Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/BNW-tUM_vnbi6NLIRM0K4AkcqVk.roa
File: BNW-tUM_vnbi6NLIRM0K4AkcqVk.roa (raw, json)
Hash identifier: jNDw+oIhMtcU8tVDP55t3INMVUrAHMzccfRJOfpd0XU=
Subject key identifier: 04:D5:BE:B5:43:3F:BE:76:E2:E8:D2:C8:44:CD:0A:E0:09:1C:A9:59
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0182CA97BE9E67699ED946BB0475C4BBD76D
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/BNW-tUM_vnbi6NLIRM0K4AkcqVk.roa
Signing time: Tue 23 Aug 2022 12:05:18 +0000
ROA not before: Tue 23 Aug 2022 12:05:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 77.90.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ca:97:be:9e:67:69:9e:d9:46:bb:04:75:c4:bb:d7:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Aug 23 12:05:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04d5beb5433fbe76e2e8d2c844cd0ae0091ca959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a2:4d:23:c8:48:e5:28:71:81:51:f8:26:e4:
fb:5f:00:20:55:09:9e:52:a7:91:00:82:f2:ec:2f:
e2:f4:6d:24:e7:ae:93:c4:40:e9:3c:0d:ed:c2:b7:
2f:f3:82:92:0c:ad:34:4b:1f:df:40:e4:b8:ac:02:
e5:25:37:cd:90:d8:58:70:82:d0:46:89:76:03:a1:
28:4a:c2:5d:4d:ca:6d:30:09:9f:33:bb:ec:0d:63:
c5:93:eb:5d:cc:67:86:0b:98:50:52:48:68:86:27:
45:d7:d3:e1:e7:55:70:4f:f7:5d:72:16:31:d8:59:
94:a3:4d:41:8d:41:47:ee:b1:d9:4d:9a:fa:2f:03:
5b:39:4d:1f:7b:49:be:62:2a:69:04:a6:37:3a:fe:
ac:ab:59:81:2d:be:52:69:89:33:2d:6e:ba:f3:eb:
ac:91:77:c9:c4:a9:4b:14:4f:05:f8:e5:0f:29:28:
83:05:b8:76:7b:ad:18:c4:0f:b5:0c:de:50:77:e1:
80:a6:26:e1:13:c1:f5:4e:e4:dd:ba:28:65:61:65:
93:cb:95:62:8b:a8:1d:ca:16:ac:d7:96:8b:34:ac:
5e:35:ca:ab:67:ee:11:11:2a:98:07:e8:91:e1:45:
81:2a:2e:92:0e:a3:8c:d5:cd:fe:ad:c8:48:a9:6a:
0d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:D5:BE:B5:43:3F:BE:76:E2:E8:D2:C8:44:CD:0A:E0:09:1C:A9:59
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/BNW-tUM_vnbi6NLIRM0K4AkcqVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.184.0/24
Signature Algorithm: sha256WithRSAEncryption
54:f7:e3:8f:44:53:1d:7d:14:f3:37:05:be:ce:10:d3:73:db:
54:37:92:7e:7c:90:92:a0:6f:bc:fd:a9:b6:9e:c2:2b:e5:48:
c7:9f:0a:2e:c9:06:30:35:16:44:70:fb:49:e2:b0:f9:a8:58:
ba:d7:8e:d5:37:98:e2:83:7b:bd:89:ac:e4:49:e1:65:68:4d:
4f:a6:09:12:fb:b4:36:a6:21:bb:2c:32:97:15:48:74:b4:ea:
3f:e7:b0:68:24:38:ef:20:17:5b:7b:7d:66:e8:f8:c0:63:cf:
79:3f:34:44:bd:2b:3f:ea:02:78:9d:aa:03:48:d2:0e:d3:7d:
82:e6:a0:d6:86:90:6c:c0:04:b7:98:ca:6a:81:94:a4:88:1f:
95:22:f3:69:c1:1d:b6:86:25:9f:2a:a6:33:e9:a5:8e:23:92:
9e:1d:fa:d2:f0:18:b7:dd:7d:7f:86:ae:46:1d:f6:73:47:f3:
5b:6d:73:bd:b0:80:c1:ec:92:bb:ac:e4:83:e5:21:ea:5c:aa:
e4:39:61:b7:2a:9b:a6:98:50:44:74:68:7d:47:4f:01:6c:b1:
53:0a:f5:ca:42:c7:77:a8:08:6e:69:b8:99:d9:0c:4b:d5:06:
69:9a:4e:b7:70:19:9b:45:20:ac:38:be:c6:17:04:31:27:e6:
2f:f0:bc:8e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYLKl76eZ2me2Ua7BHXEu9dtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiNDc2ZTEyZTg5ODdlNWIzMDJjZGMyNGJkZDlkYjNmZTgz
Yzg0NDkwHhcNMjIwODIzMTIwNTE4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNGQ1YmViNTQzM2ZiZTc2ZTJlOGQyYzg0NGNkMGFlMDA5MWNhOTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt6JNI8hI5ShxgVH4JuT7XwAgVQme
UqeRAILy7C/i9G0k566TxEDpPA3twrcv84KSDK00Sx/fQOS4rALlJTfNkNhYcILQ
Rol2A6EoSsJdTcptMAmfM7vsDWPFk+tdzGeGC5hQUkhohidF19Ph51VwT/ddchYx
2FmUo01BjUFH7rHZTZr6LwNbOU0fe0m+YippBKY3Ov6sq1mBLb5SaYkzLW668+us
kXfJxKlLFE8F+OUPKSiDBbh2e60YxA+1DN5Qd+GApibhE8H1TuTduihlYWWTy5Vi
i6gdyhas15aLNKxeNcqrZ+4RESqYB+iR4UWBKi6SDqOM1c3+rchIqWoNjQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFATVvrVDP7524ujSyETNCuAJHKlZMB8GA1UdIwQY
MBaAFDtHbhLomH5bMCzcJL3Z2z/oPIRJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMt
NmNiZmYzYzRkYTAxLzEvQk5XLXRVTV92bmJpNk5MSVJNMEs0QWtjcVZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMtNmNiZmYzYzRkYTAx
LzEvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVq4MA0G
CSqGSIb3DQEBCwUAA4IBAQBU9+OPRFMdfRTzNwW+zhDTc9tUN5J+fJCSoG+8/am2
nsIr5UjHnwouyQYwNRZEcPtJ4rD5qFi6147VN5jig3u9iazkSeFlaE1PpgkS+7Q2
piG7LDKXFUh0tOo/57BoJDjvIBdbe31m6PjAY895PzREvSs/6gJ4naoDSNIO032C
5qDWhpBswAS3mMpqgZSkiB+VIvNpwR22hiWfKqYz6aWOI5KeHfrS8Bi33X1/hq5G
HfZzR/NbbXO9sIDB7JK7rOSD5SHqXKrkOWG3KpummFBEdGh9R08BbLFTCvXKQsd3
qAhuabiZ2QxL1QZpmk63cBmbRSCsOL7GFwQxJ+Yv8LyO
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:22 2023 by rpki-client on console-fra.rpki-client.org