Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/BB3bBjlr6wlRKDh98sGVW0fCcW4.roa
File: BB3bBjlr6wlRKDh98sGVW0fCcW4.roa (raw, json)
Hash identifier: KnF3u7r57dTP+blIHTTR54yTpULQC/8oJWimeKax+qk=
Subject key identifier: 04:1D:DB:06:39:6B:EB:09:51:28:38:7D:F2:C1:95:5B:47:C2:71:6E
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0886AB20
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/BB3bBjlr6wlRKDh98sGVW0fCcW4.roa
Signing time: Fri 13 May 2022 07:46:02 +0000
ROA not before: Fri 13 May 2022 07:46:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 194.242.97.0/24 maxlen: 24
45.132.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143043360 (0x886ab20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: May 13 07:46:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=041ddb06396beb095128387df2c1955b47c2716e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:fe:b0:62:32:da:b8:21:9d:bb:6f:86:1c:7f:
29:a1:15:49:66:24:47:44:37:5c:75:51:c5:c8:38:
ed:7a:f8:8b:42:a7:e2:69:30:1e:3c:e7:d6:a3:59:
83:a6:24:b6:da:e9:eb:b0:66:df:48:59:a2:bb:e9:
25:35:5f:a4:d7:dd:27:4a:c6:71:3b:ac:37:e9:cd:
ab:79:1f:41:e9:ef:21:f7:c3:c4:58:2f:c1:1d:29:
19:30:66:8f:42:8a:3d:27:f6:00:1d:39:89:60:6d:
2b:97:81:a1:45:20:d1:6c:67:ab:7a:c1:bf:40:68:
ee:eb:96:94:fb:af:cc:0b:e6:a5:0c:e5:51:7e:22:
b4:93:35:db:2a:2e:75:c3:90:ee:6e:1d:43:f1:e5:
c8:4b:c9:65:01:f7:4f:86:1f:04:ff:04:0e:9d:d9:
ed:c8:1d:9a:49:88:17:a0:bc:bd:a3:4d:04:ed:a1:
96:c3:ca:bd:1a:35:92:2e:63:41:4a:b6:5f:b3:dd:
7b:8c:30:d1:d5:99:19:9e:fb:1e:68:67:66:c6:17:
8f:f0:1d:df:3f:8e:79:4d:c4:48:3c:fa:f4:b4:4e:
78:71:92:d5:12:28:6e:b4:42:a9:0f:8a:7f:ae:5d:
c2:7a:e7:30:7e:a9:98:1e:a9:68:0b:49:d1:28:ba:
1f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:1D:DB:06:39:6B:EB:09:51:28:38:7D:F2:C1:95:5B:47:C2:71:6E
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/BB3bBjlr6wlRKDh98sGVW0fCcW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.181.0/24
194.242.97.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:82:d7:9e:33:b9:d8:67:00:ca:1c:5c:50:69:28:ad:d0:30:
8b:df:36:1b:84:53:1d:80:c3:c0:5d:2b:1c:09:74:72:1f:43:
dc:aa:16:9a:f8:79:8d:36:4e:95:7d:98:b4:29:7b:56:5e:d0:
53:73:5e:9e:e6:12:42:c4:ca:08:75:44:58:db:aa:d2:9d:04:
d2:21:c2:e1:7d:40:77:cb:4a:e5:30:b7:4b:24:e6:49:08:e1:
6a:4b:10:62:eb:b5:75:93:47:9d:28:74:87:ea:f6:1c:e1:b1:
45:7d:b2:33:ab:ed:1e:10:92:eb:12:02:7c:d6:59:f4:1f:02:
16:bc:22:60:54:ce:db:00:a6:06:3e:fa:17:68:0e:5f:c4:7f:
3f:b8:5c:5f:c7:03:6c:76:f0:1c:62:87:32:c9:b3:6c:ed:7a:
de:27:4d:f2:9e:48:6d:75:51:62:1b:40:c4:5a:c2:76:a7:96:
c2:ff:41:3a:93:0a:98:e1:c8:29:c7:3a:64:83:11:a1:f8:a0:
31:98:64:5f:67:46:47:79:3a:ee:de:01:a0:a3:57:d4:92:76:
d6:dc:02:72:f9:ae:4b:12:f7:3e:1a:67:b1:d6:c1:eb:ed:a8:
b7:23:32:46:ca:db:a7:46:30:c6:ba:a8:0a:bb:96:3d:ae:23:
db:22:73:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-ams.rpki-client.org