Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/e16cb6-b454-48d6-bdc8-3516191a9d68/1/BY1ezaSTqY8vSWbGZyQw0C5tLF0.roa
File: BY1ezaSTqY8vSWbGZyQw0C5tLF0.roa (raw, json)
Hash identifier: lnqRSBhVJ+M286kU3GoQCSlp/qoifsV79mkCLF4r6l4=
Subject key identifier: 05:8D:5E:CD:A4:93:A9:8F:2F:49:66:C6:67:24:30:D0:2E:6D:2C:5D
Certificate issuer: /CN=bdf7a0a048b68eccfa4d49eab4f16dc792c0d318
Certificate serial: 097CDE80
Authority key identifier: BD:F7:A0:A0:48:B6:8E:CC:FA:4D:49:EA:B4:F1:6D:C7:92:C0:D3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfegoEi2jsz6TUnqtPFtx5LA0xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/e16cb6-b454-48d6-bdc8-3516191a9d68/1/BY1ezaSTqY8vSWbGZyQw0C5tLF0.roa
Signing time: Sat 01 Jan 2022 14:57:26 +0000
ROA not before: Sat 01 Jan 2022 14:57:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56738
IP address blocks: 194.140.230.0/24 maxlen: 24
2001:67c:144::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159178368 (0x97cde80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdf7a0a048b68eccfa4d49eab4f16dc792c0d318
Validity
Not Before: Jan 1 14:57:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=058d5ecda493a98f2f4966c6672430d02e6d2c5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:00:74:fc:09:d6:8a:d2:6b:94:74:df:65:2d:
f4:a1:a1:9d:03:65:67:60:19:8b:46:9b:1d:56:32:
06:e3:10:66:81:75:5f:d2:f6:d3:6a:fb:90:23:76:
25:a1:6a:d0:cf:34:e5:1e:f7:2c:b8:cd:4c:66:39:
58:91:6c:18:68:c4:ac:c7:6c:08:6d:56:43:97:b0:
3e:2b:53:1d:54:42:ec:fb:00:59:77:f9:16:97:21:
f6:9c:e5:bd:f1:82:3c:ed:87:bd:2d:98:37:88:1c:
40:a7:28:1f:5d:af:87:1e:d7:a4:4a:2c:0f:a7:0c:
e9:90:68:d5:2b:b1:bd:a7:ee:ed:bb:4f:4c:09:af:
7b:bc:05:e7:13:da:c1:12:8b:05:db:f2:10:8a:bc:
88:41:48:a5:67:20:56:67:a9:f4:4f:02:83:00:a0:
98:9a:bf:4c:48:c2:61:9f:f5:a8:ec:86:d4:75:65:
b2:34:92:7e:77:ae:12:9c:ee:51:00:58:59:1d:e2:
65:56:85:90:28:7f:18:21:0d:5e:55:31:cc:a6:9e:
ac:1e:de:5c:4f:6c:c1:8d:f1:67:28:5e:ab:59:32:
a2:1c:53:07:50:87:5d:cd:2e:88:bc:47:25:c5:15:
a3:5f:76:0d:6c:56:35:eb:f0:70:6d:c0:92:fe:a5:
74:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:8D:5E:CD:A4:93:A9:8F:2F:49:66:C6:67:24:30:D0:2E:6D:2C:5D
X509v3 Authority Key Identifier:
keyid:BD:F7:A0:A0:48:B6:8E:CC:FA:4D:49:EA:B4:F1:6D:C7:92:C0:D3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfegoEi2jsz6TUnqtPFtx5LA0xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/e16cb6-b454-48d6-bdc8-3516191a9d68/1/BY1ezaSTqY8vSWbGZyQw0C5tLF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/e16cb6-b454-48d6-bdc8-3516191a9d68/1/vfegoEi2jsz6TUnqtPFtx5LA0xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.140.230.0/24
IPv6:
2001:67c:144::/48
Signature Algorithm: sha256WithRSAEncryption
7d:ee:16:20:c7:9b:01:e2:12:c4:8f:07:88:14:e2:1e:af:1a:
b1:2d:b9:75:f5:0f:7b:8c:63:8a:e9:2e:f4:8f:e8:b0:b8:24:
63:d1:48:c1:52:bf:94:ee:0d:30:2f:cd:66:6f:4a:f0:cb:7c:
6f:b4:1b:c4:13:0b:32:f5:9d:8a:4c:4a:82:a5:23:55:3d:d7:
ce:b8:60:1a:4e:a8:e8:ca:99:16:4c:86:a1:1d:91:02:1d:e5:
d6:bb:3b:25:12:6c:fb:ae:eb:e7:f2:44:21:08:05:a1:b7:10:
77:03:da:71:11:ad:72:51:a9:49:f3:eb:ea:22:8a:c7:48:31:
30:f0:fe:21:90:ca:d8:3e:3c:5b:af:1e:f5:51:e6:b7:d9:3a:
22:e9:d2:5d:83:6d:a7:e1:98:39:42:3a:14:a8:2b:ce:20:85:
c5:a5:d0:69:c5:28:69:ca:81:02:ad:53:90:df:e8:87:fd:3d:
b0:35:f6:88:c0:df:30:00:97:e3:4a:75:e3:33:9a:0b:7d:1a:
a6:49:e4:d2:9d:55:e2:00:c5:5d:6d:d5:a3:61:74:1c:13:67:
f6:b3:90:bf:33:0b:c4:02:41:d8:dc:ac:92:b8:80:0e:f3:9b:
23:aa:2f:a7:0d:c7:1e:8e:7d:69:f5:76:a9:9e:d8:bf:73:c3:
dd:6a:8e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:42 2024 by rpki-client on console-ams.rpki-client.org