Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/BdKKh-luY1fWYr9evmYORzFqTdc.roa
File: BdKKh-luY1fWYr9evmYORzFqTdc.roa (raw, json)
Hash identifier: tAf8HlUXEPokrYkkWr2emaFZ2Z9GU5ooc2graDQ9jGw=
Subject key identifier: 05:D2:8A:87:E9:6E:63:57:D6:62:BF:5E:BE:66:0E:47:31:6A:4D:D7
Certificate issuer: /CN=1319f052bc9e7284888074390c9d0bc127606692
Certificate serial: 17E0A048
Authority key identifier: 13:19:F0:52:BC:9E:72:84:88:80:74:39:0C:9D:0B:C1:27:60:66:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExnwUryecoSIgHQ5DJ0LwSdgZpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/BdKKh-luY1fWYr9evmYORzFqTdc.roa
Signing time: Mon 14 Feb 2022 11:41:50 +0000
ROA not before: Mon 14 Feb 2022 11:41:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15457
IP address blocks: 62.169.72.0/22 maxlen: 22
62.169.80.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400597064 (0x17e0a048)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1319f052bc9e7284888074390c9d0bc127606692
Validity
Not Before: Feb 14 11:41:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05d28a87e96e6357d662bf5ebe660e47316a4dd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:cd:c5:d2:12:12:bc:61:9a:41:39:7d:a8:dd:
b8:60:95:67:e7:57:3a:7a:d0:e1:bd:0e:6a:40:1f:
71:fc:91:23:51:ed:ff:40:ba:f8:d7:b4:ab:0a:21:
3f:a3:3a:fc:49:03:6d:d7:fc:99:44:7d:ed:45:fc:
1c:39:a3:06:b4:4f:1a:b6:c8:5d:f5:9f:e8:88:2b:
c3:87:9d:d5:d7:85:50:b9:11:bf:a3:0a:27:a1:15:
7b:40:5c:1b:b8:af:fa:50:d4:a3:e5:01:87:3c:15:
a0:71:7f:fd:ba:5f:49:1a:9e:bb:6f:c0:64:e1:f4:
4d:bc:9c:b1:69:2b:f5:c0:44:2b:ec:44:ee:c3:ad:
46:ab:80:9c:e0:af:c2:91:2d:5c:1f:eb:5c:33:35:
2a:68:25:35:5c:3b:32:d5:ea:f5:0d:bf:8b:ef:c9:
af:18:8f:c5:bd:af:b7:9c:80:4b:9c:e6:9f:a5:52:
64:6b:83:e1:e2:7f:67:cc:0b:7c:67:51:4a:6a:ca:
59:87:2b:d0:89:3b:ae:8a:52:9a:af:ad:cf:7b:0c:
8a:5f:1b:a3:0f:91:87:b0:c4:c8:47:b2:0a:98:f0:
69:79:fd:26:d1:49:fb:f9:dc:98:06:03:45:ad:64:
50:62:cc:8f:15:21:32:4b:09:b5:bf:45:91:5f:b6:
f2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:D2:8A:87:E9:6E:63:57:D6:62:BF:5E:BE:66:0E:47:31:6A:4D:D7
X509v3 Authority Key Identifier:
keyid:13:19:F0:52:BC:9E:72:84:88:80:74:39:0C:9D:0B:C1:27:60:66:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExnwUryecoSIgHQ5DJ0LwSdgZpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/BdKKh-luY1fWYr9evmYORzFqTdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/ExnwUryecoSIgHQ5DJ0LwSdgZpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.169.72.0/22
62.169.80.0/22
Signature Algorithm: sha256WithRSAEncryption
54:94:10:4b:bf:03:e4:1b:21:79:4d:9d:35:9e:1e:ca:d8:fd:
9a:5b:72:32:e1:05:06:6c:c3:24:bf:96:86:5a:1c:d7:2c:ee:
79:27:09:89:13:44:17:3e:05:cf:f8:76:ff:ee:6b:ad:36:0e:
e4:5b:0a:cf:4c:49:52:27:95:23:91:33:f9:39:66:ad:46:aa:
7c:b6:e8:4e:39:06:ee:48:82:7f:e1:b1:83:31:7c:fe:43:fd:
40:f9:50:9b:9d:a8:a7:05:31:60:6b:97:53:6a:94:7a:c3:4c:
d8:7e:cf:d3:a0:22:58:67:db:c8:4f:18:70:f6:e0:f9:de:cb:
ae:9f:e6:24:a0:d8:9f:a4:62:0c:7a:fe:0a:b6:06:b6:7f:18:
e1:e2:a1:73:db:20:e4:5e:69:2c:aa:18:82:de:7c:aa:51:d6:
97:59:d7:68:97:a3:34:7d:f4:a5:64:39:5e:f7:19:70:57:3e:
db:b3:7d:21:f3:71:b0:cc:80:4d:9f:1d:2d:f9:ab:e9:a6:35:
26:28:f9:a6:3f:e2:2d:7c:c2:51:09:cf:34:8b:9a:cd:51:5a:
10:63:2f:54:7e:70:aa:33:89:57:e3:1b:0e:dd:6f:4b:2f:be:
88:65:0c:f4:90:dc:4e:1d:19:1f:b2:59:a0:7e:58:42:7d:c7:
0c:49:57:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:40 2023 by rpki-client on console-fra.rpki-client.org