Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2c233c-87d1-45b2-b0cd-3cfee340219d/1/BiSJBpujbW7dUwC1JS8AfAMsB8s.roa
File: BiSJBpujbW7dUwC1JS8AfAMsB8s.roa (raw, json)
Hash identifier: DFBVHZco0dpdEKEb8rH8DQnOH9u72NPt3a0cSoFsBSw=
Subject key identifier: 06:24:89:06:9B:A3:6D:6E:DD:53:00:B5:25:2F:00:7C:03:2C:07:CB
Certificate issuer: /CN=584510e996ca0b8a55cb18c228c997d63c31a781
Certificate serial: 04D893F4
Authority key identifier: 58:45:10:E9:96:CA:0B:8A:55:CB:18:C2:28:C9:97:D6:3C:31:A7:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WEUQ6ZbKC4pVyxjCKMmX1jwxp4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2c233c-87d1-45b2-b0cd-3cfee340219d/1/BiSJBpujbW7dUwC1JS8AfAMsB8s.roa
Signing time: Sat 01 Jan 2022 05:04:34 +0000
ROA not before: Sat 01 Jan 2022 05:04:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 85.158.142.0/24 maxlen: 24
85.158.143.0/24 maxlen: 24
195.245.231.0/24 maxlen: 24
195.245.230.0/24 maxlen: 24
193.109.255.0/24 maxlen: 24
46.226.52.0/23 maxlen: 23
193.109.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81302516 (0x4d893f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=584510e996ca0b8a55cb18c228c997d63c31a781
Validity
Not Before: Jan 1 05:04:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=062489069ba36d6edd5300b5252f007c032c07cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:10:04:23:ef:d1:30:3e:89:0d:34:ae:63:ce:
36:26:1f:12:62:a7:51:39:77:e5:c5:a5:ce:55:fd:
57:b4:58:5e:02:62:50:db:cf:99:6d:c8:6c:e0:65:
d0:52:fc:85:a8:af:03:79:1d:e5:5b:5a:f6:89:39:
b4:40:67:43:d9:97:9d:a4:d8:6d:af:06:23:50:89:
60:a8:3f:e8:5c:67:f7:a5:70:b0:1e:17:f0:92:34:
d3:e1:23:30:ae:3e:03:f2:43:f5:da:30:41:f6:a5:
3c:ec:1f:5b:72:c4:41:28:85:fa:03:42:7c:27:12:
c9:d2:aa:46:b6:90:28:80:15:33:a0:72:66:c9:53:
3b:e3:c5:93:3e:73:e6:58:86:1a:a6:7b:3e:f1:b7:
c7:69:9a:4f:f5:47:91:73:2e:71:6b:cf:d5:5b:41:
03:c3:35:53:5b:89:79:bf:a2:17:50:fe:92:58:76:
60:ea:c9:c0:43:a6:19:22:11:f0:9d:33:e2:43:5a:
79:c6:7b:ce:bf:12:6b:71:fb:6b:e6:0d:61:1a:61:
b0:04:c6:5d:43:a5:c2:31:8a:62:f8:6b:1e:f5:c5:
d7:fe:ba:51:ca:2b:df:b7:e2:3c:6f:a0:05:20:6f:
63:7f:e3:f0:86:5b:30:57:11:d7:c7:b3:5d:a5:ca:
53:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:24:89:06:9B:A3:6D:6E:DD:53:00:B5:25:2F:00:7C:03:2C:07:CB
X509v3 Authority Key Identifier:
keyid:58:45:10:E9:96:CA:0B:8A:55:CB:18:C2:28:C9:97:D6:3C:31:A7:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WEUQ6ZbKC4pVyxjCKMmX1jwxp4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2c233c-87d1-45b2-b0cd-3cfee340219d/1/BiSJBpujbW7dUwC1JS8AfAMsB8s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2c233c-87d1-45b2-b0cd-3cfee340219d/1/WEUQ6ZbKC4pVyxjCKMmX1jwxp4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.52.0/23
85.158.142.0/23
193.109.254.0/23
195.245.230.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:56:0d:2e:2a:82:86:ca:6d:95:75:c6:b6:2d:3e:53:a9:a0:
50:ed:8f:70:80:08:14:af:23:ca:30:51:85:7d:f5:7a:f1:7b:
f7:cf:bd:49:f2:b7:11:29:f2:8b:2e:e7:57:ac:a2:8e:db:3f:
9d:b3:28:5f:07:a9:00:11:57:b2:a9:d0:49:3d:46:18:8e:7f:
c9:29:de:92:48:06:8e:97:78:a1:52:14:a8:29:d2:08:e7:7c:
be:9f:60:c8:80:49:f1:0b:5b:35:79:ff:9f:01:b6:f0:cf:8c:
e0:c8:50:c3:7f:88:8f:f5:d1:44:30:71:98:b6:b0:a1:3c:99:
fb:00:a3:d9:86:13:e0:17:a0:e5:54:d8:aa:23:bf:3b:e0:0a:
3b:00:00:fd:01:7c:b9:8b:48:7a:75:95:d8:37:91:72:ae:3d:
c9:a7:0f:00:a0:af:bd:93:b4:76:0e:6e:0f:98:55:65:08:64:
95:46:4b:16:d6:22:0c:3c:99:7d:9e:ac:19:c7:b1:8b:e5:4a:
f8:16:27:29:00:ad:74:7f:5e:4e:c8:c3:5b:84:9a:22:f6:1e:
73:ed:93:6f:44:26:7e:5f:e9:63:f0:4b:d1:99:c0:8b:bf:88:
80:5e:35:73:5f:f6:c9:27:b9:4c:30:c1:33:36:46:7b:b1:be:
68:01:4e:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:50 2023 by rpki-client on console-ams.rpki-client.org