Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/BwFG7cwaKXVo_knTVaF_aMOkrQ4.roa
File: BwFG7cwaKXVo_knTVaF_aMOkrQ4.roa (raw, json)
Hash identifier: 5F4w+1/Rspau7K9pF9ssNTHMvA9duOeTRaQCuKOs/jg=
Subject key identifier: 07:01:46:ED:CC:1A:29:75:68:FE:49:D3:55:A1:7F:68:C3:A4:AD:0E
Certificate issuer: /CN=ac328756dece8f29f97f41b81a087db524e159b7
Certificate serial: 030946F2
Authority key identifier: AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/BwFG7cwaKXVo_knTVaF_aMOkrQ4.roa
Signing time: Sat 01 Jan 2022 02:54:10 +0000
ROA not before: Sat 01 Jan 2022 02:54:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212130
IP address blocks: 193.163.149.0/24 maxlen: 24
2a10:af80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50939634 (0x30946f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac328756dece8f29f97f41b81a087db524e159b7
Validity
Not Before: Jan 1 02:54:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=070146edcc1a297568fe49d355a17f68c3a4ad0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b3:f2:7e:b7:01:28:d2:ec:12:72:f0:5b:58:
c3:dd:1e:b0:64:a2:16:0c:69:f7:41:ec:64:32:fa:
86:a3:a0:ca:2e:7a:e1:e3:22:38:64:e2:5e:0e:91:
cb:20:34:08:e3:86:0e:5f:79:43:6b:61:25:3f:e4:
78:9b:32:04:cf:bf:7e:1d:99:c7:c0:49:df:35:36:
f0:f1:05:31:b6:48:8e:98:d3:0c:3c:e0:2e:14:20:
9c:7d:7e:81:35:29:02:32:50:04:5c:5f:f9:f8:c7:
25:76:30:c3:71:40:07:a2:97:10:b9:d9:43:80:e5:
34:29:3a:a5:8a:cd:fd:ce:9b:4e:a3:c8:45:97:8e:
a7:b6:ef:6d:83:62:15:4a:57:3b:15:96:a7:fb:ee:
6d:da:51:8f:26:18:db:a6:aa:de:d3:65:2e:7e:45:
25:1e:1d:78:c9:93:4c:d8:08:92:b2:8a:3b:1b:ff:
d8:64:9f:24:55:75:73:f2:92:7c:62:d8:f8:4c:ed:
cd:50:c9:62:70:56:45:23:90:0b:e0:5c:a4:f9:d5:
41:38:25:c0:d9:79:cb:07:2d:d9:de:f1:06:89:f2:
d9:ee:13:68:21:81:e9:c2:5b:c2:2c:dd:c2:fd:92:
62:11:9d:ce:8c:5f:bb:45:b2:4b:07:f5:b9:76:64:
ce:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:01:46:ED:CC:1A:29:75:68:FE:49:D3:55:A1:7F:68:C3:A4:AD:0E
X509v3 Authority Key Identifier:
keyid:AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/BwFG7cwaKXVo_knTVaF_aMOkrQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.149.0/24
IPv6:
2a10:af80::/32
Signature Algorithm: sha256WithRSAEncryption
21:ba:dd:cb:d2:78:be:e7:c2:d3:5c:56:d6:6c:41:eb:5c:34:
53:45:e3:6e:58:c6:0a:67:b6:1d:5b:c5:77:e2:9a:ba:2a:79:
e2:9e:ec:68:85:06:61:3e:64:a9:53:a1:97:65:51:53:ce:cd:
c5:d9:ab:4c:47:d3:33:31:4e:e2:b5:4d:0f:4e:53:3b:62:8b:
f4:a2:7f:07:03:f7:f0:05:83:42:55:ee:74:61:80:d5:dd:d5:
cc:5e:3c:19:a9:c3:59:8e:40:06:2e:8c:d4:e3:5c:f2:ea:7d:
84:7e:93:cd:39:a6:75:6c:e6:d4:ef:86:d9:98:de:e6:db:50:
fb:c5:f7:78:b3:08:ac:c9:b0:a1:20:56:7b:46:c8:a0:83:c7:
34:e5:28:29:ca:2a:df:98:c3:d3:3e:cf:f2:ab:a0:86:32:81:
02:96:b9:45:db:0e:d3:29:d9:f0:06:83:e2:ec:ae:b8:dd:b1:
99:d3:2e:e6:91:18:4a:32:8a:86:4c:7a:9d:be:74:49:83:4d:
e0:cd:40:65:ff:91:57:e3:98:8b:ff:0c:f6:eb:e8:03:28:d4:
41:e0:06:1a:55:b7:f5:ad:1b:60:3e:c2:dd:73:60:ad:df:80:
56:df:d0:0a:b3:73:3e:7c:68:95:6e:a3:ce:b4:e5:8c:f5:da:
4e:28:be:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:40 2024 by rpki-client on console-ams.rpki-client.org