Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/c7c423-d861-461f-9c87-f31cd68f3a30/1/BP6B0L_mLxSll0vyHYSiVxtq2gk.roa
File: BP6B0L_mLxSll0vyHYSiVxtq2gk.roa (raw, json)
Hash identifier: hYvxors6sz80e8i054sz/dE6SH3Bb+AFrV24NL3agxs=
Subject key identifier: 04:FE:81:D0:BF:E6:2F:14:A5:97:4B:F2:1D:84:A2:57:1B:6A:DA:09
Certificate issuer: /CN=278f3c551309ffa461b77dfcc781a8a3ec669239
Certificate serial: DD4582
Authority key identifier: 27:8F:3C:55:13:09:FF:A4:61:B7:7D:FC:C7:81:A8:A3:EC:66:92:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J488VRMJ_6Rht338x4Goo-xmkjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/c7c423-d861-461f-9c87-f31cd68f3a30/1/BP6B0L_mLxSll0vyHYSiVxtq2gk.roa
Signing time: Tue 22 Mar 2022 20:45:10 +0000
ROA not before: Tue 22 Mar 2022 20:45:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 195.191.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14501250 (0xdd4582)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278f3c551309ffa461b77dfcc781a8a3ec669239
Validity
Not Before: Mar 22 20:45:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04fe81d0bfe62f14a5974bf21d84a2571b6ada09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6e:27:93:8e:d6:90:98:47:34:2b:f0:c7:9a:
63:94:9b:f8:7d:fe:69:71:c3:d7:6e:fc:1f:fa:8b:
8d:1e:2f:8b:51:45:d7:07:5c:36:73:e7:05:d3:d8:
99:1f:fe:72:3b:ba:d1:a1:00:c2:ec:23:15:f2:fe:
25:e7:9d:99:a8:24:f1:e4:36:94:b3:d5:ec:68:12:
1d:40:60:9d:48:79:0e:f2:f4:f1:e6:ef:76:f4:df:
f5:b7:10:9d:42:e6:88:be:09:34:b9:37:5d:8e:a9:
fa:b1:a5:b3:c5:d4:3e:d7:44:b2:d4:25:e5:8c:f7:
cc:74:00:05:d0:bd:e6:72:a5:20:01:d2:89:a6:cd:
c4:51:11:0b:a6:c9:d2:4c:3b:02:9e:da:14:10:c0:
f6:36:fd:ea:49:16:21:ef:d7:f3:01:f6:a1:a4:11:
31:49:e5:c9:eb:19:82:a8:85:a8:39:f4:ee:2f:5e:
76:5b:45:20:17:8a:57:f8:c4:4a:aa:11:67:1e:24:
9a:ab:75:ab:6e:4e:59:96:cd:fd:f6:8d:8a:0f:e1:
ca:6f:e8:81:3f:a4:71:18:6f:85:a4:d6:95:03:b1:
c8:3a:ae:2d:24:75:51:12:ac:b6:8b:74:ea:65:8f:
0f:c7:aa:3a:f2:c6:ad:0a:57:e0:fc:a0:42:88:83:
b9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:FE:81:D0:BF:E6:2F:14:A5:97:4B:F2:1D:84:A2:57:1B:6A:DA:09
X509v3 Authority Key Identifier:
keyid:27:8F:3C:55:13:09:FF:A4:61:B7:7D:FC:C7:81:A8:A3:EC:66:92:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J488VRMJ_6Rht338x4Goo-xmkjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/c7c423-d861-461f-9c87-f31cd68f3a30/1/BP6B0L_mLxSll0vyHYSiVxtq2gk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/c7c423-d861-461f-9c87-f31cd68f3a30/1/J488VRMJ_6Rht338x4Goo-xmkjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.99.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:32:c9:2f:9d:64:63:9e:1f:00:0a:fb:cf:e9:6c:79:5a:6f:
53:8b:22:9a:2e:56:fa:29:1c:96:6a:68:a3:f9:74:9e:a3:f1:
2d:b4:73:8e:32:4e:80:03:b6:07:04:f2:79:5e:fb:75:8d:86:
9a:9b:4d:74:84:dc:04:3f:06:cd:81:a7:47:6d:a8:4e:37:e1:
aa:8a:39:76:4d:e1:0b:2e:35:e5:f5:d2:b4:a1:10:42:3c:55:
3f:00:4b:a2:e6:19:6b:98:61:82:8d:10:59:04:df:85:37:cd:
6a:c5:f7:c5:6f:81:78:0a:4d:fb:2b:84:a8:ed:10:c3:ac:6b:
6e:7a:8c:fa:ad:0e:da:0c:e6:6e:80:0a:e9:0f:67:32:49:86:
6d:0b:c8:d4:ca:77:e4:39:af:fa:21:ce:3f:92:5b:8b:0c:2d:
05:4d:57:df:78:e6:a1:c8:e9:f2:6e:3a:af:4a:f7:b6:f0:72:
4e:bb:42:7a:5a:96:3c:76:f5:10:38:03:d0:28:a0:3a:82:35:
87:ae:92:04:24:25:9e:64:e4:70:1e:3d:0d:3c:ee:10:af:a4:
f9:ef:24:14:51:00:79:cc:eb:16:ba:ba:02:bd:15:04:b9:af:
3b:45:bd:63:2c:86:2e:76:c0:7e:2d:4b:57:af:35:c3:f9:8b:
4f:31:9a:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:26 2023 by rpki-client on console-fra.rpki-client.org