Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BU1z4Lpd5X9UckSUD8TR0HKffhw.roa
File: BU1z4Lpd5X9UckSUD8TR0HKffhw.roa (raw, json)
Hash identifier: YQgH5r8/On+uA6etBXgj8PzIkQaH3s5lCcuAPSe9u+A=
Subject key identifier: 05:4D:73:E0:BA:5D:E5:7F:54:72:44:94:0F:C4:D1:D0:72:9F:7E:1C
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0182D9712F685588C5E59B906F53303EDAB2
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BU1z4Lpd5X9UckSUD8TR0HKffhw.roa
Signing time: Fri 26 Aug 2022 09:17:29 +0000
ROA not before: Fri 26 Aug 2022 09:17:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203169
IP address blocks: 2a0c:b641:360::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d9:71:2f:68:55:88:c5:e5:9b:90:6f:53:30:3e:da:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Aug 26 09:17:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=054d73e0ba5de57f547244940fc4d1d0729f7e1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:dc:0e:81:dd:56:d8:54:28:d8:7f:e0:f4:b9:
fc:53:41:5c:e7:57:1d:25:f6:ee:83:e5:46:c7:4b:
1c:a6:46:61:a8:81:91:f6:2b:7c:aa:64:6a:32:a4:
9d:d4:c9:28:20:c3:7d:1d:62:eb:8e:8d:ff:c8:10:
33:df:6e:bb:c2:15:58:04:44:52:d3:f2:11:f1:b7:
9f:4b:1f:1b:95:93:36:ed:82:21:8c:f8:e3:87:86:
06:d3:8d:a3:07:ab:33:5a:86:87:ed:9d:15:b6:3b:
0c:9d:0c:4d:8f:52:39:a7:d0:52:59:20:27:12:61:
d0:a8:a5:fe:ba:2f:5b:c8:56:1d:a2:fb:86:c4:99:
30:07:a6:0b:ca:e4:d6:00:a7:f4:ab:78:f6:d8:dd:
56:b2:dc:a3:b4:f4:ff:57:81:98:c7:fb:dc:85:d3:
e7:99:73:c0:6b:ed:d8:e6:ab:b5:d1:3b:f2:5d:5f:
ef:4e:90:03:99:42:27:c5:01:54:2f:a2:d1:62:cb:
61:c6:ff:83:69:e4:0b:29:e3:93:44:24:66:bf:1b:
ca:c4:f3:d8:f7:ad:b6:24:5e:99:29:83:1f:8a:82:
75:9e:04:f1:8c:59:a0:19:d4:81:91:26:ea:3b:b7:
41:06:a4:ae:d8:1d:fa:0a:93:2b:f7:40:d1:eb:b7:
f5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:4D:73:E0:BA:5D:E5:7F:54:72:44:94:0F:C4:D1:D0:72:9F:7E:1C
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BU1z4Lpd5X9UckSUD8TR0HKffhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:360::/44
Signature Algorithm: sha256WithRSAEncryption
74:96:ad:1f:dd:3b:89:f0:c2:50:59:b5:8e:33:27:c6:3d:34:
3f:48:f2:64:ba:ff:4a:09:fb:fd:fb:09:b5:30:10:86:c2:18:
03:65:2c:c9:99:4a:64:3f:2d:5b:0a:c8:a1:a9:9f:d0:7f:8b:
84:24:29:83:d6:9c:1a:ef:1a:85:5a:7f:25:e6:a4:83:a8:04:
99:3e:c1:a1:b7:7b:5f:8f:8c:b1:4f:a9:9c:f1:b9:ab:bf:5e:
71:c2:a4:23:b8:9d:f7:fc:b8:88:5a:32:ea:8d:df:85:03:94:
a9:39:61:d2:3f:48:87:46:18:a0:15:81:6b:59:c8:db:af:e9:
b6:04:a9:b0:f7:7a:37:fb:67:88:9b:03:d9:ec:f8:85:ac:46:
b3:a5:f5:23:18:8a:8c:94:e9:8f:b7:0f:3f:ef:93:98:27:d2:
be:72:75:8c:fb:88:f6:ca:67:a3:7c:69:14:1f:33:a1:fe:b1:
47:a1:e1:bc:be:cb:c8:3f:ea:75:e5:55:ad:58:de:55:21:6e:
40:f7:47:ab:39:da:a5:24:6f:f9:a6:99:10:e5:d1:f6:38:d6:
dd:7d:05:68:4a:1a:91:a5:83:15:de:6b:09:54:87:da:ac:f9:
e5:4a:78:e1:3e:35:1e:0e:26:d7:f7:29:9e:d7:f6:84:15:7e:
a5:21:b1:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:37 2023 by rpki-client on console-fra.rpki-client.org