83:1f:d9:d1:65:be:78:ac:35:08:6e:
cf:c1:80:ed:e3:d8:2a:e5:51:59:e2:f9:63:94:08:3d:ff:c2:
cc:b2:00:a5:02:f6:6a:ba:1d:6b:74:df:99:13:e7:bd:a9:b1:
45:84:e6:77:15:09:5f:ad:ac:d5:01:bc:5e:76:b3:87:d9:b6:
69:a8:bd:8e:31:83:63:78:6b:1f:09:b4:4c:2a:4d:58:3c:1e:
3b:f7:52:5d:45:17:59:94:0f:4d:2a:f7:a8:8f:20:7d:48:72:
2a:a0:d7:1c:c2:df:27:15:49:58:05:17:25:92:83:94:0e:bf:
b7:0c:b4:d8:a3:e3:7a:dd:15:b7:9b:64:27:a1:a8:2e:e2:41:
a0:a3:6b:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:58 2023 by rpki-client on console-fra.rpki-client.org