Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/dc1d09-9f69-471b-be7a-52008d1cb9b6/1/BUjKbPKLeSDir7BDBq1qcduz0hM.roa
File: BUjKbPKLeSDir7BDBq1qcduz0hM.roa (raw, json)
Hash identifier: 3JaAgZZITg1MNWggqQy+mn3moZ00LGi2LoMgejfaNME=
Subject key identifier: 05:48:CA:6C:F2:8B:79:20:E2:AF:B0:43:06:AD:6A:71:DB:B3:D2:13
Certificate issuer: /CN=c7389ce826bc8d26869b452f3cd936902c552fbf
Certificate serial: 0182EE8F67CC24549248BDF74843470A0168
Authority key identifier: C7:38:9C:E8:26:BC:8D:26:86:9B:45:2F:3C:D9:36:90:2C:55:2F:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xzic6Ca8jSaGm0UvPNk2kCxVL78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/dc1d09-9f69-471b-be7a-52008d1cb9b6/1/BUjKbPKLeSDir7BDBq1qcduz0hM.roa
Signing time: Tue 30 Aug 2022 11:42:31 +0000
ROA not before: Tue 30 Aug 2022 11:42:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34563
IP address blocks: 91.216.70.0/24 maxlen: 24
193.42.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ee:8f:67:cc:24:54:92:48:bd:f7:48:43:47:0a:01:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7389ce826bc8d26869b452f3cd936902c552fbf
Validity
Not Before: Aug 30 11:42:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0548ca6cf28b7920e2afb04306ad6a71dbb3d213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:68:76:7e:4c:fd:7e:a3:d4:f9:6d:04:c2:e6:
58:56:56:2f:bd:f8:98:dc:bc:76:4c:a7:e6:95:66:
0e:50:09:cb:a9:58:aa:c5:14:d0:a5:af:cb:f2:7b:
a4:73:d7:9d:b1:e9:9c:35:df:00:be:5e:5a:92:7e:
19:fb:cf:59:0b:16:ce:e4:02:19:fc:76:d3:ba:2c:
26:0e:37:11:e4:de:12:1f:79:7c:83:d9:22:7d:58:
f4:bc:ea:90:36:e3:0f:3e:da:99:b1:08:7e:5e:3d:
ca:1d:4d:04:96:27:a4:50:91:7b:6a:e8:f1:e1:0f:
21:0a:81:a4:f7:c5:b5:0a:87:4b:d1:9e:60:4b:1c:
29:5b:7b:42:4f:54:cc:74:a8:6b:a5:be:c6:8b:00:
a1:17:6a:ee:47:2f:aa:b6:31:62:27:21:3d:af:43:
4a:32:13:b7:b9:55:8c:1a:15:35:1b:8d:48:83:e4:
0b:d5:03:ed:f1:58:44:e7:f7:5b:9b:4f:b5:41:17:
59:e0:c6:95:e2:1f:39:05:60:94:c9:e6:79:9a:bb:
08:dd:7e:7b:8c:5d:5f:e1:9e:b5:07:f9:01:24:55:
8a:9b:96:11:bc:ce:17:d9:c7:49:61:08:50:68:1d:
b6:dd:28:bc:37:29:51:75:5f:01:7b:0a:c0:51:23:
62:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:48:CA:6C:F2:8B:79:20:E2:AF:B0:43:06:AD:6A:71:DB:B3:D2:13
X509v3 Authority Key Identifier:
keyid:C7:38:9C:E8:26:BC:8D:26:86:9B:45:2F:3C:D9:36:90:2C:55:2F:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xzic6Ca8jSaGm0UvPNk2kCxVL78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/dc1d09-9f69-471b-be7a-52008d1cb9b6/1/BUjKbPKLeSDir7BDBq1qcduz0hM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/dc1d09-9f69-471b-be7a-52008d1cb9b6/1/xzic6Ca8jSaGm0UvPNk2kCxVL78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.70.0/24
