Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/bQgFBosgsfF5rvOFC57lV6YZdXU.roa
File: bQgFBosgsfF5rvOFC57lV6YZdXU.roa (raw, json)
Hash identifier: RhWHY0kYoASOPPs9nqBv7M7zfVi2zdw+uO3HO/MiI5I=
Subject key identifier: 6D:08:05:06:8B:20:B1:F1:79:AE:F3:85:0B:9E:E5:57:A6:19:75:75
Certificate issuer: /CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7
Certificate serial: 1476AF5A
Authority key identifier: C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/bQgFBosgsfF5rvOFC57lV6YZdXU.roa
Signing time: Sat 01 Jan 2022 09:04:18 +0000
ROA not before: Sat 01 Jan 2022 09:04:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8991
IP address blocks: 192.135.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 343322458 (0x1476af5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7
Validity
Not Before: Jan 1 09:04:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d0805068b20b1f179aef3850b9ee557a6197575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:ee:63:3c:4e:95:a1:c1:98:f8:7f:bd:18:6e:
2a:82:91:9b:69:44:ec:b3:f4:4f:f1:d3:d7:33:b8:
50:1e:43:07:e9:14:98:bd:73:c6:88:a8:66:3b:00:
6b:eb:17:d8:c5:4f:4c:67:06:f4:2f:29:e0:fc:78:
89:81:f4:8b:34:29:e3:a8:3f:b2:91:98:49:5f:19:
4b:bd:71:b7:71:2f:2e:fc:df:39:48:89:32:4f:11:
92:db:38:84:b9:c3:6f:25:ae:31:dd:9b:66:bf:2b:
93:7e:21:11:c6:89:de:4e:27:c1:30:a9:0b:c2:fd:
c5:5e:bc:16:6e:c1:89:59:f8:cf:b7:c2:be:46:f9:
3e:40:da:4d:6b:a9:a7:34:06:1e:9b:36:e1:c6:e7:
60:ff:38:fe:bd:de:03:f6:75:bb:b0:2e:19:73:94:
dc:00:03:45:58:7f:ad:bd:eb:36:cc:44:76:34:8f:
eb:0d:8e:a7:7a:3f:3e:e1:aa:89:95:ed:e3:56:3c:
3d:a9:dc:5a:67:22:9c:59:e9:3f:de:53:b1:8e:5e:
aa:23:7e:9e:6b:21:a6:5e:91:89:79:e7:cd:9d:e2:
d0:1f:72:91:00:5c:ee:bf:97:5a:37:1c:95:0b:cd:
b4:a9:6e:c0:6f:42:51:09:ab:ad:29:71:41:86:77:
64:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:08:05:06:8B:20:B1:F1:79:AE:F3:85:0B:9E:E5:57:A6:19:75:75
X509v3 Authority Key Identifier:
keyid:C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/bQgFBosgsfF5rvOFC57lV6YZdXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.135.166.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:51:51:97:c1:43:64:fa:91:6d:ae:a3:fd:48:9a:1e:be:22:
2c:33:38:5a:fe:f8:1f:95:80:17:c9:9f:e1:d4:69:6e:db:d5:
c4:dc:92:ad:19:8b:d1:d6:d8:a5:fc:cd:12:5a:5d:ce:47:ca:
a1:86:ce:c5:c7:e7:70:50:8c:7f:48:f3:4e:7c:1b:ed:49:0c:
33:00:5e:5a:68:1d:e0:9d:05:2f:5f:b1:c3:10:8f:13:89:ca:
55:a1:6b:75:ca:55:c4:02:0c:fa:f3:56:14:9c:05:70:e5:d8:
e3:50:b8:59:df:89:4c:d7:6a:35:fa:d1:f0:59:30:0b:c9:4f:
e5:81:e7:9a:0c:40:0c:c8:c9:ab:cb:21:9e:f8:40:0e:90:58:
c9:d5:c4:36:8b:c9:5a:7b:94:82:0b:60:78:03:52:df:fa:87:
d6:6b:06:c0:b2:c8:dc:ec:24:7d:f1:60:8b:aa:fb:09:65:c4:
16:62:ba:27:77:da:0a:ab:52:c6:04:c4:6a:1c:67:3c:77:41:
6a:1f:7f:27:53:09:57:ac:c6:40:1f:df:61:c6:9d:c4:6a:90:
57:0b:bc:8c:9d:a6:28:92:ae:d4:d3:4d:51:8f:69:95:75:e2:
61:42:b1:05:6f:29:36:d6:51:4a:99:3a:63:2b:53:64:99:92:
91:c7:a2:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:47 2025 by rpki-client