Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b3f2e4-5177-48ae-955e-5d816a82c283/1/BQH8fJ3BgSfOXhoQ34CD9E6ZEnE.roa
File: BQH8fJ3BgSfOXhoQ34CD9E6ZEnE.roa (raw, json)
Hash identifier: 2jHJSzy8fV98zoAJ57Nbxd1VKU8fLzxPMsINT9Opmm4=
Subject key identifier: 05:01:FC:7C:9D:C1:81:27:CE:5E:1A:10:DF:80:83:F4:4E:99:12:71
Certificate issuer: /CN=344f5eb0efc517d6caaeb7c74a847f965c0e14d9
Certificate serial: 03E08A93
Authority key identifier: 34:4F:5E:B0:EF:C5:17:D6:CA:AE:B7:C7:4A:84:7F:96:5C:0E:14:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NE9esO_FF9bKrrfHSoR_llwOFNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b3f2e4-5177-48ae-955e-5d816a82c283/1/BQH8fJ3BgSfOXhoQ34CD9E6ZEnE.roa
Signing time: Sat 01 Jan 2022 11:58:39 +0000
ROA not before: Sat 01 Jan 2022 11:58:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209279
IP address blocks: 185.252.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65047187 (0x3e08a93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=344f5eb0efc517d6caaeb7c74a847f965c0e14d9
Validity
Not Before: Jan 1 11:58:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0501fc7c9dc18127ce5e1a10df8083f44e991271
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e5:78:54:45:2f:42:87:d4:34:16:b9:76:3e:
52:6f:19:de:42:cd:e9:35:63:50:39:3b:3c:1f:be:
a7:fc:79:6a:2b:75:28:5d:ce:3b:d4:20:3a:45:7c:
85:86:8a:60:59:b4:a1:2d:d8:bb:ee:d9:91:47:cf:
45:29:3d:d3:34:80:94:cc:62:2d:e7:80:f8:0a:af:
60:06:29:60:f8:cc:ec:21:8d:43:53:8a:39:5a:d4:
20:67:5a:17:2a:5d:4f:a5:af:72:05:05:f3:91:94:
c7:3c:7c:a0:92:fe:de:43:4c:f3:08:22:be:c8:a1:
02:b5:c4:d7:f9:2e:70:0c:2a:d2:3a:bd:1c:96:5a:
c4:64:97:6a:e7:96:f6:92:03:ca:46:15:e2:9e:b6:
24:3b:fb:4b:ce:6e:ef:29:77:ff:9f:6c:8d:66:61:
08:b0:33:27:b6:d4:1f:f0:f2:48:d1:d2:37:4b:03:
52:4f:9f:c0:2f:bc:d2:5e:c2:a2:c6:7c:d6:bf:d1:
58:5f:99:33:5a:a4:be:e7:29:ee:cf:77:a4:7c:b6:
19:c8:83:75:7c:f1:f7:c8:30:f6:ad:85:66:98:22:
44:ba:cb:ac:c5:4f:62:bf:76:d9:58:9e:48:62:70:
f5:ce:72:bf:af:b7:1a:24:44:da:c2:b8:ae:80:69:
1e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:01:FC:7C:9D:C1:81:27:CE:5E:1A:10:DF:80:83:F4:4E:99:12:71
X509v3 Authority Key Identifier:
keyid:34:4F:5E:B0:EF:C5:17:D6:CA:AE:B7:C7:4A:84:7F:96:5C:0E:14:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NE9esO_FF9bKrrfHSoR_llwOFNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b3f2e4-5177-48ae-955e-5d816a82c283/1/BQH8fJ3BgSfOXhoQ34CD9E6ZEnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b3f2e4-5177-48ae-955e-5d816a82c283/1/NE9esO_FF9bKrrfHSoR_llwOFNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.30.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:f1:99:7e:34:b2:ab:10:06:09:cc:3d:e0:71:e4:43:25:6f:
79:6c:17:d4:32:ea:cf:76:6e:21:06:0f:0a:78:d5:8d:b9:04:
17:1f:7f:72:42:5b:b7:d7:c9:39:f5:da:95:e3:02:77:88:69:
04:71:da:42:a8:b1:d7:52:c6:bb:47:77:56:e9:8e:b5:81:4c:
7d:0c:4a:a4:fc:b8:d2:7d:6a:57:b3:e5:7d:59:d7:9b:e8:5f:
97:47:f3:d3:76:fd:eb:66:2a:61:6a:59:a8:8d:08:90:3b:46:
f5:a3:b4:d9:00:e6:c3:9f:4f:0f:82:b0:de:a4:13:07:12:cc:
0a:f3:7d:1d:98:25:c3:4f:ce:dc:0a:df:2e:4e:45:d6:37:70:
86:e5:1b:b6:96:37:cf:af:7b:fa:36:3a:64:06:30:c0:9a:f5:
91:a7:b4:45:6a:ac:66:08:91:28:39:94:6c:3d:e8:c7:7f:67:
d1:38:6d:36:b6:5e:87:35:4b:56:75:2a:6a:c5:7f:d2:cb:c9:
4d:c6:41:4c:ca:29:b9:2a:65:0c:5d:b4:5c:7f:72:45:12:29:
92:a8:ab:f1:3e:c4:38:ea:ed:af:68:2f:4a:e0:24:b2:ee:c4:
40:eb:3a:48:3b:31:d9:c1:ba:49:52:19:63:f9:11:a2:00:15:
72:bc:2e:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:01 2023 by rpki-client on console-ams.rpki-client.org