Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/45c862-9e33-45c8-a728-7a2fd10269be/1/BXutDTPMY0r8R-4ZWk3CxKSKwLw.roa
File: BXutDTPMY0r8R-4ZWk3CxKSKwLw.roa (raw, json)
Hash identifier: r42dLNHh7FF98cYkr/twEwJ/I3Qudv7M3y0hwEmvLp0=
Subject key identifier: 05:7B:AD:0D:33:CC:63:4A:FC:47:EE:19:5A:4D:C2:C4:A4:8A:C0:BC
Certificate issuer: /CN=c8d0fc8259075cd675f319d7af4fa713048a515c
Certificate serial: 0A533596
Authority key identifier: C8:D0:FC:82:59:07:5C:D6:75:F3:19:D7:AF:4F:A7:13:04:8A:51:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yND8glkHXNZ18xnXr0-nEwSKUVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/45c862-9e33-45c8-a728-7a2fd10269be/1/BXutDTPMY0r8R-4ZWk3CxKSKwLw.roa
Signing time: Sat 01 Jan 2022 06:59:35 +0000
ROA not before: Sat 01 Jan 2022 06:59:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12409
IP address blocks: 212.94.192.0/19 maxlen: 19
2a0a:fc80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173225366 (0xa533596)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8d0fc8259075cd675f319d7af4fa713048a515c
Validity
Not Before: Jan 1 06:59:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=057bad0d33cc634afc47ee195a4dc2c4a48ac0bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a8:ad:41:5b:1a:67:4b:65:fa:3f:fd:4d:d8:
99:e1:23:dc:b4:11:2c:b4:63:62:8e:49:ce:55:a1:
90:89:78:54:17:44:3d:53:f6:90:35:ae:18:f4:7d:
bb:54:e5:05:83:39:5b:3a:6d:ed:87:e2:f0:61:b1:
55:c4:38:e6:c2:05:52:1e:5a:49:ee:79:60:7d:ff:
84:6f:9e:e5:f2:df:b1:35:81:14:ac:b6:bb:8f:74:
38:16:fd:4e:da:72:b6:84:32:75:56:b8:df:2d:10:
24:27:af:3d:c5:59:fe:75:de:9d:6c:e4:59:cb:a0:
06:4c:f2:25:84:db:95:0e:b6:dd:dd:42:ba:ca:96:
7f:ab:e7:d9:ff:ee:06:a5:e3:aa:cf:ae:0b:0d:ed:
70:8c:3a:ec:0e:e6:d2:85:76:4b:60:eb:f6:e0:ff:
2a:ab:72:30:8b:b9:f4:c4:78:6f:43:da:6a:1b:43:
4c:ec:2b:e0:ae:51:37:d8:62:ef:5a:9c:ec:20:cd:
16:58:d4:e5:ac:18:d6:72:f1:f6:78:d0:14:61:59:
6b:bd:f5:3c:de:f0:be:40:93:f5:34:6a:cb:b1:5b:
c5:15:13:e8:4c:61:dd:89:c0:3e:d5:72:d8:62:f1:
8d:de:6b:fe:2a:2d:f0:7d:77:64:80:02:26:5b:69:
ee:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:7B:AD:0D:33:CC:63:4A:FC:47:EE:19:5A:4D:C2:C4:A4:8A:C0:BC
X509v3 Authority Key Identifier:
keyid:C8:D0:FC:82:59:07:5C:D6:75:F3:19:D7:AF:4F:A7:13:04:8A:51:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yND8glkHXNZ18xnXr0-nEwSKUVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/45c862-9e33-45c8-a728-7a2fd10269be/1/BXutDTPMY0r8R-4ZWk3CxKSKwLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/45c862-9e33-45c8-a728-7a2fd10269be/1/yND8glkHXNZ18xnXr0-nEwSKUVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.94.192.0/19