193.42.222.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:71:2a:d8:70:f1:ee:96:03:9c:b9:d1:7d:bb:f8:0e:17:f9:
53:3b:52:b5:9b:8c:66:3f:20:79:00:f2:78:86:e4:0b:cd:d8:
79:1e:8d:20:d1:73:91:97:78:9d:8e:b7:9a:27:0f:b0:8a:10:
e8:be:10:1b:2a:d2:33:3c:3b:11:ec:34:4b:f2:f4:20:79:09:
50:43:ab:48:56:8e:51:6d:5f:c2:8f:f9:cc:c8:98:d7:9c:17:
41:fc:4e:a6:2f:90:97:9d:43:e3:a9:e8:ea:27:a6:99:76:89:
5f:ec:21:55:3c:c6:d1:1c:2e:ec:6b:d4:52:42:34:ee:06:72:
56:da:19:5c:97:87:6c:be:5b:a7:f0:52:e8:9e:65:33:b3:80:
ff:be:0d:75:9f:66:e1:24:3f:1b:db:7a:8c:3e:65:e7:1c:29:
28:fe:05:3c:4d:64:3e:8f:df:cd:6c:06:da:e7:29:dd:0e:1e:
e9:a8:2b:81:38:39:61:6f:72:d9:1e:71:d4:fa:d7:33:4b:80:
e1:da:27:90:e7:16:c5:0d:93:ba:de:61:18:c0:9b:de:d4:21:
82:b2:19:4b:7a:fa:cd:e4:04:1f:72:9f:1c:e7:ee:72:8e:b5:
25:ba:05:88:03:58:ff:1b:00:bc:74:07:16:95:4a:31:75:c2:
65:fa:c7:fa
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYLuj2fMJFSSSL33SENHCgFoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3Mzg5Y2U4MjZiYzhkMjY4NjliNDUyZjNjZDkzNjkwMmM1
NTJmYmYwHhcNMjIwODMwMTE0MjMxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNTQ4Y2E2Y2YyOGI3OTIwZTJhZmIwNDMwNmFkNmE3MWRiYjNkMjEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Gh2fkz9fqPU+W0EwuZYVlYvvfiY
3Lx2TKfmlWYOUAnLqViqxRTQpa/L8nukc9edsemcNd8Avl5akn4Z+89ZCxbO5AIZ
/HbTuiwmDjcR5N4SH3l8g9kifVj0vOqQNuMPPtqZsQh+Xj3KHU0EliekUJF7aujx
4Q8hCoGk98W1CodL0Z5gSxwpW3tCT1TMdKhrpb7GiwChF2ruRy+qtjFiJyE9r0NK
MhO3uVWMGhU1G41Ig+QL1QPt8VhE5/dbm0+1QRdZ4MaV4h85BWCUyeZ5mrsI3X57
jF1f4Z61B/kBJFWKm5YRvM4X2cdJYQhQaB223Si8NylRdV8BewrAUSNiSwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFAVIymzyi3kg4q+wQwatanHbs9ITMB8GA1UdIwQY
MBaAFMc4nOgmvI0mhptFLzzZNpAsVS+/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHppYzZDYThqU2FHbTBVdlBOazJrQ3hWTDc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9kYzFkMDktOWY2OS00NzFiLWJlN2Et
NTIwMDhkMWNiOWI2LzEvQlVqS2JQS0xlU0RpcjdCREJxMXFjZHV6MGhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS9kYzFkMDktOWY2OS00NzFiLWJlN2EtNTIwMDhkMWNiOWI2
LzEveHppYzZDYThqU2FHbTBVdlBOazJrQ3hWTDc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW9hGAwQA
wSreMA0GCSqGSIb3DQEBCwUAA4IBAQBdcSrYcPHulgOcudF9u/gOF/lTO1K1m4xm
PyB5APJ4huQLzdh5Ho0g0XORl3idjreaJw+wihDovhAbKtIzPDsR7DRL8vQgeQlQ
Q6tIVo5RbV/Cj/nMyJjXnBdB/E6mL5CXnUPjqejqJ6aZdolf7CFVPMbRHC7sa9RS
QjTuBnJW2hlcl4dsvlun8FLonmUzs4D/vg11n2bhJD8b23qMPmXnHCko/gU8TWQ+
j9/NbAba5yndDh7pqCuBODlhb3LZHnHU+tczS4Dh2ieQ5xbFDZO63mEYwJve1CGC
shlLevrN5AQfcp8c5+5yjrUlugWIA1j/GwC8dAcWlUoxdcJl+sf6
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:02 2024 by rpki-client on console-ams.rpki-client.org