Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/BjmgNuRs2zL0urVCvwZCmpKQA6k.roa
File: BjmgNuRs2zL0urVCvwZCmpKQA6k.roa (raw, json)
Hash identifier: EOp63u0rY7OweQexbDn1yUMN0qO+sDVT8qQXXBKYTGw=
Subject key identifier: 06:39:A0:36:E4:6C:DB:32:F4:BA:B5:42:BF:06:42:9A:92:90:03:A9
Certificate issuer: /CN=6cf96a7c01d62e37acecf0786f64978905121647
Certificate serial: 018418DCFB3640A380EC3C2C2A353FF98777
Authority key identifier: 6C:F9:6A:7C:01:D6:2E:37:AC:EC:F0:78:6F:64:97:89:05:12:16:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bPlqfAHWLjes7PB4b2SXiQUSFkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/BjmgNuRs2zL0urVCvwZCmpKQA6k.roa
Signing time: Thu 27 Oct 2022 09:54:06 +0000
ROA not before: Thu 27 Oct 2022 09:54:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203946
IP address blocks: 185.117.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:18:dc:fb:36:40:a3:80:ec:3c:2c:2a:35:3f:f9:87:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cf96a7c01d62e37acecf0786f64978905121647
Validity
Not Before: Oct 27 09:54:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0639a036e46cdb32f4bab542bf06429a929003a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d1:32:24:0e:a5:05:c8:02:d1:17:20:02:fb:
f0:57:9a:38:a9:94:3b:3f:dd:25:d6:08:e1:62:a3:
7d:12:da:d4:33:60:16:7a:4f:a5:54:1f:1b:8f:43:
51:e5:2b:54:e2:80:ca:a0:cf:3b:c3:91:35:73:68:
4f:0e:ce:49:69:fd:1a:e7:e9:4e:cf:32:da:11:b1:
5b:51:3c:e2:a9:a7:4e:35:9a:51:6e:79:d8:d8:49:
96:9c:5b:31:ca:bd:86:9a:cd:a2:37:36:e7:0f:48:
a1:e6:70:17:29:b8:61:c2:a5:33:05:f2:ac:26:54:
16:2f:33:43:ba:df:eb:17:24:8d:7f:91:0a:35:30:
3e:4a:2a:13:fd:9a:b1:24:fe:eb:22:85:8f:4f:bc:
c7:6b:77:d1:03:e8:b3:98:1a:e2:39:2e:34:b7:e1:
77:b9:33:bd:7c:64:fc:42:e1:e8:20:77:27:a8:40:
05:4f:fb:87:4a:e8:34:97:56:55:a8:c9:aa:4c:fe:
50:45:4b:14:8a:8a:33:43:d1:cc:cb:4e:af:94:1c:
b7:43:95:86:14:79:bf:9e:5e:2d:41:d2:b2:91:eb:
25:8c:a0:7e:47:6d:9f:d6:6b:2f:d9:d1:9a:50:d8:
91:74:ac:60:6e:14:98:2a:20:c8:74:47:b0:1e:9e:
e8:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:39:A0:36:E4:6C:DB:32:F4:BA:B5:42:BF:06:42:9A:92:90:03:A9
X509v3 Authority Key Identifier:
keyid:6C:F9:6A:7C:01:D6:2E:37:AC:EC:F0:78:6F:64:97:89:05:12:16:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bPlqfAHWLjes7PB4b2SXiQUSFkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/BjmgNuRs2zL0urVCvwZCmpKQA6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/bPlqfAHWLjes7PB4b2SXiQUSFkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.133.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:28:22:29:74:e1:b3:0b:08:43:40:66:32:bc:0f:ae:ba:f4:
1f:2b:a8:bb:c1:26:67:7d:92:2f:f1:97:5b:83:4b:0d:71:dd:
79:0d:2b:b7:9c:a6:bb:a1:e0:fa:d5:50:e8:60:2a:2e:3d:af:
5e:14:25:e2:34:af:ed:5f:f0:11:ca:03:b5:94:37:f6:63:4f:
87:a5:82:a6:c5:51:01:8e:13:c3:6e:98:9d:eb:5b:c7:bc:ae:
c8:0c:ab:a4:f8:76:23:68:fd:09:ed:fb:58:8f:c5:8a:fd:3a:
e9:18:be:ba:e9:ae:cc:21:e6:9f:df:b7:0d:34:ab:81:59:6b:
73:8f:11:e7:81:83:92:f1:ba:00:c5:32:36:63:f9:aa:72:b0:
f6:b7:4f:9d:fd:99:52:d8:8d:16:4d:fe:d3:bf:9a:07:6f:36:
6a:70:ae:49:ea:b1:de:e6:4c:34:92:48:7b:c8:2b:ad:88:98:
5d:29:f6:1a:0d:d4:93:20:4c:b5:05:03:89:43:df:e5:ba:09:
56:74:ce:08:95:28:62:88:ce:be:1b:f8:df:1f:e6:26:1f:00:
1b:72:d4:39:76:95:b0:41:54:b0:bd:30:ba:d2:49:b6:f1:d6:
24:c7:24:a5:2c:31:7c:e8:ce:c7:5e:17:cc:83:bd:6a:28:0d:
66:a5:fa:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:37 2024 by rpki-client on console-fra.rpki-client.org