IPv6:
2a0a:fc80::/32
Signature Algorithm: sha256WithRSAEncryption
75:fc:1f:7b:19:e3:31:39:18:3c:3b:93:9b:88:6b:70:ed:71:
2d:50:7c:64:8d:23:22:60:1a:95:b8:17:de:bd:42:0d:0d:b2:
f2:89:bb:05:bb:f7:cb:e1:02:ae:30:6d:ab:8c:ee:80:79:78:
09:e6:15:c6:09:85:51:24:46:bc:48:ef:f2:0d:84:09:05:bf:
fd:67:46:15:be:0c:2a:89:f6:a9:0b:c5:af:d9:5d:f2:8c:e0:
c0:f0:3e:d8:6b:7d:69:2c:be:ae:0c:0b:1d:70:16:70:eb:f3:
27:6a:c1:d8:3e:6d:8f:1d:cf:5b:ef:82:8b:bd:00:26:02:8b:
97:5c:55:90:f2:61:57:6a:3a:7b:05:15:aa:c7:bf:77:84:f7:
ed:90:40:0e:11:b6:68:88:42:33:34:71:02:d3:2d:d3:4f:1e:
37:94:56:84:63:1c:77:95:ce:cf:21:25:e5:5f:7e:21:5d:f3:
b5:16:15:1f:02:b0:65:9c:6f:45:aa:98:9e:2c:af:76:46:f8:
94:02:3a:c7:eb:10:19:12:1b:59:8c:18:08:af:4d:60:7c:3a:
90:eb:0c:ad:ca:1c:1c:26:30:ed:9c:3e:86:b3:34:90:47:59:
a7:c0:e3:dc:57:b0:9d:b6:dd:ff:ac:98:19:2e:fd:cc:fa:38:
ea:2a:d4:b5
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEClM1ljANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
OGQwZmM4MjU5MDc1Y2Q2NzVmMzE5ZDdhZjRmYTcxMzA0OGE1MTVjMB4XDTIyMDEw
MTA2NTkzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDU3YmFkMGQzM2Nj
NjM0YWZjNDdlZTE5NWE0ZGMyYzRhNDhhYzBiYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM+orUFbGmdLZfo//U3YmeEj3LQRLLRjYo5JzlWhkIl4VBdE
PVP2kDWuGPR9u1TlBYM5Wzpt7Yfi8GGxVcQ45sIFUh5aSe55YH3/hG+e5fLfsTWB
FKy2u490OBb9TtpytoQydVa43y0QJCevPcVZ/nXenWzkWcugBkzyJYTblQ623d1C
usqWf6vn2f/uBqXjqs+uCw3tcIw67A7m0oV2S2Dr9uD/KqtyMIu59MR4b0PaahtD
TOwr4K5RN9hi71qc7CDNFljU5awY1nLx9njQFGFZa731PN7wvkCT9TRqy7FbxRUT
6Exh3YnAPtVy2GLxjd5r/iot8H13ZIACJltp7pECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQFe60NM8xjSvxH7hlaTcLEpIrAvDAfBgNVHSMEGDAWgBTI0PyCWQdc1nXz
GdevT6cTBIpRXDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lORDhnbGtIWE5aMTh4blhyMC1uRXdTS1VWdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzgvNDVjODYyLTllMzMtNDVjOC1hNzI4LTdhMmZkMTAyNjliZS8x
L0JYdXREVFBNWTByOFItNFpXazNDeEtTS3dMdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzgv
NDVjODYyLTllMzMtNDVjOC1hNzI4LTdhMmZkMTAyNjliZS8xL3lORDhnbGtIWE5a
MTh4blhyMC1uRXdTS1VWdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEBdRewDANBAIAAjAHAwUAKgr8gDAN
BgkqhkiG9w0BAQsFAAOCAQEAdfwfexnjMTkYPDuTm4hrcO1xLVB8ZI0jImAalbgX
3r1CDQ2y8om7Bbv3y+ECrjBtq4zugHl4CeYVxgmFUSRGvEjv8g2ECQW//WdGFb4M
Kon2qQvFr9ld8ozgwPA+2Gt9aSy+rgwLHXAWcOvzJ2rB2D5tjx3PW++Ci70AJgKL
l1xVkPJhV2o6ewUVqse/d4T37ZBADhG2aIhCMzRxAtMt008eN5RWhGMcd5XOzyEl
5V9+IV3ztRYVHwKwZZxvRaqYniyvdkb4lAI6x+sQGRIbWYwYCK9NYHw6kOsMrcoc
HCYw7Zw+hrM0kEdZp8Dj3Fewnbbd/6yYGS79zPo46irUtQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:38 2024 by rpki-client on console-fra.rpki-client.org