Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/BBZdVjV4MLxus9jhXM4DWZBjqjk.roa
File: BBZdVjV4MLxus9jhXM4DWZBjqjk.roa (raw, json)
Hash identifier: XZP2gRKBwhcVhqcRc/OTwp43+ev6hD7cjDABvd7q4Cw=
Subject key identifier: 04:16:5D:56:35:78:30:BC:6E:B3:D8:E1:5C:CE:03:59:90:63:AA:39
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 018432AC17AA09291E6C05EAC933AAC91603
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/BBZdVjV4MLxus9jhXM4DWZBjqjk.roa
Signing time: Tue 01 Nov 2022 10:10:49 +0000
ROA not before: Tue 01 Nov 2022 10:10:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208911
IP address blocks: 185.230.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:32:ac:17:aa:09:29:1e:6c:05:ea:c9:33:aa:c9:16:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Nov 1 10:10:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04165d56357830bc6eb3d8e15cce03599063aa39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0a:83:20:8c:75:2f:18:23:df:2f:14:1a:62:
95:1c:36:d2:9e:bc:93:b6:93:17:6e:3e:b9:b5:1a:
c5:ca:15:4f:34:72:bf:6e:82:3a:3b:38:89:05:69:
65:76:5e:4e:30:ae:c6:a8:1b:22:85:0c:8b:6b:90:
7f:e4:17:5d:a8:4d:a0:63:e0:12:55:b9:14:59:bc:
de:33:01:44:db:b3:b6:1d:3a:dc:83:93:39:eb:a0:
89:d0:8a:61:76:5f:2f:65:3f:20:66:31:83:d0:ea:
95:3b:b1:5a:27:22:95:92:45:88:72:43:6f:e4:a3:
3d:13:8f:36:6b:f5:d2:ac:3a:fa:56:22:74:99:3c:
dd:96:36:a8:11:17:05:20:21:61:84:58:a4:1a:5b:
93:fc:04:22:a6:62:4e:16:c6:54:c0:e7:41:bd:bd:
a8:a7:e8:45:5b:76:53:2c:d8:60:10:0a:ff:05:12:
00:24:f9:7d:84:c0:7b:08:ec:3c:cc:20:5d:97:65:
ad:e2:1c:b9:e9:02:33:dc:9f:07:22:b1:7e:0c:70:
3f:c9:ca:ac:a6:71:ba:f2:f3:59:10:1f:46:f1:02:
11:d8:77:71:27:7f:d9:3c:62:9c:42:73:1b:39:c0:
ed:7f:05:3a:11:ec:21:96:83:6f:11:b6:c5:8a:d1:
dd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:16:5D:56:35:78:30:BC:6E:B3:D8:E1:5C:CE:03:59:90:63:AA:39
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/BBZdVjV4MLxus9jhXM4DWZBjqjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.15.0/24
Signature Algorithm: sha256WithRSAEncryption
89:e6:1c:bf:c8:26:d8:fb:10:35:84:5a:c6:05:1a:ea:4b:57:
ea:53:a5:e2:e1:68:69:23:61:ad:13:62:e5:e9:23:33:a3:db:
d4:a3:71:a7:47:4e:77:b0:db:4a:5b:e6:42:ff:a0:97:92:af:
b0:a4:8c:35:7d:9a:79:0d:0b:74:ff:d7:89:a1:66:d9:d3:85:
bc:5f:32:83:57:30:ec:07:5c:14:95:d3:87:fa:cf:3c:a1:ae:
ab:0b:2b:b6:ff:83:2e:61:9d:a8:8b:4a:f7:d6:7b:86:c7:91:
2e:ed:a1:b2:d1:ce:f7:26:4a:cd:a0:5f:9c:63:ea:f9:e4:9b:
55:cd:b7:df:48:34:91:cc:fa:39:8e:a4:16:f2:4a:da:82:76:
cc:6a:c4:97:0f:71:89:d5:b8:6f:89:3e:77:92:d6:13:10:76:
c9:79:4a:14:20:6b:bb:29:79:57:21:3f:e4:f4:c5:53:c9:5b:
fa:83:4f:cc:64:1e:57:d5:ea:c8:43:13:9e:44:a8:ae:89:57:
2c:16:c6:71:ea:6b:bd:97:54:e3:a4:5b:ec:4d:89:9e:65:29:
7f:37:65:c5:06:73:6b:b0:b0:10:ee:16:ee:f8:f6:8d:91:7f:
38:af:ef:8d:f9:90:07:d2:00:bd:6c:ad:67:e6:a5:5b:db:cb:
51:1a:18:91
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQyrBeqCSkebAXqyTOqyRYDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiNDc2ZTEyZTg5ODdlNWIzMDJjZGMyNGJkZDlkYjNmZTgz
Yzg0NDkwHhcNMjIxMTAxMTAxMDQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDE2NWQ1NjM1NzgzMGJjNmViM2Q4ZTE1Y2NlMDM1OTkwNjNhYTM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwAqDIIx1Lxgj3y8UGmKVHDbSnryT
tpMXbj65tRrFyhVPNHK/boI6OziJBWlldl5OMK7GqBsihQyLa5B/5BddqE2gY+AS
VbkUWbzeMwFE27O2HTrcg5M566CJ0Iphdl8vZT8gZjGD0OqVO7FaJyKVkkWIckNv
5KM9E482a/XSrDr6ViJ0mTzdljaoERcFICFhhFikGluT/AQipmJOFsZUwOdBvb2o
p+hFW3ZTLNhgEAr/BRIAJPl9hMB7COw8zCBdl2Wt4hy56QIz3J8HIrF+DHA/ycqs
pnG68vNZEB9G8QIR2HdxJ3/ZPGKcQnMbOcDtfwU6EewhloNvEbbFitHdGwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAQWXVY1eDC8brPY4VzOA1mQY6o5MB8GA1UdIwQY
MBaAFDtHbhLomH5bMCzcJL3Z2z/oPIRJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMt
NmNiZmYzYzRkYTAxLzEvQkJaZFZqVjRNTHh1czlqaFhNNERXWkJqcWprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMtNmNiZmYzYzRkYTAx
LzEvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueYPMA0G
CSqGSIb3DQEBCwUAA4IBAQCJ5hy/yCbY+xA1hFrGBRrqS1fqU6Xi4WhpI2GtE2Ll
6SMzo9vUo3GnR053sNtKW+ZC/6CXkq+wpIw1fZp5DQt0/9eJoWbZ04W8XzKDVzDs
B1wUldOH+s88oa6rCyu2/4MuYZ2oi0r31nuGx5Eu7aGy0c73JkrNoF+cY+r55JtV
zbffSDSRzPo5jqQW8kragnbMasSXD3GJ1bhviT53ktYTEHbJeUoUIGu7KXlXIT/k
9MVTyVv6g0/MZB5X1erIQxOeRKiuiVcsFsZx6mu9l1TjpFvsTYmeZSl/N2XFBnNr
sLAQ7hbu+PaNkX84r++N+ZAH0gC9bK1n5qVb28tRGhiR
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:22 2023 by rpki-client on console-fra.rpki-client.org