Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/cf6b07-03b2-4ebe-b966-f1e9bf2bff21/1/brxzEEqwZo1ueL7TCQUk9it9v3Q.roa
File: brxzEEqwZo1ueL7TCQUk9it9v3Q.roa (raw, json)
Hash identifier: toNd/lT9vj2cky7yytg39OIAFemIXT9SZyzoz7ZePC8=
Subject key identifier: 6E:BC:73:10:4A:B0:66:8D:6E:78:BE:D3:09:05:24:F6:2B:7D:BF:74
Certificate issuer: /CN=03bcef976642d54b4b4a1998f0b3ff48845a926d
Certificate serial: 015F0ED5
Authority key identifier: 03:BC:EF:97:66:42:D5:4B:4B:4A:19:98:F0:B3:FF:48:84:5A:92:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7zvl2ZC1UtLShmY8LP_SIRakm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/cf6b07-03b2-4ebe-b966-f1e9bf2bff21/1/brxzEEqwZo1ueL7TCQUk9it9v3Q.roa
Signing time: Sat 01 Jan 2022 12:54:35 +0000
ROA not before: Sat 01 Jan 2022 12:54:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49015
IP address blocks: 193.36.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23006933 (0x15f0ed5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03bcef976642d54b4b4a1998f0b3ff48845a926d
Validity
Not Before: Jan 1 12:54:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ebc73104ab0668d6e78bed3090524f62b7dbf74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ef:79:99:73:45:ff:2b:5e:ed:72:0a:e1:5e:
b2:a1:c7:e9:55:1f:b3:ef:2d:78:0e:05:1f:b3:b8:
ee:10:4c:4f:14:77:0d:2d:0d:ad:e8:a7:4e:00:d1:
59:0c:24:67:64:73:e1:64:14:1f:10:51:1a:82:fa:
af:c2:8a:7a:5e:3d:14:0c:6c:5a:45:88:fa:ca:fd:
46:b8:38:cf:45:0b:ea:e0:4c:bf:70:1f:f4:f0:ce:
1d:06:63:af:ca:3c:b2:2a:26:bc:fa:3e:3a:10:2c:
c1:79:57:33:79:43:ac:95:d8:ca:95:df:cb:24:d9:
df:c5:c1:65:12:9b:ab:d5:8b:88:f2:af:e4:da:f8:
bd:28:51:24:eb:47:e4:15:b7:05:bf:38:03:ca:ae:
a6:42:31:f8:c9:4e:38:8f:e0:aa:77:08:f8:12:4f:
01:a5:a1:72:56:3e:c1:16:91:48:81:66:17:ee:14:
ea:43:e4:9d:a9:9c:5d:b6:f8:6c:41:ec:03:e2:d4:
98:2b:c3:6e:65:55:7c:e2:57:da:75:ca:f6:a0:77:
42:93:b0:31:06:fc:cd:f6:bf:7f:6f:10:ef:3e:19:
a9:eb:31:09:28:56:f7:cc:8e:9a:aa:49:0e:b0:78:
44:6c:28:0c:5b:12:f1:fd:97:5b:fc:5b:b9:45:04:
9b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:BC:73:10:4A:B0:66:8D:6E:78:BE:D3:09:05:24:F6:2B:7D:BF:74
X509v3 Authority Key Identifier:
keyid:03:BC:EF:97:66:42:D5:4B:4B:4A:19:98:F0:B3:FF:48:84:5A:92:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7zvl2ZC1UtLShmY8LP_SIRakm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/cf6b07-03b2-4ebe-b966-f1e9bf2bff21/1/brxzEEqwZo1ueL7TCQUk9it9v3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/cf6b07-03b2-4ebe-b966-f1e9bf2bff21/1/A7zvl2ZC1UtLShmY8LP_SIRakm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.40.0/24
Signature Algorithm: sha256WithRSAEncryption
22:00:c9:ba:05:1b:5e:2f:af:7a:e0:b3:f4:47:b5:d1:91:c4:
81:43:31:ca:40:af:eb:b1:00:12:0a:54:c6:32:b2:55:d5:24:
78:8b:12:e2:49:85:13:94:69:3b:33:1c:2d:9c:b4:46:8b:ec:
f8:e5:a1:a9:78:74:a6:4a:c4:99:d0:3d:ce:83:c6:0d:23:13:
ab:f8:3e:7b:8b:21:d3:ce:8a:93:00:06:20:22:3d:be:23:83:
fa:b5:44:69:92:a7:1c:9a:75:b6:05:5c:cf:9a:4c:8d:ec:f5:
2a:1c:23:01:a6:4e:5b:2f:83:af:72:0f:96:3b:78:5c:11:71:
56:f2:4a:7f:18:99:3b:f2:13:b3:1a:62:82:09:82:2b:bb:33:
df:75:dd:7b:55:ea:3b:77:9e:1a:5c:86:47:8f:53:3d:4f:cc:
e1:9f:59:13:00:aa:91:6a:66:68:96:37:88:ce:94:26:07:9b:
0d:21:bf:2a:ab:bc:26:1a:2b:b3:88:18:37:5e:04:30:58:33:
8d:36:0b:76:5d:a1:61:a1:43:bc:35:28:ea:22:f5:a3:86:85:
ab:7d:b6:84:2a:a1:f3:9a:4b:94:52:98:7f:b5:a3:b4:e8:32:
59:cf:d3:f3:22:83:1a:ee:ad:10:62:76:ed:c8:4f:78:d6:54:
e5:8e:66:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:24 2023 by rpki-client on console-ams.rpki-client.org