Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/BKYXOVKt2xWUnPACudCyaXh58zc.roa
File: BKYXOVKt2xWUnPACudCyaXh58zc.roa (raw, json)
Hash identifier: 3HLqWlcqdtP5UWIF5y/qOrhXxSy88aTBr8xuEg1dVY0=
Subject key identifier: 04:A6:17:39:52:AD:DB:15:94:9C:F0:02:B9:D0:B2:69:78:79:F3:37
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 01846C1800AEF8B45D891ECF416CBFF73001
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/BKYXOVKt2xWUnPACudCyaXh58zc.roa
Signing time: Sat 12 Nov 2022 13:47:03 +0000
ROA not before: Sat 12 Nov 2022 13:47:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 45.133.104.0/22 maxlen: 22
5.134.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:6c:18:00:ae:f8:b4:5d:89:1e:cf:41:6c:bf:f7:30:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Nov 12 13:47:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04a6173952addb15949cf002b9d0b2697879f337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:02:06:86:15:64:9d:d6:47:42:be:1b:69:4a:
2c:d0:0f:44:c6:dd:48:20:13:71:10:60:8f:16:08:
cc:2d:0d:0b:19:a1:bb:13:1a:4d:f3:77:df:5f:a6:
09:83:50:07:67:99:5f:d3:3e:1b:4a:1d:5e:11:27:
a4:2a:61:76:6b:78:ce:d7:b3:31:a7:6a:49:4f:bd:
1a:8f:43:a3:ad:59:bd:b3:54:b9:6a:65:de:f2:39:
46:57:8d:2b:2a:f1:ff:5d:ac:a5:7f:3a:d9:31:06:
c3:e9:c9:09:47:e1:f6:64:ed:65:9b:35:3f:91:aa:
58:5c:5c:e6:52:0c:db:bf:df:0c:be:8e:7b:e9:6e:
23:55:3a:9b:05:33:8e:ef:9c:9e:b8:cc:c8:ea:33:
96:d0:c2:e1:49:ce:42:0f:4b:ee:3d:7c:d0:18:be:
99:e6:71:91:e7:2a:6d:b2:ed:f5:70:0a:3e:76:10:
c4:dd:e2:f1:ee:ae:c4:b6:b9:5a:61:dc:7c:2b:2f:
bf:0a:77:66:f9:d4:cf:df:c9:80:f8:6f:55:91:c4:
fb:8d:a9:75:fb:70:81:fe:9d:d3:79:6f:37:f0:07:
14:85:17:45:2c:3a:26:6c:c7:1e:30:15:a1:92:8e:
21:e3:50:30:2f:54:04:3e:fd:7c:fb:25:43:88:ef:
6d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:A6:17:39:52:AD:DB:15:94:9C:F0:02:B9:D0:B2:69:78:79:F3:37
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/BKYXOVKt2xWUnPACudCyaXh58zc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.84.0/22
45.133.104.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:9e:91:22:55:52:d5:dd:9b:78:2a:9a:85:74:c8:88:89:fd:
77:bf:53:f9:50:71:90:76:20:0e:0e:c9:5b:0d:a9:dd:0a:12:
ca:50:eb:34:2b:9d:72:b9:26:c1:e3:51:66:5d:d9:a9:0f:9d:
5d:4e:1c:38:b4:96:24:7d:1e:9e:52:be:b7:79:58:d9:a3:40:
6a:6c:28:b3:3d:22:c5:ad:81:1d:40:c9:d3:72:62:7e:90:e4:
fd:a8:1d:72:d5:6d:e7:6b:7b:25:f3:d8:45:5c:6a:a4:fa:c7:
60:cf:9f:b3:0f:28:3d:cb:64:1d:15:1d:c6:1b:ab:30:2b:b7:
4a:42:3b:c5:1e:7f:cc:c8:dc:33:e6:b6:01:1f:5b:33:4e:00:
bd:a2:39:88:f5:98:63:78:f3:47:99:90:f5:e1:71:0d:f2:c9:
c9:20:12:c8:f4:f0:e4:c9:81:a4:fc:94:73:cf:42:5d:d5:63:
cc:d2:df:f9:49:68:98:1b:1d:47:9b:1e:93:2f:4d:c8:1b:c1:
89:31:3e:88:12:fc:0c:de:5f:03:2b:a9:f4:a0:0c:66:15:90:
d8:19:43:95:46:6b:42:a0:28:20:eb:0b:ad:13:06:ff:63:8d:
e1:d7:81:6e:05:08:d9:b4:17:8e:28:fc:f1:93:eb:e5:c3:a1:
d5:6e:a7:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:23 2023 by rpki-client on console-ams.rpki-client.org