Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/BCG7-k-vIyQnYKNbSOIcKsdwrvI.roa
File: BCG7-k-vIyQnYKNbSOIcKsdwrvI.roa (raw, json)
Hash identifier: QfJUbKRyEDoD1yTyVbTKilg5tHmU9JZDkllc1VPU7Xw=
Subject key identifier: 04:21:BB:FA:4F:AF:23:24:27:60:A3:5B:48:E2:1C:2A:C7:70:AE:F2
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 096BB3F3
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/BCG7-k-vIyQnYKNbSOIcKsdwrvI.roa
Signing time: Fri 04 Mar 2022 10:24:26 +0000
ROA not before: Fri 04 Mar 2022 10:24:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207898
IP address blocks: 2a0e:8f02:f03e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158053363 (0x96bb3f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Mar 4 10:24:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0421bbfa4faf23242760a35b48e21c2ac770aef2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e2:b7:cb:2f:39:09:c6:54:b4:c5:d1:05:86:
b2:a6:83:b6:b3:66:ca:a6:7d:14:8c:c3:3d:6a:66:
5c:ac:00:5c:21:c7:4b:d7:b0:db:d6:58:a1:d6:e2:
42:31:00:f5:9b:42:0e:8c:e9:67:c2:dd:f0:2c:3f:
43:50:2d:26:45:cc:bc:b9:3d:5c:0d:65:3b:15:ab:
34:43:8f:35:b7:39:d3:ed:44:71:f0:f0:45:ab:b9:
b7:d4:ec:d5:18:06:05:b9:e1:b9:d7:62:7d:fb:0b:
1e:70:bf:8b:ae:6e:40:70:eb:28:85:1f:e7:cb:2d:
b4:95:c4:db:4d:5a:48:c0:f7:dc:23:be:17:ff:af:
83:fc:c0:47:0b:75:62:33:47:62:51:70:2d:e7:62:
6e:4a:c5:85:96:b3:b5:bc:ea:de:bf:97:3c:0f:6a:
4b:72:9e:2e:de:50:bc:76:06:d7:7d:37:11:7e:b2:
27:6f:e0:12:8f:68:d8:7b:ad:b5:ea:f3:99:08:94:
8c:e1:d5:16:de:86:a6:c6:40:1f:27:1a:96:98:d6:
f5:bc:94:16:d7:06:f2:ac:c1:2a:b0:33:85:5d:a5:
17:6c:0d:1d:19:ef:50:9e:60:a2:ff:0c:dc:66:c2:
56:ca:40:09:70:71:dd:ca:12:be:2c:1c:a7:12:ee:
cf:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:21:BB:FA:4F:AF:23:24:27:60:A3:5B:48:E2:1C:2A:C7:70:AE:F2
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/BCG7-k-vIyQnYKNbSOIcKsdwrvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f03e::/48
Signature Algorithm: sha256WithRSAEncryption
8a:28:f3:cc:6b:21:00:33:0e:32:eb:42:ca:58:c8:9e:60:b1:
bd:78:92:48:0d:5d:25:1b:2a:53:7f:01:81:de:b7:b5:3c:bf:
27:11:1f:20:d9:83:88:8c:6f:cc:f6:bc:1a:70:82:0c:4e:03:
2f:50:1c:ac:9d:82:fa:e1:a7:0a:21:af:d3:3e:fd:9f:55:f6:
2a:8d:fd:dd:e5:0f:d8:eb:6d:9f:64:64:85:e8:6d:21:c8:6f:
a0:7f:10:2b:ee:2b:2d:f2:17:36:44:c2:82:9b:1b:0e:4b:dc:
99:65:72:3f:82:99:5d:55:5d:af:49:dd:19:75:01:7e:69:fe:
a3:93:37:40:bb:96:32:8e:36:fe:5d:f0:40:8f:23:1a:cb:dc:
3f:90:c6:33:be:16:fb:86:d0:b8:c9:84:ba:eb:53:4f:7c:49:
41:41:0f:55:fd:bf:58:6b:88:30:fc:0c:9b:9e:d3:3c:dd:08:
3b:5d:63:c5:0d:74:0b:e5:91:fa:eb:fb:05:ad:e8:b2:8c:71:
88:fa:0d:e7:64:58:6c:f5:56:8e:56:c9:dc:76:39:fb:8f:ff:
7f:b1:36:e9:86:5a:98:d2:9e:13:0e:b9:ca:26:ee:f8:e6:ad:
e1:14:05:8f:1b:0f:23:73:72:b7:d3:94:05:88:83:54:c5:b8:
ee:02:61:b9
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECWuz8zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NTZlZjQ4ZWQ2MTU1ZGQ3ODQzZWVkMzYzMjQ2OWFiYWEzMTAwYmYzMB4XDTIyMDMw
NDEwMjQyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDQyMWJiZmE0ZmFm
MjMyNDI3NjBhMzViNDhlMjFjMmFjNzcwYWVmMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK3it8svOQnGVLTF0QWGsqaDtrNmyqZ9FIzDPWpmXKwAXCHH
S9ew29ZYodbiQjEA9ZtCDozpZ8Ld8Cw/Q1AtJkXMvLk9XA1lOxWrNEOPNbc50+1E
cfDwRau5t9Ts1RgGBbnhuddiffsLHnC/i65uQHDrKIUf58sttJXE201aSMD33CO+
F/+vg/zARwt1YjNHYlFwLedibkrFhZaztbzq3r+XPA9qS3KeLt5QvHYG1303EX6y
J2/gEo9o2HutterzmQiUjOHVFt6GpsZAHycalpjW9byUFtcG8qzBKrAzhV2lF2wN
HRnvUJ5gov8M3GbCVspACXBx3coSviwcpxLuz+MCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQEIbv6T68jJCdgo1tI4hwqx3Cu8jAfBgNVHSMEGDAWgBTVbvSO1hVd14Q+
7TYyRpq6oxAL8zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFXNzBqdFlWWGRlRVB1MDJNa2FhdXFNUUNfTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjUvNThmZjU0LTM0MTAtNGU0Mi1hYWI4LWQyZDdmMmJiNjRkZi8x
L0JDRzctay12SXlRbllLTmJTT0ljS3Nkd3J2SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjUv
NThmZjU0LTM0MTAtNGU0Mi1hYWI4LWQyZDdmMmJiNjRkZi8xLzFXNzBqdFlWWGRl
RVB1MDJNa2FhdXFNUUNfTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoOjwLwPjANBgkqhkiG9w0BAQsF
AAOCAQEAiijzzGshADMOMutCyljInmCxvXiSSA1dJRsqU38Bgd63tTy/JxEfINmD
iIxvzPa8GnCCDE4DL1AcrJ2C+uGnCiGv0z79n1X2Ko393eUP2Ottn2RkhehtIchv
oH8QK+4rLfIXNkTCgpsbDkvcmWVyP4KZXVVdr0ndGXUBfmn+o5M3QLuWMo42/l3w
QI8jGsvcP5DGM74W+4bQuMmEuutTT3xJQUEPVf2/WGuIMPwMm57TPN0IO11jxQ10
C+WR+uv7Ba3osoxxiPoN52RYbPVWjlbJ3HY5+4//f7E26YZamNKeEw65yibu+Oat
4RQFjxsPI3Nyt9OUBYiDVMW47gJhuQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:24 2023 by rpki-client on console-fra.rpki-client.org