Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/3c08ae-eb6d-4608-82c3-6c04a6ed13c5/1/BVNhEcBsprHGCHGdtDkJFoFpMo4.roa
File: BVNhEcBsprHGCHGdtDkJFoFpMo4.roa (raw, json)
Hash identifier: Q8tiaUmQUW/y1ezFyowwPrjWvj/f5/S4cQBpP27IVTo=
Subject key identifier: 05:53:61:11:C0:6C:A6:B1:C6:08:71:9D:B4:39:09:16:81:69:32:8E
Certificate issuer: /CN=c9da2ff5a77e78eec3033dda5749a4a8c1e55164
Certificate serial: D1ED
Authority key identifier: C9:DA:2F:F5:A7:7E:78:EE:C3:03:3D:DA:57:49:A4:A8:C1:E5:51:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydov9ad-eO7DAz3aV0mkqMHlUWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/3c08ae-eb6d-4608-82c3-6c04a6ed13c5/1/BVNhEcBsprHGCHGdtDkJFoFpMo4.roa
Signing time: Fri 11 Mar 2022 23:54:26 +0000
ROA not before: Fri 11 Mar 2022 23:54:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398464
IP address blocks: 195.64.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53741 (0xd1ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9da2ff5a77e78eec3033dda5749a4a8c1e55164
Validity
Not Before: Mar 11 23:54:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05536111c06ca6b1c608719db43909168169328e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7a:c8:75:c5:dc:f1:81:79:11:96:9d:4c:17:
9b:eb:e9:17:86:97:c3:47:2c:64:d0:f1:e4:83:bc:
2e:d1:2f:e6:20:e7:db:5f:dc:99:fa:4d:d4:a9:21:
70:be:e6:03:b3:26:3f:38:5d:a9:12:bd:5a:0c:ec:
0b:a1:b7:16:ec:97:80:bd:2c:79:ea:54:d5:e2:24:
ee:c2:0b:8b:de:58:cb:69:db:a8:cb:19:ec:e5:62:
93:82:84:55:5f:7c:00:00:2f:75:c3:fb:eb:5f:15:
d8:36:09:fb:62:26:0b:93:29:13:36:89:2f:fe:be:
c9:8a:b6:16:44:71:46:8d:cc:1b:ad:fa:a7:b3:03:
b6:e1:c2:bb:60:18:9e:3d:8b:ae:2a:7e:81:a9:5c:
ba:43:57:4e:9d:5b:22:51:9d:29:61:e7:80:c0:ca:
c5:ee:a6:a6:c4:35:1d:9d:a7:4f:bc:fb:7e:e8:83:
b2:7f:e8:ea:0a:b8:e2:46:3a:1a:45:24:e5:f5:af:
e0:9d:c1:fc:bd:c6:36:07:21:9a:14:6d:bb:d9:98:
9b:d5:c2:6d:12:e8:a7:5d:68:1e:c0:05:70:30:db:
a1:ce:93:db:72:b4:20:51:7a:42:a7:7a:52:e4:40:
20:63:cf:6c:6f:d5:08:40:cc:71:6c:c6:09:e3:7f:
53:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:53:61:11:C0:6C:A6:B1:C6:08:71:9D:B4:39:09:16:81:69:32:8E
X509v3 Authority Key Identifier:
keyid:C9:DA:2F:F5:A7:7E:78:EE:C3:03:3D:DA:57:49:A4:A8:C1:E5:51:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydov9ad-eO7DAz3aV0mkqMHlUWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/3c08ae-eb6d-4608-82c3-6c04a6ed13c5/1/BVNhEcBsprHGCHGdtDkJFoFpMo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/3c08ae-eb6d-4608-82c3-6c04a6ed13c5/1/ydov9ad-eO7DAz3aV0mkqMHlUWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.115.0/24
Signature Algorithm: sha256WithRSAEncryption
95:7a:fe:e0:15:b3:c6:14:a0:bb:d9:a9:5e:8c:21:de:e1:c5:
db:df:f2:96:7c:2e:72:3f:8b:a2:05:2d:ec:66:40:73:72:6c:
1a:d8:db:af:d9:ad:98:6d:d9:89:73:28:be:69:1c:22:62:cc:
f6:ea:c3:b7:e9:43:b4:65:2f:88:f5:76:36:0f:bf:12:26:8c:
cf:25:70:8e:e3:63:3d:63:ad:69:45:4d:c3:53:8e:09:76:40:
cf:bb:06:59:dd:34:dc:e5:3a:5d:17:dc:f3:3d:11:19:d0:a9:
0b:1f:69:71:70:ba:64:f2:6a:32:a4:b0:f3:8e:3e:ae:78:e2:
4c:7f:c4:ab:5e:06:16:f3:57:56:f5:fb:64:b8:73:eb:c6:b9:
2e:72:d7:2d:27:18:74:d4:a3:92:a4:67:a7:28:f1:cc:8d:e8:
95:c6:d8:c5:64:1c:a4:00:1a:12:1a:e1:a8:29:da:c5:0f:3c:
5c:38:96:91:c9:ae:31:e4:da:e8:fc:46:cb:e8:ce:02:d4:9a:
d7:11:5a:33:19:22:3c:d4:9c:d8:b4:51:20:50:02:15:92:e7:
00:bb:b4:4f:7e:5b:8c:76:c7:ae:89:ad:80:10:6a:26:3c:92:
a5:16:ff:cf:fa:78:3e:c4:c3:0e:3e:49:6c:df:ae:64:42:37:
a5:8d:c8:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:59 2023 by rpki-client on console-fra.rpki-client.org