Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b816b9-91b0-46da-8e58-91488a34fcc8/1/8oLgZF5t-BZ78NKoKEiN8-ko94c.roa
File: 8oLgZF5t-BZ78NKoKEiN8-ko94c.roa (raw, json)
Hash identifier: A8BRPYZDZAtzeFDWnUJq7LaSPjRHfTF1ctyCkohSF18=
Subject key identifier: F2:82:E0:64:5E:6D:F8:16:7B:F0:D2:A8:28:48:8D:F3:E9:28:F7:87
Certificate issuer: /CN=bc9c405f142e53eb67b1c49923ab795e84328c9b
Certificate serial: 12E9C24A
Authority key identifier: BC:9C:40:5F:14:2E:53:EB:67:B1:C4:99:23:AB:79:5E:84:32:8C:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vJxAXxQuU-tnscSZI6t5XoQyjJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b816b9-91b0-46da-8e58-91488a34fcc8/1/8oLgZF5t-BZ78NKoKEiN8-ko94c.roa
Signing time: Sat 01 Jan 2022 05:53:33 +0000
ROA not before: Sat 01 Jan 2022 05:53:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50289
IP address blocks: 62.78.32.0/19 maxlen: 24
185.142.64.0/22 maxlen: 24
37.123.216.0/21 maxlen: 24
2a03:a400::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 317309514 (0x12e9c24a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc9c405f142e53eb67b1c49923ab795e84328c9b
Validity
Not Before: Jan 1 05:53:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f282e0645e6df8167bf0d2a828488df3e928f787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3b:a8:af:ba:fd:a9:11:e1:dd:f5:9d:2b:f2:
ea:aa:58:e0:d6:45:77:24:46:a1:a4:c6:52:dd:6f:
1e:64:36:13:26:ee:44:67:a2:ba:e7:0f:a1:ac:70:
28:7f:8a:fd:14:9e:6b:81:dc:a1:b6:02:5a:eb:5f:
5a:98:87:5a:2c:29:75:40:74:d5:68:91:06:4f:81:
b2:85:69:0a:f4:af:b1:4d:90:d7:49:1e:a8:cf:37:
c3:ed:69:52:9a:cb:75:e1:ad:c7:ca:73:43:dd:59:
ad:43:6b:44:97:38:e5:31:e6:4e:d6:24:08:27:02:
89:7d:35:07:e1:05:38:71:15:e7:49:25:41:37:1e:
37:24:7f:3a:b2:86:b9:d3:2c:91:69:f8:c2:e8:3c:
26:12:a3:4f:54:f0:1b:d6:fb:2f:15:6f:52:c2:b0:
69:35:05:c0:38:16:3d:c3:78:e8:7f:81:18:6f:6b:
6a:6e:04:c4:9f:57:b9:19:80:7f:ee:69:03:30:52:
b1:9e:d7:88:e9:1f:5c:a7:3b:92:34:0d:7c:15:ea:
c6:b9:e8:24:d3:c6:d1:e1:98:1b:7c:27:32:19:6a:
cd:a5:1c:56:8d:7e:4d:66:5b:b4:bc:03:6b:cc:96:
55:4a:72:7a:f0:2e:92:7e:59:8f:28:8a:13:eb:b2:
3b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:82:E0:64:5E:6D:F8:16:7B:F0:D2:A8:28:48:8D:F3:E9:28:F7:87
X509v3 Authority Key Identifier:
keyid:BC:9C:40:5F:14:2E:53:EB:67:B1:C4:99:23:AB:79:5E:84:32:8C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vJxAXxQuU-tnscSZI6t5XoQyjJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b816b9-91b0-46da-8e58-91488a34fcc8/1/8oLgZF5t-BZ78NKoKEiN8-ko94c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b816b9-91b0-46da-8e58-91488a34fcc8/1/vJxAXxQuU-tnscSZI6t5XoQyjJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.123.216.0/21
62.78.32.0/19
185.142.64.0/22
IPv6:
2a03:a400::/32
Signature Algorithm: sha256WithRSAEncryption
69:1d:93:99:4f:3a:0b:e2:29:f1:82:51:db:6c:60:44:a8:47:
7d:61:07:52:f3:be:f7:75:cb:f7:f2:36:85:bb:ef:bc:d1:b2:
da:a9:e3:d9:46:36:8f:cb:07:cb:e7:fd:50:9c:32:2f:8b:00:
28:d7:67:55:9a:70:ea:35:9c:b8:8b:31:f5:bb:63:47:4a:df:
16:77:27:1d:5f:0e:85:ff:09:af:1c:c3:11:49:c2:ec:66:9c:
05:af:74:89:50:41:e0:f4:ed:1a:14:0b:13:5e:8a:e5:89:f3:
49:06:56:1b:30:f6:e2:44:cd:47:96:fd:9f:45:df:9b:05:75:
c9:90:60:e5:5b:43:9a:42:5f:fe:64:ff:e5:99:30:c7:c1:30:
fb:46:3a:a2:f8:07:bf:bc:62:1f:5e:6b:84:69:15:ab:03:5b:
6e:0a:19:02:f2:86:fc:41:9f:e8:36:09:5c:9e:d9:05:14:1e:
4e:a9:c5:6a:b8:29:b4:ad:8c:ee:19:fa:42:c8:e6:14:e2:13:
63:71:09:80:d8:c4:bd:0b:2f:5d:0e:5a:b6:d6:f5:48:86:e2:
97:16:0b:27:af:06:98:57:31:d3:07:5d:d1:d2:08:eb:33:2f:
15:e0:cb:d1:da:8b:13:16:c6:8e:77:4a:6d:04:5a:0b:99:f2:
4b:4e:de:d8
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:57 2023 by rpki-client on console-ams.rpki-client.org