Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/de3041-9536-492e-a9cd-f2ae7bc7ecc5/1/BzXGjS7mLxcQ1mPPi1ZIdIi-X3g.roa
File: BzXGjS7mLxcQ1mPPi1ZIdIi-X3g.roa (raw, json)
Hash identifier: Haq+s/VJ8YGhvuZnj0UtIIKr2KEnv9I2qtS4O9obxN4=
Subject key identifier: 07:35:C6:8D:2E:E6:2F:17:10:D6:63:CF:8B:56:48:74:88:BE:5F:78
Certificate issuer: /CN=2909fffcd81a66bc98b629d4c0579247645f0fe4
Certificate serial: 157456A7
Authority key identifier: 29:09:FF:FC:D8:1A:66:BC:98:B6:29:D4:C0:57:92:47:64:5F:0F:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQn__NgaZryYtinUwFeSR2RfD-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/de3041-9536-492e-a9cd-f2ae7bc7ecc5/1/BzXGjS7mLxcQ1mPPi1ZIdIi-X3g.roa
Signing time: Sat 01 Jan 2022 06:06:15 +0000
ROA not before: Sat 01 Jan 2022 06:06:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8315
IP address blocks: 145.131.0.0/20 maxlen: 24
145.131.16.0/20 maxlen: 24
145.131.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 359945895 (0x157456a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2909fffcd81a66bc98b629d4c0579247645f0fe4
Validity
Not Before: Jan 1 06:06:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0735c68d2ee62f1710d663cf8b56487488be5f78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d1:f7:24:cd:bc:cf:c2:5d:97:ab:e9:80:c7:
db:6d:3d:c8:b5:1d:a1:3a:38:39:06:7a:a9:ba:bb:
75:22:b1:0e:69:f6:0f:df:af:21:58:39:3f:04:fd:
9e:ba:59:43:e1:2a:9f:56:02:e7:72:33:5a:ff:31:
20:0e:11:a1:f9:c6:55:a4:13:ad:df:75:b9:18:fb:
c4:ea:bf:c3:34:ee:09:c5:44:46:f2:2c:fa:49:06:
ed:9a:4b:a3:5e:d5:92:1b:a9:dc:03:b1:b6:8f:eb:
e1:29:8e:98:81:d3:eb:3a:f5:05:fc:f0:dd:b0:e6:
23:74:37:13:22:3c:1a:da:7a:4a:ca:d4:cb:74:f6:
f3:24:b0:b5:bc:f9:ec:2c:c7:2c:46:c7:da:e0:03:
e0:8d:16:a1:52:ff:c9:63:a1:23:1e:63:66:d2:b9:
29:71:1b:da:9e:de:7e:80:0b:33:02:9d:57:f3:1a:
36:66:9f:f6:87:43:99:89:52:88:2b:cf:f2:d7:2f:
96:8c:ba:cd:b5:13:54:27:2a:ed:be:a7:19:78:a8:
b5:f7:e6:88:46:ee:58:96:60:0f:11:d8:8d:5a:2a:
90:44:5a:40:56:ff:05:2d:87:b1:04:dc:61:a5:69:
06:07:3a:07:63:8b:36:09:cd:b4:45:5a:a1:c8:ac:
ef:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:35:C6:8D:2E:E6:2F:17:10:D6:63:CF:8B:56:48:74:88:BE:5F:78
X509v3 Authority Key Identifier:
keyid:29:09:FF:FC:D8:1A:66:BC:98:B6:29:D4:C0:57:92:47:64:5F:0F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQn__NgaZryYtinUwFeSR2RfD-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/de3041-9536-492e-a9cd-f2ae7bc7ecc5/1/BzXGjS7mLxcQ1mPPi1ZIdIi-X3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/de3041-9536-492e-a9cd-f2ae7bc7ecc5/1/KQn__NgaZryYtinUwFeSR2RfD-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.131.0.0-145.131.47.255
Signature Algorithm: sha256WithRSAEncryption
8c:cc:36:de:2c:f8:13:53:99:30:e2:d5:eb:cb:34:0c:81:ad:
68:ef:27:8e:8a:da:c5:e5:06:dc:6e:46:e4:21:cc:f7:48:8b:
06:51:e6:ac:6c:44:a6:a1:2a:1d:4f:3f:33:ed:89:3d:dc:c8:
dc:61:c3:bc:6b:79:22:ba:5a:ad:cd:c0:e9:9d:20:3d:75:60:
6f:a5:d7:e2:c1:cf:2e:af:af:17:2f:b0:0e:4f:4c:9a:14:d9:
d8:5f:12:38:d9:2a:6f:8e:b6:e3:a9:df:54:6c:25:70:db:57:
9d:a1:c8:50:6a:39:31:92:fc:0b:28:33:31:71:6c:6e:f0:8a:
26:88:c7:68:3a:6f:18:cd:ac:c3:cd:44:0d:b1:90:10:f6:97:
3e:72:c9:fe:e6:17:fb:f3:ea:51:b5:78:0d:1a:8b:73:98:8a:
b5:65:aa:d0:06:06:6f:dc:0d:40:73:53:b7:51:8b:7b:4d:d5:
96:0d:05:c3:e5:ae:5c:d9:52:7d:17:9c:b4:4b:16:7f:1a:b7:
41:3c:18:59:e1:c8:b3:4b:da:eb:7c:b0:14:85:30:3a:b8:42:
27:83:f4:51:47:ed:77:f4:e3:28:67:bf:db:aa:b8:ee:82:0d:
ca:39:92:45:90:98:d2:19:11:17:39:70:08:c7:82:e1:bb:a8:
99:eb:f1:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:11 2024 by rpki-client on console-ams.rpki-client.org