Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/Bt0t7sHEOFfYZIpdFNo7W5gja0c.roa
File: Bt0t7sHEOFfYZIpdFNo7W5gja0c.roa (raw, json)
Hash identifier: CDxlD2DcyveasS9pmFQ3BX/9lIbz/cws1qCnA9pbo+g=
Subject key identifier: 06:DD:2D:EE:C1:C4:38:57:D8:64:8A:5D:14:DA:3B:5B:98:23:6B:47
Certificate issuer: /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Certificate serial: 010CAE1A
Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/Bt0t7sHEOFfYZIpdFNo7W5gja0c.roa
Signing time: Wed 18 May 2022 09:36:17 +0000
ROA not before: Wed 18 May 2022 09:36:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 185.63.34.0/24 maxlen: 24
185.63.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17608218 (0x10cae1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Validity
Not Before: May 18 09:36:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06dd2deec1c43857d8648a5d14da3b5b98236b47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a6:b0:27:d7:11:40:42:2e:88:65:2c:7c:eb:
03:40:d5:fa:49:a8:9e:a0:91:20:3a:73:27:2a:b6:
9c:8a:f3:63:2f:0d:45:30:49:17:7b:3a:c7:15:ce:
e3:bb:75:5c:21:fb:7f:89:34:0d:4e:c0:95:2b:9c:
62:b6:53:a6:12:20:bd:37:1c:a2:ab:a8:0a:eb:b2:
19:78:38:df:6b:80:00:47:7e:23:c8:25:96:5c:a0:
0a:50:84:47:86:7a:8b:f9:6e:2c:b2:4b:cf:91:07:
b8:26:23:52:95:62:d4:21:3a:0c:d5:0e:f4:55:b7:
ba:e0:1c:4e:60:ea:45:3d:07:44:ed:61:5b:0e:a1:
3c:ee:1c:51:4f:c9:13:8a:5a:f2:fa:ce:b6:11:de:
4f:e6:3d:5d:d1:42:2b:53:7c:fd:b0:08:fe:56:0c:
ab:b1:60:7e:aa:db:3a:ab:dc:bb:62:6a:d8:01:8d:
93:7d:0d:b4:fa:1b:f5:48:90:00:82:fd:bd:fd:09:
aa:6d:2a:99:e8:cd:13:64:76:f5:9f:6e:59:fd:4c:
91:52:9e:f0:89:b7:a9:f4:52:18:21:b2:93:b3:eb:
eb:fd:2b:0d:c0:09:9b:5a:4d:08:86:7e:ac:b2:d7:
96:88:d3:bd:4b:3e:60:5f:6a:b7:a4:60:96:43:60:
02:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:DD:2D:EE:C1:C4:38:57:D8:64:8A:5D:14:DA:3B:5B:98:23:6B:47
X509v3 Authority Key Identifier:
keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/Bt0t7sHEOFfYZIpdFNo7W5gja0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.34.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:cb:44:89:cc:b3:78:fa:49:92:1e:a4:d7:12:64:70:1d:f4:
1c:e0:71:08:48:23:af:37:a7:e8:14:05:70:7e:84:c3:50:0d:
9f:48:12:7b:21:4a:b4:e3:95:8d:95:e6:90:cc:b3:00:20:2e:
5e:07:8f:9f:b0:41:06:42:44:75:df:bc:a0:8a:2a:35:12:ea:
7e:7e:ef:f4:c7:fd:ee:c2:f8:c2:c7:3a:6c:4d:1b:26:31:62:
38:2e:74:db:80:f9:58:d9:ca:f3:4a:2c:29:0f:79:9a:e7:33:
7f:07:8e:46:1e:54:19:b4:a2:17:fe:81:92:88:72:ad:be:97:
c5:00:5b:c9:13:46:f8:b2:11:c7:7e:12:5a:70:4d:a3:10:c0:
27:5f:65:b9:f1:c0:8f:36:43:bd:c0:e6:5d:85:8d:90:1c:a3:
65:57:dd:1d:77:55:64:05:47:85:15:14:29:67:ba:b8:88:0b:
ed:41:8a:1d:0e:91:cc:f6:99:14:6a:cc:8b:13:ed:79:97:3d:
9f:ec:64:86:e2:e5:9f:3c:17:1e:4a:ae:cc:eb:d6:ce:37:7d:
f1:6e:60:42:b2:e4:68:c5:31:1d:65:4e:b8:d2:6c:b9:c6:09:
da:9e:35:89:71:b1:2c:ca:d8:15:25:59:56:36:27:06:9c:a9:
0c:df:d0:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:48 2024 by rpki-client on console-fra.rpki-client.org