Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/BKSXLUXEvYlxVvVflikQIbo5B3k.roa
File: BKSXLUXEvYlxVvVflikQIbo5B3k.roa (raw, json)
Hash identifier: jwFlD+/xc97dID0aua0fSqTLUekKvOlpgdpbFRmO0FY=
Subject key identifier: 04:A4:97:2D:45:C4:BD:89:71:56:F5:5F:96:29:10:21:BA:39:07:79
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0C98B4F6
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/BKSXLUXEvYlxVvVflikQIbo5B3k.roa
Signing time: Mon 21 Mar 2022 14:21:34 +0000
ROA not before: Mon 21 Mar 2022 14:21:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 194.233.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211334390 (0xc98b4f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Mar 21 14:21:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04a4972d45c4bd897156f55f96291021ba390779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:5d:54:4f:15:e7:50:6e:1b:91:2b:8b:f6:24:
e7:f5:62:f9:2c:a2:c4:13:0b:a9:bf:4d:0f:0a:bf:
80:64:9f:5d:53:22:f5:82:34:d9:8a:a8:c6:29:38:
c0:22:52:82:d5:b2:f1:b3:33:45:47:fc:16:ab:2b:
f0:a9:3c:d3:b5:ea:75:f3:2c:6c:c0:99:4e:b4:2f:
57:29:62:5a:7a:fb:63:c3:02:60:b6:ad:b1:6d:b4:
d4:1e:cd:dd:ff:91:50:f9:d6:f2:f1:57:57:ed:b1:
71:6b:ca:0f:c4:7b:7a:ad:60:43:53:c0:34:27:a3:
8b:2c:36:56:9c:26:16:e7:58:65:2c:88:75:a8:f6:
8a:2a:56:7d:8b:cd:2f:83:a4:af:22:2b:f0:15:5b:
92:cc:11:6c:82:3d:8c:57:53:70:fd:68:1a:55:cf:
07:f7:6b:46:06:f5:07:87:49:7f:dd:0e:b8:85:9f:
5f:9a:a3:62:eb:6a:bd:16:72:0d:94:ff:6e:12:8b:
c7:82:72:b7:0d:59:ad:79:75:0c:68:5a:39:6f:3f:
fc:4f:1b:fa:53:e1:93:8b:84:a4:61:43:18:39:ef:
13:38:c2:57:bb:5c:cb:63:d5:f5:a7:ae:96:ed:1a:
6e:67:c9:55:28:3d:84:6d:01:18:37:69:56:9c:24:
30:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:A4:97:2D:45:C4:BD:89:71:56:F5:5F:96:29:10:21:BA:39:07:79
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/BKSXLUXEvYlxVvVflikQIbo5B3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.150.0/24
Signature Algorithm: sha256WithRSAEncryption
49:a6:a9:2f:b6:f7:c1:8f:d8:5c:99:8e:8f:70:4b:05:29:ca:
d1:22:0f:98:78:f1:50:0b:27:e4:25:f3:61:f7:8c:df:19:9d:
b4:77:94:54:5d:f4:a5:10:1c:11:ec:e8:20:91:16:c3:7e:c4:
f5:a3:fb:f3:37:ab:e6:5a:ae:d9:df:06:34:44:2a:c9:f2:b4:
28:70:6a:bb:0e:ed:48:ac:28:b9:10:e9:dc:f9:35:5d:5c:0a:
08:35:73:4d:e2:42:f5:f6:24:ae:e2:19:e7:3c:fb:e5:ec:f2:
c7:1f:21:7c:42:d8:aa:26:bc:09:4b:94:15:23:6b:55:33:b1:
43:ee:70:94:ca:45:b5:f8:00:14:5a:13:e1:c6:58:b8:5b:29:
f1:cf:04:03:c2:4e:8c:a9:6d:c0:04:6d:be:ad:3c:28:06:b5:
eb:11:05:f2:61:a3:9c:0b:48:85:d7:5a:5e:23:1f:74:23:10:
7c:6b:f7:be:cc:8f:70:27:6a:1f:42:f5:33:76:e5:fb:af:89:
51:86:d5:7f:02:20:6a:3d:fe:fa:51:6a:36:86:13:cc:da:9d:
da:ea:a8:83:33:85:ad:3e:98:17:80:d7:36:ad:bc:e1:b9:ff:
dd:36:db:46:60:a2:0b:d7:53:11:b0:96:c8:72:02:d4:16:4f:
e6:5e:ea:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:41 2023 by rpki-client on console-fra.rpki-client.org