Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/BxCr8-rsZdHwt_Fe6KLUNmLB3gw.roa
File: BxCr8-rsZdHwt_Fe6KLUNmLB3gw.roa (raw, json)
Hash identifier: 6OOUaQRdRUIgzkIL0vumfaXZbPmP0Iu5gjxZxsCtYLQ=
Subject key identifier: 07:10:AB:F3:EA:EC:65:D1:F0:B7:F1:5E:E8:A2:D4:36:62:C1:DE:0C
Certificate issuer: /CN=6149cbba3e6629beaebfb69668678ada51744898
Certificate serial: 03DE105F
Authority key identifier: 61:49:CB:BA:3E:66:29:BE:AE:BF:B6:96:68:67:8A:DA:51:74:48:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/BxCr8-rsZdHwt_Fe6KLUNmLB3gw.roa
Signing time: Sat 01 Jan 2022 02:57:50 +0000
ROA not before: Sat 01 Jan 2022 02:57:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44682
IP address blocks: 193.111.120.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64884831 (0x3de105f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6149cbba3e6629beaebfb69668678ada51744898
Validity
Not Before: Jan 1 02:57:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0710abf3eaec65d1f0b7f15ee8a2d43662c1de0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:f4:a7:97:1c:a1:7d:b1:f7:80:c3:f8:d8:3e:
bf:7e:47:a8:d2:4d:1c:85:26:fe:97:e8:dd:26:5e:
46:88:fe:03:4e:25:93:df:c7:ac:a4:e6:7c:76:30:
4a:e5:4c:b0:e4:ad:ac:21:27:c7:34:5f:16:bc:58:
6d:40:6c:28:a1:89:4e:99:ce:14:61:39:42:e5:8b:
29:e0:0a:6a:cc:69:40:30:f3:de:43:ec:a0:39:d7:
11:57:22:45:4f:af:c3:f0:c3:16:bf:55:e4:ef:a3:
8c:f9:bd:4e:8f:60:4e:3d:47:97:67:04:1d:cf:44:
67:43:9c:a9:ff:94:78:dc:04:e9:89:7b:bd:03:5c:
f3:7c:44:45:cb:f0:11:78:66:e1:12:2c:5b:0a:76:
17:7f:04:9e:36:b1:2f:1a:af:bf:1c:98:23:7d:bc:
94:96:a3:1f:f8:8b:fb:bf:18:eb:3d:1b:07:a1:87:
7e:37:c9:89:83:14:3b:c0:7e:43:73:40:f4:64:ee:
34:cb:d3:18:09:8e:77:a6:07:8b:74:04:98:71:31:
ec:4e:1b:53:bd:ce:84:cf:00:b7:9f:a2:d0:3d:a2:
89:6f:5c:e8:8f:41:69:2e:e5:47:d2:4c:3b:37:bc:
7e:c3:cc:22:69:4a:53:21:06:3a:1c:f8:bf:55:69:
1d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:10:AB:F3:EA:EC:65:D1:F0:B7:F1:5E:E8:A2:D4:36:62:C1:DE:0C
X509v3 Authority Key Identifier:
keyid:61:49:CB:BA:3E:66:29:BE:AE:BF:B6:96:68:67:8A:DA:51:74:48:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/BxCr8-rsZdHwt_Fe6KLUNmLB3gw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.120.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:c6:b3:77:a2:de:7e:91:5c:39:2e:3f:92:f0:1d:31:74:4b:
12:79:cb:a1:89:6c:54:3b:45:60:77:c3:6d:25:16:69:17:cb:
2b:aa:59:82:79:89:17:f4:02:06:1f:b6:a4:4f:9a:5a:65:73:
46:68:30:d0:6f:ce:56:8f:06:3e:2e:ff:4b:10:67:9c:92:f8:
fa:73:53:bd:75:ac:ae:b2:cd:7d:73:cc:54:0f:8d:b3:5e:9e:
fd:ca:89:3e:4f:82:67:47:47:8a:d0:50:c9:1c:e3:0f:52:32:
af:aa:37:50:01:d6:93:63:cb:b5:bc:61:4b:32:f6:68:ca:e1:
cc:1b:64:6a:c1:f2:b2:af:36:67:8e:10:c5:cb:8c:e3:3a:90:
50:b4:c1:fa:34:80:f8:bf:45:15:ec:e6:0e:bb:01:d2:d4:fe:
84:e2:ac:69:d6:df:f6:96:ff:b3:d8:52:8c:05:03:b1:da:8e:
85:5b:06:d6:07:77:2c:1f:ce:f1:fe:e3:c3:13:a2:42:46:1e:
7c:27:aa:d1:f1:53:ae:81:37:64:f9:e1:05:f3:5f:c1:4d:26:
0a:54:70:4f:74:2f:9f:a7:7a:75:4b:12:cf:72:9a:36:ea:f4:
bc:63:36:00:d0:c0:ea:f1:89:51:cf:c5:30:52:f7:0c:9c:ef:
32:9c:ce:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:59 2024 by rpki-client on console-fra.rpki-client.org