Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/70ddc4-f9c4-498b-85ee-16fc9d44ec7d/1/Bwe4LaXUFtTdkzgBRJS0HeWYbds.roa
File: Bwe4LaXUFtTdkzgBRJS0HeWYbds.roa (raw, json)
Hash identifier: 5iuw4Ni0K5+9/+TJ6cJHicnDeeZGwAcxchbagJ7LGBE=
Subject key identifier: 07:07:B8:2D:A5:D4:16:D4:DD:93:38:01:44:94:B4:1D:E5:98:6D:DB
Certificate issuer: /CN=9c0d5540bdcd33052bc00fff266338bf3cc82a80
Certificate serial: 0183D1E6A32DA59FA544A341ED89036A3819
Authority key identifier: 9C:0D:55:40:BD:CD:33:05:2B:C0:0F:FF:26:63:38:BF:3C:C8:2A:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nA1VQL3NMwUrwA__JmM4vzzIKoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/70ddc4-f9c4-498b-85ee-16fc9d44ec7d/1/Bwe4LaXUFtTdkzgBRJS0HeWYbds.roa
Signing time: Thu 13 Oct 2022 15:11:36 +0000
ROA not before: Thu 13 Oct 2022 15:11:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400161
IP address blocks: 195.96.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d1:e6:a3:2d:a5:9f:a5:44:a3:41:ed:89:03:6a:38:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c0d5540bdcd33052bc00fff266338bf3cc82a80
Validity
Not Before: Oct 13 15:11:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0707b82da5d416d4dd9338014494b41de5986ddb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:30:95:8d:1a:2a:c7:4a:58:3d:24:9c:2e:47:
d1:18:4c:71:09:6c:1c:3e:6e:ab:38:b4:e6:29:29:
e4:69:2e:fa:d2:eb:d9:3f:17:fb:87:2c:55:79:02:
8c:6d:f9:42:8d:f5:26:47:5b:9b:ff:00:11:2b:10:
f1:52:f5:0a:83:9a:40:72:c1:94:0f:40:80:45:b4:
9d:3c:9b:11:71:f3:c3:02:4c:44:f0:5d:d6:d8:1d:
15:87:08:25:61:4d:96:b7:aa:a1:a7:97:6c:75:a0:
59:f8:e3:fd:d4:3c:20:25:1d:a4:98:d7:84:eb:2a:
d5:f7:95:8f:79:58:dc:c1:5d:b4:99:9c:f5:bc:bc:
74:33:18:8f:4c:d4:de:b4:6f:da:b8:b8:5b:4e:89:
c0:d2:ea:c7:71:36:70:52:f7:ff:bc:e0:b9:6a:54:
71:46:e4:39:99:16:0b:7d:a2:75:fc:c1:81:83:62:
03:c3:ed:a2:89:2a:d4:fa:9a:1d:e9:44:17:ce:15:
61:4f:dc:f5:73:9c:64:61:b2:31:17:e6:28:02:8a:
de:58:6d:5a:c5:05:b6:8b:d3:2f:3c:ae:d8:28:4a:
f8:8f:0f:60:12:23:ef:02:a9:3f:47:5c:29:17:79:
16:d6:bd:86:31:4a:25:e0:8d:06:85:84:e3:2d:f4:
a5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:07:B8:2D:A5:D4:16:D4:DD:93:38:01:44:94:B4:1D:E5:98:6D:DB
X509v3 Authority Key Identifier:
keyid:9C:0D:55:40:BD:CD:33:05:2B:C0:0F:FF:26:63:38:BF:3C:C8:2A:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nA1VQL3NMwUrwA__JmM4vzzIKoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/70ddc4-f9c4-498b-85ee-16fc9d44ec7d/1/Bwe4LaXUFtTdkzgBRJS0HeWYbds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/70ddc4-f9c4-498b-85ee-16fc9d44ec7d/1/nA1VQL3NMwUrwA__JmM4vzzIKoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.137.0/24
Signature Algorithm: sha256WithRSAEncryption
45:c4:28:fb:38:77:53:db:89:39:6d:50:ef:99:8b:dc:7e:9a:
4e:91:f4:fa:06:5c:35:f4:77:08:1f:48:53:74:fd:18:a3:92:
87:e0:f4:32:5c:03:a2:9d:f3:39:c1:97:db:e0:43:c4:e4:a6:
3e:2c:e3:f3:32:44:9c:18:5d:b5:3b:af:f8:3d:7e:9d:71:80:
16:83:bc:f8:ff:7f:46:6a:97:1f:ef:92:ca:85:ad:5f:c9:87:
29:b1:5f:e3:d1:30:fc:d9:cd:fc:4e:47:b7:77:67:dd:45:0a:
cb:78:1d:43:d4:4e:44:e8:92:e2:1f:6f:db:0c:8e:24:ef:0f:
a9:d9:fb:a6:f8:1a:e5:9b:c8:3b:59:85:f8:02:aa:00:01:ff:
53:55:15:14:ae:ee:44:d9:85:24:ca:52:08:25:58:30:eb:9d:
4d:a1:bc:ae:7f:02:ad:ea:a3:83:84:6f:02:6e:48:e0:df:cc:
97:53:70:e6:81:33:d3:64:1c:5a:c5:e4:6e:29:6e:04:69:65:
cf:21:a5:82:48:a0:0d:4c:05:c2:df:40:ca:54:ec:38:d4:ec:
2f:ef:ac:fa:98:cb:8e:28:3c:d6:1f:88:41:74:c0:ef:00:de:
82:08:57:ba:c1:63:47:c4:db:7a:35:76:19:4a:04:13:24:71:
94:b3:fb:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:04 2023 by rpki-client on console-ams.rpki-client.org