Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/2f97fc-5fa3-4083-9515-cd9da2d92e8d/1/bQycC8L_7hu5QYCSUj5Bqdu_zJs.roa
File: bQycC8L_7hu5QYCSUj5Bqdu_zJs.roa (raw, json)
Hash identifier: fgnnywKgESqB+UrUYQvLmkldngTbiMQyWg1rTLBMDq0=
Subject key identifier: 6D:0C:9C:0B:C2:FF:EE:1B:B9:41:80:92:52:3E:41:A9:DB:BF:CC:9B
Certificate issuer: /CN=29a39ebb4e57ff34853c76b0f5877ae8ab3c7cf6
Certificate serial: 1510135C
Authority key identifier: 29:A3:9E:BB:4E:57:FF:34:85:3C:76:B0:F5:87:7A:E8:AB:3C:7C:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KaOeu05X_zSFPHaw9Yd66Ks8fPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/2f97fc-5fa3-4083-9515-cd9da2d92e8d/1/bQycC8L_7hu5QYCSUj5Bqdu_zJs.roa
Signing time: Sat 01 Jan 2022 03:02:17 +0000
ROA not before: Sat 01 Jan 2022 03:02:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51164
IP address blocks: 178.217.128.0/21 maxlen: 21
185.93.48.0/22 maxlen: 22
2a0b:8880::/29 maxlen: 29
2001:67c:224::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 353375068 (0x1510135c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29a39ebb4e57ff34853c76b0f5877ae8ab3c7cf6
Validity
Not Before: Jan 1 03:02:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d0c9c0bc2ffee1bb9418092523e41a9dbbfcc9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c6:4b:d5:43:72:fe:d5:46:b8:6d:ae:c3:b3:
79:8e:6f:16:ee:e8:b5:0b:d3:8e:d5:02:19:f4:5d:
0a:9d:4e:6b:50:d7:12:80:7c:75:64:92:09:73:22:
7c:d9:d8:1f:ae:4d:0b:cd:b0:b8:98:c0:15:45:13:
b6:c8:cc:cc:4e:ca:e5:2a:33:c7:3d:1c:3f:da:1e:
0c:2c:fb:ad:f4:88:4f:18:f6:cb:0e:aa:a7:7d:9c:
00:b4:f0:21:75:4b:24:54:c6:45:5e:58:69:6e:8e:
81:c0:9e:dd:ec:37:63:9d:3e:3b:59:61:9b:16:83:
3e:f6:34:bc:8f:3b:94:e4:86:33:dc:45:c8:40:42:
d9:f7:5c:76:96:3e:39:3f:80:15:9e:7c:cd:f0:9c:
5e:b0:a0:bd:83:05:81:b9:f0:be:94:95:55:12:c0:
d9:e0:07:58:a3:44:44:66:4f:d9:a8:7c:a8:79:18:
70:dc:1f:59:ee:98:ca:c7:e5:30:a1:3b:2d:35:07:
48:cd:b5:e9:00:eb:ff:ad:75:b2:f1:2f:95:66:60:
cf:b9:2a:07:bf:82:b2:f8:85:98:ed:34:54:d9:e7:
cd:05:be:59:dc:b6:a6:d6:ab:4c:bf:b4:8e:42:23:
c7:3b:7e:e0:43:6f:ca:95:4c:da:5c:41:08:bb:4b:
67:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:0C:9C:0B:C2:FF:EE:1B:B9:41:80:92:52:3E:41:A9:DB:BF:CC:9B
X509v3 Authority Key Identifier:
keyid:29:A3:9E:BB:4E:57:FF:34:85:3C:76:B0:F5:87:7A:E8:AB:3C:7C:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KaOeu05X_zSFPHaw9Yd66Ks8fPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2f97fc-5fa3-4083-9515-cd9da2d92e8d/1/bQycC8L_7hu5QYCSUj5Bqdu_zJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2f97fc-5fa3-4083-9515-cd9da2d92e8d/1/KaOeu05X_zSFPHaw9Yd66Ks8fPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.217.128.0/21
185.93.48.0/22
IPv6:
2001:67c:224::/48
2a0b:8880::/29
Signature Algorithm: sha256WithRSAEncryption
6e:98:7b:71:c0:0b:b5:4d:d8:10:dc:2b:30:64:52:ca:23:e6:
4f:3c:9d:42:84:f5:fc:c5:04:05:b1:0a:66:03:58:19:43:98:
d6:89:64:4a:83:cb:f4:de:3d:88:bd:89:e1:a2:bd:67:32:bb:
90:18:af:d4:ac:b4:23:09:9d:d8:0e:5c:ec:87:c8:9a:62:8c:
c4:f4:22:96:90:91:57:45:48:bc:ba:b4:2a:d5:a8:8c:ef:f8:
d3:43:cb:01:ea:3e:1f:ad:32:83:d5:be:fb:de:c9:80:c7:4a:
a8:cf:3d:ab:37:4a:bd:41:e0:1b:ba:fb:d0:87:5b:7b:a4:47:
8a:d0:08:c1:6b:21:35:6c:66:7b:9d:67:d8:20:b4:d3:8d:31:
cb:e7:e6:e0:d0:0c:43:be:09:6f:c1:c8:91:81:40:af:97:81:
98:52:51:40:20:e7:56:8c:48:2f:5b:22:22:8f:6e:57:ad:5f:
23:c7:3c:78:d3:8c:0c:c9:98:46:28:d2:f8:f1:71:a5:52:a0:
0f:cd:b0:95:a6:39:f2:4f:dc:6c:1f:f5:18:8e:cb:6a:bb:41:
4d:6c:5d:f6:29:de:b9:76:59:40:27:a3:02:bf:79:ea:2a:60:
a0:0d:b9:4c:1d:67:cf:41:e6:75:d3:5b:28:09:d6:67:04:cb:
d4:73:97:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:43 2024 by rpki-client on console-fra.rpki-client.org