Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/BMJX-DLaQTGwiNb0y4Xa9nejA2I.roa
File: BMJX-DLaQTGwiNb0y4Xa9nejA2I.roa (raw, json)
Hash identifier: GrcSuRmG5M0dQC0ctiFKZEfj1cg/ztzvjovXdMjHAzg=
Subject key identifier: 04:C2:57:F8:32:DA:41:31:B0:88:D6:F4:CB:85:DA:F6:77:A3:03:62
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0BFEA898
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/BMJX-DLaQTGwiNb0y4Xa9nejA2I.roa
Signing time: Sun 30 Jan 2022 15:02:59 +0000
ROA not before: Sun 30 Jan 2022 15:02:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136796
IP address blocks: 195.180.150.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 201238680 (0xbfea898)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 30 15:02:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04c257f832da4131b088d6f4cb85daf677a30362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5f:d1:a3:10:f5:2e:0a:03:8b:12:ea:6a:ca:
f0:3d:af:93:e3:2e:b0:30:ea:f2:7c:7a:62:c8:7e:
30:df:0b:62:78:23:76:12:42:56:26:48:27:36:ff:
f9:d2:da:24:74:6d:af:7b:89:16:c4:1a:87:b3:eb:
ff:4e:63:19:c1:43:d6:d1:4d:65:3b:6b:86:25:bf:
ac:c6:6a:6a:5d:0a:0c:bc:77:7b:18:d3:71:ec:3d:
bd:e7:c7:2b:14:36:27:25:24:8e:32:d1:e6:81:ea:
5d:ca:4f:63:37:c4:8b:a9:1b:27:eb:46:4a:aa:7f:
0e:7a:39:18:c8:58:1e:17:6d:1d:87:1c:c3:c6:d3:
50:bc:b9:c1:b8:e7:57:de:65:74:28:56:06:db:9d:
25:a7:81:c8:3e:9e:3f:1e:92:df:59:58:98:41:5c:
6b:d8:d4:33:86:05:f2:33:22:cc:eb:00:ac:cd:5a:
46:fc:b3:98:9c:46:81:d4:0f:a9:a6:c9:54:29:87:
8a:4a:8e:1e:63:d7:af:7b:61:4d:91:0c:48:15:30:
5b:b7:c1:3b:75:09:17:9d:e7:f4:85:55:02:7c:62:
f1:65:38:32:0c:f5:3b:cc:39:59:f1:ba:1b:ad:f5:
81:44:eb:1d:cd:74:0e:e2:39:12:0c:07:12:77:2e:
3d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:C2:57:F8:32:DA:41:31:B0:88:D6:F4:CB:85:DA:F6:77:A3:03:62
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/BMJX-DLaQTGwiNb0y4Xa9nejA2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.180.150.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:6e:90:fe:74:d3:99:79:87:0d:fb:2b:cb:30:ee:af:13:20:
91:84:43:f4:79:e8:ea:69:ad:b7:2f:87:e2:07:04:4d:32:2a:
88:b6:70:f0:bb:1c:8b:53:77:50:51:db:83:b4:3a:5d:b9:3b:
3a:ac:aa:e0:ba:13:c4:f2:45:0d:8a:c4:0e:41:46:ab:4a:37:
0e:26:0c:93:5b:e1:35:50:7e:4b:10:93:16:c3:9b:21:d1:d6:
80:fc:b4:3d:63:d6:f0:3d:ed:32:6e:54:65:16:79:83:d9:83:
dc:90:a5:93:b9:0f:cc:cf:e7:fc:aa:8b:28:ac:a8:6b:66:26:
bf:f3:05:cf:22:ad:bc:ca:9f:d1:84:df:a4:76:f2:b0:f0:95:
0b:19:0f:f6:41:f5:7e:40:61:a6:f6:15:14:b2:23:23:4c:84:
a1:52:7a:34:a1:2f:b1:09:13:a5:61:d6:b9:1f:06:5d:fe:95:
0e:a9:25:42:17:9a:3e:f7:5f:a1:ab:3d:01:2e:6d:ee:cf:7b:
c1:64:05:0d:f9:f5:52:9a:7b:d1:60:db:80:5b:88:a6:98:84:
65:61:f3:a7:be:d6:f7:d1:5b:66:be:93:ba:15:78:d6:8b:7d:
d6:36:99:3a:eb:59:b0:4e:3c:4d:38:cd:93:59:ad:2f:e5:f4:
85:da:3e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:41 2023 by rpki-client on console-fra.rpki-client.org