Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/Bg6DsEFoLW5-VyosRb6v8gxdgPE.roa
File: Bg6DsEFoLW5-VyosRb6v8gxdgPE.roa (raw, json)
Hash identifier: FAuBfM+e36JbUvaqTwpgwKb6vU8u8yaENUUHgubiBdo=
Subject key identifier: 06:0E:83:B0:41:68:2D:6E:7E:57:2A:2C:45:BE:AF:F2:0C:5D:80:F1
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 0183E551D3386E516B46398AF6CE6410FB25
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/Bg6DsEFoLW5-VyosRb6v8gxdgPE.roa
Signing time: Mon 17 Oct 2022 09:41:28 +0000
ROA not before: Mon 17 Oct 2022 09:41:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47253
IP address blocks: 77.91.148.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e5:51:d3:38:6e:51:6b:46:39:8a:f6:ce:64:10:fb:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Oct 17 09:41:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=060e83b041682d6e7e572a2c45beaff20c5d80f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:34:bc:29:b7:9a:0d:bb:a5:09:94:fa:92:b9:
62:5e:80:cb:7d:0c:73:25:1a:97:7c:fa:bd:d2:fd:
7b:80:d1:c3:cd:25:c8:86:59:bc:b9:b2:e8:18:be:
5b:ae:b9:ba:a6:20:c0:98:7e:e1:9d:b1:e7:c8:da:
4a:a7:8f:1e:a8:38:f0:f3:5b:1e:c1:21:8f:4c:fb:
5d:bd:4e:47:a4:bc:2b:70:9c:6b:ea:02:3c:c2:17:
89:e4:00:97:a6:c4:19:f8:a3:80:1a:93:6d:ab:53:
62:c9:82:21:0c:ea:09:a4:e0:d7:89:c6:9d:4e:b0:
2e:1f:ef:9d:6a:d2:58:2f:0d:e5:a3:0c:62:b2:7a:
e8:12:ea:36:87:a8:95:d4:47:da:1e:6a:5a:3a:e0:
cd:48:c8:d6:34:2b:ed:93:23:96:f8:7e:fe:64:6c:
7b:f5:a1:97:92:5e:03:d0:42:57:b3:9d:2b:2f:43:
3b:59:63:a9:95:65:dd:76:a5:df:6c:47:af:ff:5f:
68:1c:86:79:39:d6:2b:9f:8a:ba:e9:99:f2:71:82:
c0:dd:9a:7a:24:9f:7c:74:b5:b3:d1:02:88:ee:83:
c4:1e:05:39:99:8b:f4:7b:a7:a4:bd:3f:9e:f6:56:
35:01:2a:03:90:c0:9c:35:c4:f4:1d:32:fc:52:8a:
73:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:0E:83:B0:41:68:2D:6E:7E:57:2A:2C:45:BE:AF:F2:0C:5D:80:F1
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/Bg6DsEFoLW5-VyosRb6v8gxdgPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.148.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:96:f8:02:43:03:24:7b:34:f2:be:c2:c9:b1:25:a3:60:5e:
e1:89:65:84:a3:f9:63:2a:73:5f:02:24:f9:a3:48:15:90:83:
a2:51:c4:07:29:2d:3e:5a:c7:fd:de:b6:ec:85:fc:9e:cc:9a:
74:78:b7:14:01:43:54:a0:70:65:78:5c:40:59:2c:55:53:58:
a4:d1:db:0e:7e:32:e5:33:d4:d5:6a:89:2f:55:e4:f5:48:67:
c7:e2:36:de:ad:56:e1:c3:99:94:25:b4:1f:ff:a0:50:a6:90:
45:43:0b:ab:4f:f6:b8:30:c6:08:18:6b:ec:4a:c0:02:6d:23:
17:1d:4d:11:e7:33:c8:5b:d8:c0:2b:96:f2:5a:67:ac:9f:76:
dd:20:fc:55:8c:a0:33:b1:ef:8e:0d:63:eb:da:20:1f:4f:da:
41:0b:59:60:c2:b9:85:2c:3d:06:af:7e:23:5d:f6:12:16:45:
d6:b3:38:8a:7b:fb:80:54:49:24:d0:2e:67:d2:af:a5:25:50:
e2:2f:df:22:94:be:ac:23:09:8f:a0:6a:bb:52:1f:eb:9d:8f:
e9:61:f2:40:34:56:e0:e3:c5:4a:ab:4f:e7:02:ab:26:04:84:
34:93:0c:0b:17:79:1e:33:de:58:11:53:0a:85:c0:b9:bf:fb:
f4:a5:3d:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:09 2024 by rpki-client on console-ams.rpki-client.org