Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/9c1b08-b5ac-4bbd-b8c3-0e0fd03b1104/1/BHVqgkZ_l94FUzyj3xckapQP6f4.roa
File: BHVqgkZ_l94FUzyj3xckapQP6f4.roa (raw, json)
Hash identifier: 4X4tKt2tcF6WnBc7ayfUR2+OuIhEV2X+Q/x+6xnr6Cg=
Subject key identifier: 04:75:6A:82:46:7F:97:DE:05:53:3C:A3:DF:17:24:6A:94:0F:E9:FE
Certificate issuer: /CN=0af1238100370a2c05fb06800afde6906daaf2d8
Certificate serial: 06AF500C
Authority key identifier: 0A:F1:23:81:00:37:0A:2C:05:FB:06:80:0A:FD:E6:90:6D:AA:F2:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CvEjgQA3CiwF-waACv3mkG2q8tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/9c1b08-b5ac-4bbd-b8c3-0e0fd03b1104/1/BHVqgkZ_l94FUzyj3xckapQP6f4.roa
Signing time: Sat 01 Jan 2022 16:02:56 +0000
ROA not before: Sat 01 Jan 2022 16:02:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51682
IP address blocks: 213.232.96.0/24 maxlen: 24
213.232.96.0/23 maxlen: 23
213.232.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112152588 (0x6af500c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0af1238100370a2c05fb06800afde6906daaf2d8
Validity
Not Before: Jan 1 16:02:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04756a82467f97de05533ca3df17246a940fe9fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:7d:5a:75:31:80:15:a7:f2:28:b5:07:43:de:
c3:5f:2e:e4:c8:86:a7:4a:cf:51:5e:10:50:be:bc:
15:79:68:16:69:16:27:b5:22:8a:68:cd:61:ce:b0:
fd:37:bf:6f:f6:26:54:d7:6a:1e:08:dc:8b:b9:b4:
e5:82:b6:0a:9a:14:57:97:b6:f9:99:64:9c:cb:dc:
ce:8a:bd:18:a6:e4:e8:7c:1e:2f:df:aa:bc:fb:8a:
4d:72:81:56:dc:80:21:34:20:ef:77:87:1a:01:83:
b8:0f:ee:8c:49:3c:75:1a:ee:85:6b:da:05:aa:15:
27:31:6e:40:32:a1:76:15:63:ed:39:b4:43:73:dc:
f3:2e:b2:73:72:f9:12:1e:f7:51:2e:f9:01:b3:72:
e8:32:d1:88:38:92:d7:89:2f:4b:af:3d:a2:f3:09:
1f:21:bf:3c:3b:d8:65:8b:30:c5:19:18:9f:90:e3:
9f:7e:ab:40:f2:72:e1:47:53:32:a1:78:31:08:e9:
cb:80:a8:a6:f2:8e:b8:91:cf:93:02:c6:ea:bf:98:
eb:a6:de:1d:0e:9f:91:ef:c8:c4:28:29:77:56:9b:
96:b0:a6:cb:3c:61:9c:8d:c8:e5:8a:c7:04:3c:29:
96:20:d9:3f:c1:c5:88:4c:a5:a1:a6:23:99:5c:7d:
06:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:75:6A:82:46:7F:97:DE:05:53:3C:A3:DF:17:24:6A:94:0F:E9:FE
X509v3 Authority Key Identifier:
keyid:0A:F1:23:81:00:37:0A:2C:05:FB:06:80:0A:FD:E6:90:6D:AA:F2:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CvEjgQA3CiwF-waACv3mkG2q8tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/9c1b08-b5ac-4bbd-b8c3-0e0fd03b1104/1/BHVqgkZ_l94FUzyj3xckapQP6f4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/9c1b08-b5ac-4bbd-b8c3-0e0fd03b1104/1/CvEjgQA3CiwF-waACv3mkG2q8tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.96.0/23
Signature Algorithm: sha256WithRSAEncryption
95:f2:7c:43:94:cc:bf:50:d6:a3:b7:a3:57:67:3a:72:85:2d:
14:06:c7:7e:4f:2a:36:d1:a1:08:74:2b:8c:0f:a6:7b:35:65:
3c:bb:59:87:64:42:d1:03:a0:49:53:70:27:66:d7:ae:70:72:
16:75:e9:9b:1a:fc:fb:a0:c1:ea:dd:4c:67:bb:8b:de:08:d6:
4e:e6:02:17:f1:ba:d3:a6:cb:6f:04:ae:3c:e5:cb:b0:01:38:
99:9e:c3:4b:95:21:ab:58:22:28:49:00:1e:da:28:67:99:9f:
2c:3a:7d:10:3f:9b:cf:8c:85:76:c9:06:25:c1:fe:9f:e5:d2:
4c:a9:be:8d:8b:8f:a0:c0:f3:0f:08:df:93:ba:54:fc:0a:dc:
54:5c:54:70:ed:09:37:98:1b:fa:6b:fb:31:80:94:07:35:4b:
a7:6f:75:80:0c:13:ec:75:82:46:b1:e9:d6:e1:b5:40:09:99:
f7:fa:18:a1:a1:bf:c7:a1:35:86:f7:29:86:60:44:82:16:28:
51:5d:13:de:5e:f9:74:69:ef:d4:88:23:da:07:d9:a7:67:15:
4b:87:9a:17:e8:a3:60:11:3d:6a:af:f9:4d:c7:05:1c:5d:bf:
d2:84:5d:81:ef:4f:91:05:bb:24:ed:69:b5:05:18:40:93:75:
78:45:f2:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:07 2025 by rpki-client