Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/roBHHYnSd6lib1zAd_sXC2QBGdY.roa
File: roBHHYnSd6lib1zAd_sXC2QBGdY.roa (raw, json)
Hash identifier: 1viUicdPBdJMO9FbBNFkvFJwMqY7oEMPExjlFKFwYpI=
Subject key identifier: AE:80:47:1D:89:D2:77:A9:62:6F:5C:C0:77:FB:17:0B:64:01:19:D6
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0184EC82B7DEBDC04349B1CFFFD3F03452B0
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/roBHHYnSd6lib1zAd_sXC2QBGdY.roa
Signing time: Wed 07 Dec 2022 12:15:00 +0000
ROA not before: Wed 07 Dec 2022 12:15:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28546
IP address blocks: 85.92.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ec:82:b7:de:bd:c0:43:49:b1:cf:ff:d3:f0:34:52:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Dec 7 12:15:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae80471d89d277a9626f5cc077fb170b640119d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:71:02:1a:f2:45:6f:ff:62:46:f8:36:15:7a:
7e:7b:df:ee:98:83:5c:a2:f1:56:92:29:48:7a:f5:
f4:27:2c:c7:97:50:eb:9c:1f:25:ee:4e:ff:1f:2e:
b1:54:bc:47:d9:56:75:ad:b9:a4:96:31:7b:15:14:
35:f2:04:3b:92:95:90:11:78:b0:76:fa:04:93:41:
26:6c:02:ea:e3:53:b6:47:ec:c3:e6:09:2b:a2:b8:
0c:85:fb:bd:e4:92:72:b6:d1:4f:0d:61:95:03:f8:
84:a2:12:5b:48:54:9a:f0:b0:5b:69:38:16:57:ab:
d8:9d:4c:2d:c4:89:89:33:61:78:3d:4f:9f:e4:06:
8d:0a:51:20:1c:e0:ef:4e:89:b8:25:8d:8f:28:ea:
dd:7f:a1:8c:e7:b7:fe:0a:9c:a7:2a:ca:3c:41:d5:
e7:72:34:9b:3d:f2:36:1b:8b:eb:8c:65:61:6c:1b:
23:83:3f:6d:25:bb:b6:24:ac:0b:cb:e7:c0:ce:d3:
21:27:7a:da:00:8d:cc:c9:63:0c:63:9b:ca:42:d3:
fb:11:5e:c1:46:d0:04:ad:c7:e1:21:c1:8a:9a:cc:
9a:6d:f5:e5:bd:34:a5:89:39:51:7b:4f:37:ee:cb:
d7:db:de:11:cc:47:c8:22:5d:a6:d1:27:9c:13:db:
72:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:80:47:1D:89:D2:77:A9:62:6F:5C:C0:77:FB:17:0B:64:01:19:D6
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/roBHHYnSd6lib1zAd_sXC2QBGdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.92.124.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:25:3e:3a:47:af:c4:7a:cd:e4:ca:6a:0e:57:d4:4b:50:e8:
d2:cb:c4:66:65:f7:9d:73:a4:f6:8e:6c:54:8b:42:46:d7:fa:
8a:1a:49:bd:01:55:c9:90:e9:f7:9a:6c:ec:9d:f8:78:1c:72:
34:69:b4:97:bf:27:20:31:9a:b2:74:37:38:67:8e:73:15:ea:
8f:e5:57:30:c6:ad:33:3c:73:23:13:58:49:d2:13:09:9e:02:
19:4d:d8:0a:b5:0d:d5:87:a4:6e:d4:06:ca:06:25:6c:3f:cb:
99:1d:54:a7:fe:d2:d7:95:09:36:76:d4:67:36:7a:37:c8:4d:
34:28:f4:88:fa:f5:f7:06:2e:56:61:9c:a5:75:4b:65:78:dd:
4f:9a:49:04:ee:38:56:49:f2:de:3b:7f:2b:f6:ef:6a:cb:30:
58:ec:bf:7b:3d:d7:46:1c:c8:d6:3d:ef:20:3f:ce:fa:d7:49:
7c:ee:db:46:63:e8:12:ee:28:b8:c5:64:ba:af:34:6e:2b:1a:
f2:50:8b:f9:06:ed:95:6e:7c:c3:23:f7:f1:27:15:6c:c6:2b:
e5:54:e1:ce:af:8d:9e:05:fb:ca:65:2b:e7:cf:8d:0b:af:ea:
60:47:f1:54:28:cb:c8:62:c4:7f:31:6d:fc:3b:60:0e:0f:b9:
30:c4:8f:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:36 2023 by rpki-client on console-ams.rpki-client.org