Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/bR903LSxvvLkeRLbGJDvi4lPc90.roa
File: bR903LSxvvLkeRLbGJDvi4lPc90.roa (raw, json)
Hash identifier: KMJNdjCmIoiqj//ry/DCzz+UciVDgarHBhixs2Uss/Q=
Subject key identifier: 6D:1F:74:DC:B4:B1:BE:F2:E4:79:12:DB:18:90:EF:8B:89:4F:73:DD
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03D7861B
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/bR903LSxvvLkeRLbGJDvi4lPc90.roa
Signing time: Sat 01 Jan 2022 13:04:03 +0000
ROA not before: Sat 01 Jan 2022 13:04:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62064
IP address blocks: 185.28.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64456219 (0x3d7861b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d1f74dcb4b1bef2e47912db1890ef8b894f73dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:00:35:95:3e:09:b1:1c:a9:00:d0:3e:45:ec:
26:bd:fb:c2:7c:39:f6:7a:ec:12:26:9a:4b:2e:2d:
1b:9f:8f:9e:dd:34:23:b9:91:d0:5f:b3:92:73:1b:
71:d3:b9:9d:66:c2:38:e4:84:c8:40:4c:3a:50:14:
e8:05:b8:c8:88:0c:6f:b4:15:4f:e3:43:ce:f0:46:
ce:96:ab:c7:af:79:1a:c2:a2:f4:4a:6c:3f:ee:74:
8b:d5:27:e9:07:a9:06:49:18:58:77:6a:6a:7e:12:
41:99:52:54:3e:a0:7a:c0:30:f0:aa:8c:fb:2c:b1:
8d:30:8d:9e:7b:aa:2e:2a:23:7a:5a:15:cc:21:52:
60:1f:72:d0:fc:98:3e:cc:a6:d8:53:80:78:5f:58:
ad:5b:e5:84:36:c2:0d:c5:7a:94:34:72:1f:67:51:
bf:3d:d8:87:87:c1:12:6e:42:61:83:23:5b:82:eb:
48:b5:0c:b7:19:d6:5c:d7:e0:1e:40:b1:fe:29:ad:
cb:e7:8c:b5:eb:8d:c9:ab:23:f6:ba:ec:90:7e:9c:
c4:69:72:45:9b:2c:5d:27:99:91:ad:c0:3d:71:2b:
71:45:d3:c9:fb:c8:8a:ca:d1:bf:cc:ba:df:e4:a9:
99:da:8a:64:09:bc:67:4e:60:54:67:6f:c0:32:29:
cd:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:1F:74:DC:B4:B1:BE:F2:E4:79:12:DB:18:90:EF:8B:89:4F:73:DD
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/bR903LSxvvLkeRLbGJDvi4lPc90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.28.50.0/24
Signature Algorithm: sha256WithRSAEncryption
12:18:9d:87:09:72:63:a1:3a:9e:8f:bb:61:da:d4:7e:7c:fa:
35:94:e7:46:53:3d:b3:b8:10:4c:fa:7a:08:34:dd:05:3d:b3:
f3:25:59:1b:57:de:0c:d7:b6:20:82:b7:ec:95:42:fd:4b:a2:
cd:37:7f:a4:c7:f7:3f:a4:ca:db:b8:d2:cc:de:c5:7c:31:60:
7a:e3:f6:ab:fd:cd:c4:bf:92:c9:a8:48:5a:4f:97:8a:b0:f2:
71:92:c4:ca:a3:84:85:95:82:33:53:18:11:a9:84:bf:f7:aa:
67:38:e8:8c:ac:7b:27:a5:c5:4e:5f:6a:3a:b6:c9:47:31:34:
c7:d2:38:80:45:07:67:d6:a1:8c:b9:e9:37:86:13:b6:05:76:
f6:b1:5d:7a:31:44:11:ca:17:75:b2:a8:98:28:d4:c8:94:64:
c0:37:01:90:9e:2c:a9:7a:14:ba:f7:d8:b2:19:3a:bf:1b:0a:
8b:a7:d1:e8:9e:50:af:a1:e3:5d:bf:20:7f:01:ab:b7:43:6f:
9b:86:60:5c:c2:4f:86:29:1c:60:5d:f2:1a:e9:27:86:45:58:
4a:f2:ef:8a:bf:e9:3d:e3:0a:4f:48:30:e8:c4:dc:7d:0f:20:
ab:a9:27:53:84:17:16:ef:36:38:b7:7e:6c:14:f9:77:64:9d:
d6:a8:b1:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:54 2023 by rpki-client on console-fra.rpki-client.org