Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/73e504-b7bb-4ff8-bad8-b79552e700c5/1/Bm7cbsAeSltWz3B-XX1jZ-FE3MA.roa
File: Bm7cbsAeSltWz3B-XX1jZ-FE3MA.roa (raw, json)
Hash identifier: njjNuwDiUawkcFdAmhuoUINnPRoJePFjgCA3tdurM0w=
Subject key identifier: 06:6E:DC:6E:C0:1E:4A:5B:56:CF:70:7E:5D:7D:63:67:E1:44:DC:C0
Certificate issuer: /CN=67b3b58b452239001eac2e221ba56c3afed7a790
Certificate serial: 016BE4
Authority key identifier: 67:B3:B5:8B:45:22:39:00:1E:AC:2E:22:1B:A5:6C:3A:FE:D7:A7:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7O1i0UiOQAerC4iG6VsOv7Xp5A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/73e504-b7bb-4ff8-bad8-b79552e700c5/1/Bm7cbsAeSltWz3B-XX1jZ-FE3MA.roa
Signing time: Thu 21 Apr 2022 09:28:27 +0000
ROA not before: Thu 21 Apr 2022 09:28:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35597
IP address blocks: 194.117.242.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93156 (0x16be4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b3b58b452239001eac2e221ba56c3afed7a790
Validity
Not Before: Apr 21 09:28:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=066edc6ec01e4a5b56cf707e5d7d6367e144dcc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:58:bf:0b:ce:87:83:c0:df:a2:b0:be:46:db:
55:87:41:46:2a:0c:e8:23:e1:b8:3a:0a:ea:78:09:
cd:cd:d2:0d:21:fa:ba:f0:54:bf:44:ad:82:67:d5:
35:30:ed:b2:88:4d:6a:02:40:c5:bd:b0:0a:f5:41:
0b:25:55:12:5a:79:c0:fc:25:f1:64:9c:eb:d0:04:
b5:0a:9b:80:e9:89:da:c6:7a:9d:ec:27:29:29:09:
60:44:c4:90:c5:1a:50:50:0d:01:f2:00:f4:a0:e6:
65:77:aa:9e:c3:d8:a9:19:23:af:b5:da:43:bd:d3:
d2:75:21:d0:ec:58:d3:0c:3c:a8:6b:5c:54:e6:0a:
d2:9d:5d:5b:40:24:22:ca:0d:dd:94:c6:19:21:6c:
23:26:06:67:17:9a:65:9c:08:13:94:a9:87:b5:cd:
2b:0c:a2:45:6a:5b:ac:77:f2:a8:e0:e5:4a:8d:18:
f6:5c:47:cb:5e:aa:15:87:fb:3b:af:e4:37:bd:c1:
34:8f:fd:1b:de:7d:7a:13:05:73:f3:9d:c0:6d:bb:
0e:45:c7:c8:e3:5b:b9:bb:f1:68:af:83:44:31:bb:
ca:30:b0:67:e7:ce:3d:28:c7:49:d8:48:ae:c4:cf:
33:14:42:4d:1e:21:fb:19:d7:d8:68:d7:3b:37:b1:
21:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:6E:DC:6E:C0:1E:4A:5B:56:CF:70:7E:5D:7D:63:67:E1:44:DC:C0
X509v3 Authority Key Identifier:
keyid:67:B3:B5:8B:45:22:39:00:1E:AC:2E:22:1B:A5:6C:3A:FE:D7:A7:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7O1i0UiOQAerC4iG6VsOv7Xp5A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/73e504-b7bb-4ff8-bad8-b79552e700c5/1/Bm7cbsAeSltWz3B-XX1jZ-FE3MA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/73e504-b7bb-4ff8-bad8-b79552e700c5/1/Z7O1i0UiOQAerC4iG6VsOv7Xp5A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.117.242.0/23
Signature Algorithm: sha256WithRSAEncryption
52:d5:d3:76:79:f9:16:2b:13:32:c2:dd:ca:2f:0b:d7:a4:c6:
96:a7:e7:77:9e:56:02:df:1d:38:ca:1e:c3:55:70:bc:26:8c:
77:ac:56:f7:2d:04:20:6d:a4:2b:9b:ee:90:55:6b:fa:de:0c:
05:6b:47:83:68:7c:c8:4b:ce:04:5d:f3:b6:e8:d7:05:49:1f:
9f:76:5e:a9:7a:99:11:aa:f5:a8:d5:cd:c2:ec:8b:62:95:35:
c8:34:2d:13:d8:0c:cc:70:f0:87:03:8d:41:fc:dd:77:ec:91:
8c:a6:12:0e:22:c0:d0:ff:d0:23:6b:0a:c4:ad:c8:bd:e3:cc:
8e:7d:6d:c1:61:b1:f1:96:ca:75:12:c7:8c:52:ac:74:11:7d:
34:6b:05:3b:8c:7f:07:fc:3a:52:ca:83:4c:06:92:fc:c7:a4:
35:a8:31:30:e4:64:52:60:57:ba:33:22:a0:e3:ad:bc:73:c9:
8c:7a:10:62:a2:f4:73:68:9d:b7:35:8e:f9:2a:55:d9:57:3b:
77:85:6f:34:76:cd:8f:6d:9c:01:56:66:e4:c0:b4:d5:ef:f2:
12:27:ea:52:db:6f:96:e1:c6:58:09:e0:74:3b:2c:ef:59:79:
46:25:47:7e:dc:d8:d7:ed:dd:48:92:0a:2c:ee:50:ca:ad:03:
7a:c2:10:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:16 2024 by rpki-client on console-fra.rpki-client.org