Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/BCs-I4g5Bn6RSBnNHJHn66wpOxg.roa
File: BCs-I4g5Bn6RSBnNHJHn66wpOxg.roa (raw, json)
Hash identifier: juZoloZRR/cI5I70Jduru1OM8fUUvwJOfKiIosox+nw=
Subject key identifier: 04:2B:3E:23:88:39:06:7E:91:48:19:CD:1C:91:E7:EB:AC:29:3B:18
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01823CB53767F459B0775B61D0864E343EEE
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/BCs-I4g5Bn6RSBnNHJHn66wpOxg.roa
Signing time: Tue 26 Jul 2022 22:51:25 +0000
ROA not before: Tue 26 Jul 2022 22:51:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 188.209.136.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3c:b5:37:67:f4:59:b0:77:5b:61:d0:86:4e:34:3e:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jul 26 22:51:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=042b3e238839067e914819cd1c91e7ebac293b18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:25:b5:ab:da:6d:7a:f4:37:e9:8e:b8:b4:49:
87:be:fa:8a:ab:31:9a:a1:7b:22:3e:d6:81:73:da:
f5:75:d4:c4:a7:f5:5b:86:95:3a:8f:cd:87:9e:4c:
e2:fc:3a:f4:59:48:2a:b4:3e:76:cb:dd:19:c6:c2:
99:bc:f7:9f:7a:28:00:b7:d4:9d:b6:fe:f5:b7:ea:
d3:9b:bf:8b:b7:db:99:79:af:c7:0e:49:5f:e1:c1:
c6:71:3b:c8:41:67:d7:5f:7d:23:ae:3d:a1:b5:f5:
b7:b5:3c:4e:dc:de:0b:26:7a:bb:14:f2:e3:d8:d1:
f5:49:70:ad:a9:e4:2e:21:13:17:ac:29:47:a9:df:
97:7e:28:13:83:db:61:c2:1e:21:cd:94:2a:2a:5f:
7d:d7:62:eb:dc:30:e8:fb:63:48:bc:77:98:c8:44:
0a:e0:4f:48:6e:fe:2f:af:26:60:5f:95:63:8e:73:
55:87:6e:2a:69:fd:8f:ef:f4:b2:44:fa:7c:75:2d:
6b:72:de:1f:a7:ec:7c:ad:a6:48:47:30:d8:97:25:
3e:d8:ab:8f:f5:13:bb:8f:c1:60:b9:24:47:49:d4:
85:60:1d:26:96:d6:0e:8c:2d:d8:f4:ac:6f:61:b1:
a9:36:ef:62:1a:b3:8b:29:a7:34:c2:f6:30:be:fd:
29:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:2B:3E:23:88:39:06:7E:91:48:19:CD:1C:91:E7:EB:AC:29:3B:18
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/BCs-I4g5Bn6RSBnNHJHn66wpOxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.136.0/22
Signature Algorithm: sha256WithRSAEncryption
10:33:90:a9:58:e4:36:40:27:96:d9:07:d5:03:b0:dd:f8:8b:
5b:67:59:92:c2:16:34:d7:67:70:3d:e8:5d:88:41:f1:1e:15:
22:35:44:db:13:cc:3e:ac:a1:7f:12:7e:48:2d:43:a4:43:dd:
51:6f:88:4d:12:5f:1d:dc:ea:36:7c:38:d9:e4:21:c3:9f:09:
30:af:64:34:62:c8:f7:04:9b:36:40:1a:45:b6:c4:09:3e:7d:
bd:9c:44:49:4c:fa:82:a3:5b:e6:47:eb:08:da:2e:8a:4d:33:
f7:11:c8:3d:d6:85:71:82:cf:d4:06:6c:80:b9:ea:c6:8f:f8:
67:23:fc:c7:1e:8d:ae:97:d2:c2:84:1b:7d:a7:68:ac:4b:de:
18:27:78:79:4f:3f:cc:c1:df:eb:ce:a0:da:eb:a0:37:6a:71:
e6:04:fb:a1:15:b8:b4:10:b7:5f:04:1c:d0:a2:9b:6e:3c:99:
d5:91:3c:dc:3a:1e:ee:47:90:ed:43:9b:11:8f:77:0e:25:0a:
0b:0e:f6:3a:5a:b4:eb:bf:13:fe:33:ba:d5:67:70:85:a6:e1:
56:01:af:1c:cc:5e:ad:22:ac:9d:2b:e9:69:a7:00:83:e8:2b:
57:e1:ea:91:57:8c:27:2d:11:65:47:c1:39:7e:5f:d7:6b:8b:
4b:a4:35:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:54 2024 by rpki-client on console-ams.rpki-client.org