Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/Bc7r3Mn46VNAq2b2tAj9alvEjAg.roa
File: Bc7r3Mn46VNAq2b2tAj9alvEjAg.roa (raw, json)
Hash identifier: xFdyVD5VeuNzNNN5NIApopGvb4lB2jkCD2S2rsC/NU4=
Subject key identifier: 05:CE:EB:DC:C9:F8:E9:53:40:AB:66:F6:B4:08:FD:6A:5B:C4:8C:08
Certificate issuer: /CN=96199360259fa5b35b82953c5ed97999228341ac
Certificate serial: 04680A61
Authority key identifier: 96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/Bc7r3Mn46VNAq2b2tAj9alvEjAg.roa
Signing time: Tue 22 Feb 2022 20:56:49 +0000
ROA not before: Tue 22 Feb 2022 20:56:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212986
IP address blocks: 91.212.96.0/24 maxlen: 24
2a12:7cc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73927265 (0x4680a61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96199360259fa5b35b82953c5ed97999228341ac
Validity
Not Before: Feb 22 20:56:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05ceebdcc9f8e95340ab66f6b408fd6a5bc48c08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:03:85:37:1a:05:5f:d1:66:6f:a5:0d:33:76:
96:e0:c9:66:c5:5d:de:5b:d0:b5:53:29:75:b7:90:
34:32:b0:45:4e:20:ff:97:5f:85:9a:d3:e7:03:be:
2b:ca:18:fb:2c:d6:1d:1d:7c:bd:ed:56:9b:da:f7:
e5:76:e5:ea:8f:7a:3c:72:b9:a3:8f:11:c2:ed:cc:
39:d0:89:bb:33:41:45:be:4d:7d:fd:ed:9d:a5:15:
69:98:66:19:2d:03:69:21:a5:22:bf:0e:bd:05:c5:
b1:60:3d:28:0c:fe:49:ba:dd:3d:56:a2:f7:90:d8:
0e:eb:8b:ef:42:d4:65:f1:7c:5c:65:be:51:6b:73:
43:5d:6f:52:b2:d2:b4:15:c5:36:ab:d5:6b:59:ee:
7b:52:67:a0:e1:34:46:a0:20:b0:fe:fd:8b:77:d1:
fd:a8:ab:df:10:a7:46:ac:76:cd:5b:b7:71:5f:01:
cd:7b:28:fb:bc:d5:6b:98:3a:2b:73:50:82:c6:a7:
1c:d3:9c:29:0a:42:47:6a:8f:c0:5c:12:f1:de:b0:
67:4f:fd:d1:d6:50:0c:63:16:16:f7:7d:91:38:99:
eb:0f:a6:8d:02:aa:07:ad:12:bf:1f:13:c8:36:62:
27:fd:18:b1:9d:4c:73:14:89:a0:30:7a:48:78:0a:
09:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:CE:EB:DC:C9:F8:E9:53:40:AB:66:F6:B4:08:FD:6A:5B:C4:8C:08
X509v3 Authority Key Identifier:
keyid:96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/Bc7r3Mn46VNAq2b2tAj9alvEjAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.96.0/24
IPv6:
2a12:7cc0::/29
Signature Algorithm: sha256WithRSAEncryption
18:c0:fe:b0:2a:be:73:18:96:01:c2:2f:28:06:59:d5:6d:31:
a6:fb:d9:a3:1d:67:31:14:26:eb:6d:aa:8a:43:4f:45:82:ed:
e1:f5:91:f3:d1:5e:17:e0:9d:62:db:e8:08:cd:80:d2:86:84:
70:05:2f:26:b4:41:c4:75:12:43:0d:ad:3f:be:d2:7f:5a:eb:
99:c4:0e:04:40:32:be:b3:78:37:43:74:c5:dc:eb:3a:1a:c5:
a8:58:c1:d6:e4:43:39:d4:26:18:fe:89:17:ec:0d:4b:82:61:
0b:f7:60:ff:84:52:cc:41:a5:38:0c:a6:47:b4:2d:de:15:45:
ef:0d:4a:7e:71:31:26:28:5d:84:16:0e:b7:8a:69:d0:20:58:
be:39:1f:79:4d:ea:6b:10:59:20:5a:88:94:b8:af:a4:ca:b8:
a8:bd:be:16:cd:50:ea:76:0d:af:97:a5:e9:98:8f:bb:f8:d8:
3e:94:ec:06:2e:2b:d1:06:9e:3c:7d:5e:db:7e:b4:96:80:d5:
2f:b2:99:6b:2e:9d:18:01:52:29:90:53:b3:b6:1b:da:27:9f:
44:26:ae:b7:cd:f1:0e:c4:22:26:f9:bf:6f:1c:e4:8f:8f:84:
d6:14:dc:bc:ff:6f:6e:a6:1d:86:f9:b5:98:04:a6:51:b1:3a:
b1:04:42:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:12 2023 by rpki-client on console-fra.rpki-client.org