Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/51f7f8-0595-4654-943b-1beac7440262/1/BzJh3QdJrAWASncmVpksDYK2y2A.roa
File: BzJh3QdJrAWASncmVpksDYK2y2A.roa (raw, json)
Hash identifier: EOa22gUOkm+xTn+L5e7G0W2VTktbeEDcQOjP3mFzmNg=
Subject key identifier: 07:32:61:DD:07:49:AC:05:80:4A:77:26:56:99:2C:0D:82:B6:CB:60
Certificate issuer: /CN=01127566a5ac41e66b4c7537a60fdcbbfab39a17
Certificate serial: 06A57C9F
Authority key identifier: 01:12:75:66:A5:AC:41:E6:6B:4C:75:37:A6:0F:DC:BB:FA:B3:9A:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ARJ1ZqWsQeZrTHU3pg_cu_qzmhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/51f7f8-0595-4654-943b-1beac7440262/1/BzJh3QdJrAWASncmVpksDYK2y2A.roa
Signing time: Sat 01 Jan 2022 08:54:24 +0000
ROA not before: Sat 01 Jan 2022 08:54:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209277
IP address blocks: 88.214.16.0/24 maxlen: 24
88.214.17.0/24 maxlen: 24
88.214.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111508639 (0x6a57c9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01127566a5ac41e66b4c7537a60fdcbbfab39a17
Validity
Not Before: Jan 1 08:54:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=073261dd0749ac05804a772656992c0d82b6cb60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0c:bf:4b:f7:c8:54:bc:20:a4:50:5f:1f:09:
00:57:d9:f4:38:05:64:12:19:0a:43:69:3c:8a:2d:
bf:f2:49:19:fd:ab:0d:8f:e9:1e:81:6e:7c:cc:67:
81:3d:24:02:ec:05:62:57:1d:8f:3d:cb:b5:0b:50:
2f:05:39:69:e6:88:58:85:29:b8:5f:49:53:ee:89:
0a:80:8b:c3:74:5f:b6:d8:1f:c6:b9:a6:76:f4:22:
ee:90:81:25:30:73:7e:c3:f2:54:ca:d3:4d:55:00:
3f:9b:fb:91:11:1e:71:54:20:67:ad:08:fe:4d:1a:
a8:c4:7b:8e:3e:5b:7a:27:5a:60:bf:94:f9:17:68:
56:77:08:c5:ca:3e:69:a0:6f:83:6a:de:80:38:82:
eb:04:93:b4:ad:55:a9:a5:e6:f1:ad:fa:06:20:56:
9c:f5:3a:3a:5e:3c:26:fc:b6:0c:e8:2c:8d:01:b1:
87:a0:d5:0e:e4:ea:e4:21:99:7f:6d:19:5e:43:f9:
bd:a4:db:fc:17:b1:92:cb:a2:91:dd:79:51:12:72:
35:36:5b:24:29:d8:df:b4:41:fb:7a:bc:0b:53:e8:
f3:25:4c:91:f7:61:cb:c2:19:7c:b2:c3:b2:d3:75:
ae:55:11:bf:ae:56:0d:0a:42:5e:22:ea:54:b1:0b:
1b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:32:61:DD:07:49:AC:05:80:4A:77:26:56:99:2C:0D:82:B6:CB:60
X509v3 Authority Key Identifier:
keyid:01:12:75:66:A5:AC:41:E6:6B:4C:75:37:A6:0F:DC:BB:FA:B3:9A:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ARJ1ZqWsQeZrTHU3pg_cu_qzmhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/51f7f8-0595-4654-943b-1beac7440262/1/BzJh3QdJrAWASncmVpksDYK2y2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/51f7f8-0595-4654-943b-1beac7440262/1/ARJ1ZqWsQeZrTHU3pg_cu_qzmhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.214.16.0/23
88.214.19.0/24
Signature Algorithm: sha256WithRSAEncryption
33:6c:d7:41:5f:7d:86:54:b7:1d:13:1b:83:e6:f3:fb:f2:8b:
22:5b:de:f5:44:52:ef:bf:0e:da:53:49:00:f2:8f:5d:b1:09:
10:2a:88:ed:9e:8e:fd:d8:63:d9:2f:0b:01:72:20:bc:fe:8d:
02:3f:c5:73:c6:30:57:27:43:37:50:f4:21:5f:b9:af:35:f4:
d8:e2:c0:26:4b:62:56:fd:4c:a4:50:9c:2c:c9:8d:9b:9e:7a:
ae:9e:1b:b0:52:40:f6:6b:5f:96:f5:e4:99:1a:b5:bc:a9:a3:
65:4c:23:5b:a1:ff:e8:61:11:8e:a6:26:cc:ed:87:32:0c:11:
b4:ae:1e:69:5a:85:6d:a4:63:c0:41:e3:04:72:98:93:f8:c9:
ea:22:63:e1:71:13:97:5a:1d:79:be:15:81:f1:93:53:d2:fb:
d6:a1:5b:8f:83:69:d4:cf:4f:45:8d:17:21:16:7a:7a:ce:2f:
3c:46:ea:81:ea:4e:92:80:ea:a5:3c:bf:b4:a9:64:42:b2:db:
7b:7f:3a:0a:52:b2:42:ee:94:95:32:3e:d7:2c:8d:59:22:00:
bb:3b:aa:62:00:e0:08:aa:e0:78:9f:fa:b5:08:3d:24:78:41:
6c:e5:13:38:a9:da:43:43:3e:ae:24:32:d1:36:e2:b6:2a:a2:
af:15:d8:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:07 2023 by rpki-client on console-fra.rpki-client.org