Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/6d569d-c44b-4c34-a159-d583f9a66e3b/1/BjYMcwRSgg-gorkP5bmorlU5EJk.roa
File: BjYMcwRSgg-gorkP5bmorlU5EJk.roa (raw, json)
Hash identifier: WF+gwaNJnpcgvuZDzaU9RTAr128z3olgCkgXuEdtooY=
Subject key identifier: 06:36:0C:73:04:52:82:0F:A0:A2:B9:0F:E5:B9:A8:AE:55:39:10:99
Certificate issuer: /CN=84c17102b6e92e292ec8acaf659e3c290a8d0b68
Certificate serial: 0321DDAF
Authority key identifier: 84:C1:71:02:B6:E9:2E:29:2E:C8:AC:AF:65:9E:3C:29:0A:8D:0B:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hMFxArbpLikuyKyvZZ48KQqNC2g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/6d569d-c44b-4c34-a159-d583f9a66e3b/1/BjYMcwRSgg-gorkP5bmorlU5EJk.roa
Signing time: Sat 01 Jan 2022 00:52:05 +0000
ROA not before: Sat 01 Jan 2022 00:52:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212752
IP address blocks: 91.240.165.0/24 maxlen: 24
2a10:b480::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52551087 (0x321ddaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84c17102b6e92e292ec8acaf659e3c290a8d0b68
Validity
Not Before: Jan 1 00:52:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06360c730452820fa0a2b90fe5b9a8ae55391099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f0:cd:db:f6:86:b5:41:1e:ae:2c:23:a0:75:
0f:e2:6d:80:72:09:d4:7e:95:ad:ec:1a:be:1e:66:
b1:0a:eb:73:e1:67:76:d2:ef:ea:e1:5a:6d:12:4b:
ff:2b:0f:19:8b:e2:a6:f8:98:a0:93:b3:78:5b:88:
7a:a2:95:58:43:cb:67:5e:31:9d:3c:12:52:22:64:
af:dc:bc:96:6e:f1:75:4e:21:6e:fa:f2:d6:1b:e7:
9b:3c:c0:b3:6a:12:e2:9a:05:df:9d:c9:53:19:c8:
61:c3:52:c9:05:1e:2f:ea:4f:a6:ea:60:45:5b:a3:
11:d5:b2:75:8e:a5:69:b5:58:82:e2:9c:34:c0:03:
ad:0d:93:f4:13:54:44:63:89:11:53:ab:06:79:da:
97:ee:e7:30:4d:96:08:81:76:7a:3c:e7:03:b9:ee:
f0:b9:79:d4:36:51:d9:c9:89:5b:01:7d:8d:a9:ba:
40:84:10:b3:84:bf:98:81:ae:57:ce:7b:6f:88:25:
20:8d:dd:0d:9f:46:e7:91:e9:e0:bb:21:9e:56:1c:
38:37:d8:fe:e7:a3:5d:f1:72:dd:f6:90:a4:b0:d7:
e9:66:cf:a2:b3:a8:be:82:f2:63:f6:f3:e9:c6:fe:
33:40:10:bb:ad:f0:b5:d8:8c:7e:6b:da:11:10:af:
70:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:36:0C:73:04:52:82:0F:A0:A2:B9:0F:E5:B9:A8:AE:55:39:10:99
X509v3 Authority Key Identifier:
keyid:84:C1:71:02:B6:E9:2E:29:2E:C8:AC:AF:65:9E:3C:29:0A:8D:0B:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hMFxArbpLikuyKyvZZ48KQqNC2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/6d569d-c44b-4c34-a159-d583f9a66e3b/1/BjYMcwRSgg-gorkP5bmorlU5EJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/6d569d-c44b-4c34-a159-d583f9a66e3b/1/hMFxArbpLikuyKyvZZ48KQqNC2g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.165.0/24
IPv6:
2a10:b480::/29
Signature Algorithm: sha256WithRSAEncryption
b1:45:01:32:e7:01:e8:d3:90:dd:c5:ac:ce:cb:90:69:01:ab:
2d:6a:91:d2:64:65:c7:5e:2c:c4:69:12:3b:25:0e:2a:ae:4c:
1f:17:04:f2:4d:58:79:43:3e:c3:b7:44:10:0c:8b:71:d0:b0:
23:9a:9b:36:f5:e2:05:f1:e0:ad:26:7e:41:26:0b:cc:63:c9:
cc:14:01:4c:b7:f1:4f:62:71:42:e8:9d:f4:d5:0c:25:76:21:
5f:5b:1e:d4:a8:11:1a:b2:01:0c:ac:78:4f:31:b7:39:fb:b9:
56:db:39:3e:25:a3:1d:50:37:d3:ec:ae:d5:87:4e:96:da:8b:
f1:7d:89:9e:ee:fe:7e:fd:5c:41:a9:19:9c:87:eb:f2:b2:b3:
62:ce:80:d1:84:44:ed:b4:8e:de:a3:94:b7:69:b3:d6:f9:b9:
ae:0c:cf:df:8f:f9:f1:88:3f:5c:40:c4:d0:2c:b5:91:63:e7:
24:4d:18:30:2a:23:b4:77:33:4b:be:58:78:ad:2b:a8:b1:ce:
7d:5e:e3:45:d1:a4:7d:b6:39:3d:33:c4:e1:c7:02:dd:a7:f0:
3b:81:03:ab:c9:ca:36:5a:d1:ed:87:f0:9a:63:a2:47:83:92:
28:74:67:6f:bf:cc:4e:80:22:b5:30:62:f4:07:99:5e:71:15:
2b:b3:8d:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:55 2024 by rpki-client on console-ams.rpki-client.org