Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BqgJRcUOcWWz0fRsA-Epp8hu_o8.roa
File: BqgJRcUOcWWz0fRsA-Epp8hu_o8.roa (raw, json)
Hash identifier: BJGscodsY/aLmWTaEctYgLapwic5MxV/auKhSEZCdo8=
Subject key identifier: 06:A8:09:45:C5:0E:71:65:B3:D1:F4:6C:03:E1:29:A7:C8:6E:FE:8F
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01061476
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BqgJRcUOcWWz0fRsA-Epp8hu_o8.roa
Signing time: Sat 01 Jan 2022 00:59:29 +0000
ROA not before: Sat 01 Jan 2022 00:59:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48741
IP address blocks: 45.154.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17175670 (0x1061476)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06a80945c50e7165b3d1f46c03e129a7c86efe8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6e:d9:a3:85:bc:48:06:02:46:6a:bc:af:06:
79:da:01:e9:3d:36:8b:92:39:bb:78:ac:9f:a0:16:
4b:e6:86:fb:f7:5b:c7:de:59:e7:3e:d0:6b:f1:6a:
5a:ab:80:33:c6:74:2c:2a:13:92:27:cc:cc:9d:85:
ea:d0:65:64:0b:f3:6e:11:32:65:38:bf:a1:b6:8e:
5b:2f:70:23:fc:40:47:7a:71:e4:b8:c7:a0:1e:82:
18:f9:de:84:36:84:48:1b:f0:55:fc:55:64:16:36:
4f:eb:4f:2a:fd:e9:3c:99:55:e9:cc:c6:74:b4:42:
e5:c3:c8:d4:bf:2c:03:1a:32:3e:2d:83:16:df:9a:
a6:0c:d0:8e:38:9f:78:16:2d:2c:5f:f4:ea:48:17:
e6:3d:eb:6d:24:b1:28:00:eb:11:2f:84:2a:c9:36:
25:36:dd:e2:fe:6e:04:0b:32:4d:7b:f6:9a:87:b1:
7d:e4:a6:04:dc:31:02:58:48:2f:fa:92:31:49:a8:
96:6b:c0:da:62:a7:c9:f9:8f:05:e1:ac:49:e1:c1:
d1:f0:71:96:07:12:31:2c:01:d5:89:30:56:07:64:
f1:cf:68:8f:b4:09:f9:30:d8:65:24:38:9d:9e:fa:
a6:b1:65:01:a4:ea:1e:36:29:b6:c8:f0:2e:6b:f8:
d4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:A8:09:45:C5:0E:71:65:B3:D1:F4:6C:03:E1:29:A7:C8:6E:FE:8F
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BqgJRcUOcWWz0fRsA-Epp8hu_o8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.98.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:7a:18:69:ce:40:a7:8c:89:be:a7:f4:79:53:9f:78:b6:2e:
10:34:0c:c6:7d:d4:c9:0e:86:f0:08:d1:9f:46:82:09:86:93:
b7:41:8c:12:20:41:dc:dd:59:89:6f:a8:ea:40:23:2a:44:97:
c6:9a:b1:1c:4d:97:74:a1:20:49:b7:11:b2:d3:e0:59:a0:f9:
74:fb:fa:aa:83:fb:bf:5b:42:c9:56:7a:f1:6d:b1:10:dd:cf:
23:42:09:21:c2:6f:0b:c5:17:73:d8:59:4e:74:17:5d:d9:ab:
02:64:aa:52:bd:b3:ed:9a:82:1a:86:8e:c2:71:49:c9:d6:fb:
03:9e:c6:6c:df:a0:5f:0d:cf:1b:ec:d2:d8:95:8d:91:f0:56:
00:f7:fa:07:a8:4e:25:be:8f:0b:96:62:84:f5:be:e5:57:94:
56:92:28:80:81:ab:38:63:40:ef:40:76:5c:a5:f0:56:01:b0:
69:8d:ac:09:d8:11:c5:26:29:12:42:17:f2:0f:74:ae:ab:79:
09:df:d3:06:90:1a:86:f3:15:dd:50:85:11:bb:17:79:fa:06:
46:a6:3e:60:53:0a:a5:bc:b5:16:da:60:e1:51:4f:5f:35:79:
26:d9:5f:50:cc:96:32:c2:3e:60:5f:1a:24:9b:1d:c3:65:c2:
d3:a7:13:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:37 2023 by rpki-client on console-fra.rpki-client.org