Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/BVK4K27_s7rFJyMUr7tIjfAQC6M.roa
File: BVK4K27_s7rFJyMUr7tIjfAQC6M.roa (raw, json)
Hash identifier: JN/HotlHf5elB9ygfJJQE5+Ed29V++sHG4D1rRZH7AI=
Subject key identifier: 05:52:B8:2B:6E:FF:B3:BA:C5:27:23:14:AF:BB:48:8D:F0:10:0B:A3
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 4351C48E
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/BVK4K27_s7rFJyMUr7tIjfAQC6M.roa
Signing time: Sat 01 Jan 2022 08:00:10 +0000
ROA not before: Sat 01 Jan 2022 08:00:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62588
IP address blocks: 2a03:f87:aabb::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1129432206 (0x4351c48e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Jan 1 08:00:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0552b82b6effb3bac5272314afbb488df0100ba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3b:d3:41:4d:29:0c:29:fc:20:6e:2e:82:71:
81:d0:ee:f1:6c:d1:25:af:93:28:08:59:5c:be:33:
5d:99:f2:7a:97:a9:04:6f:ba:b9:ca:d3:f9:16:28:
5b:1e:ab:4c:0a:6e:e2:39:c1:b1:d2:dd:83:43:af:
f7:fd:da:9f:fd:dc:33:af:93:2f:91:71:f8:d7:0c:
68:a6:c6:5f:cb:e3:17:08:66:8e:ac:f4:b9:04:dd:
66:15:da:ca:28:d4:22:ee:a0:bb:cf:e8:e6:5f:f3:
8e:56:3d:f2:30:f1:51:4a:33:2c:33:d1:c9:0b:f1:
63:1e:c0:fc:11:da:37:4e:bd:36:c6:3a:ab:78:c3:
af:4b:54:a0:c2:6a:9a:f6:1d:aa:2d:da:c8:ab:5e:
c9:09:0d:7b:90:af:7a:64:20:96:4d:41:4d:95:44:
75:99:c8:6a:6e:62:cc:c5:4b:f8:80:af:05:9f:88:
11:e5:c8:4d:c4:a2:f9:47:2b:ad:ef:17:39:b9:cf:
94:15:46:b5:b3:fd:b3:41:11:a2:dd:03:33:ce:d4:
77:76:e0:f8:be:9f:98:8f:a1:1a:f8:7d:eb:96:9a:
4b:68:4c:19:a5:e1:5f:4f:a4:a3:a7:64:d4:7a:a9:
36:6d:4e:10:f6:5d:98:49:22:16:e6:32:56:43:41:
d8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:52:B8:2B:6E:FF:B3:BA:C5:27:23:14:AF:BB:48:8D:F0:10:0B:A3
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/BVK4K27_s7rFJyMUr7tIjfAQC6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:f87:aabb::/48
Signature Algorithm: sha256WithRSAEncryption
bb:1b:36:49:b1:ec:93:ec:23:a8:1b:37:9a:f6:6a:c9:2d:19:
86:7c:c1:05:28:c4:cf:78:a5:ce:7f:f6:e9:6a:34:56:8f:24:
ea:19:a3:65:d0:99:e0:85:95:7b:28:06:0f:7f:7a:ab:97:10:
08:3f:4d:71:c7:5c:bd:4a:e1:ae:86:90:9a:36:fc:52:d8:18:
c7:2a:db:30:5c:e9:39:6e:d3:41:9a:f0:16:df:af:65:1b:7d:
f7:86:c2:68:1b:c7:c9:91:07:56:df:cc:b0:a6:bd:27:26:2b:
ba:08:60:bc:ac:bf:8f:54:5c:3f:5e:96:a4:e0:2a:4a:04:59:
84:8c:40:dc:00:48:f6:51:06:cf:c8:f7:dd:33:aa:e5:b5:cb:
df:cf:40:2f:e5:b3:60:58:53:7a:f0:7b:e4:70:cc:47:16:6d:
e7:5c:7f:28:ad:a8:ac:93:20:36:44:d9:0f:24:ca:09:3c:07:
9d:3a:14:0e:d5:a8:8d:b6:47:8b:1f:b6:c2:d4:5f:9a:8e:0b:
57:3b:3b:89:16:95:9a:53:01:21:36:94:3c:e2:81:fe:f3:9f:
2c:22:c1:9d:82:a0:c2:fa:8e:df:57:a2:c7:a1:b0:96:f1:e1:
7a:df:2e:20:7f:64:34:0c:42:67:61:e5:ce:7e:be:87:00:27:
ae:d0:dd:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:51 2024 by rpki-client on console-ams.rpki-client.org