Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/BbO_THz46wUr48DEDV9055ktvTw.roa
File: BbO_THz46wUr48DEDV9055ktvTw.roa (raw, json)
Hash identifier: pGbp1fF8TV2yAhmFOAB2o5Jdov2A2Hn76R1WybfG93Q=
Subject key identifier: 05:B3:BF:4C:7C:F8:EB:05:2B:E3:C0:C4:0D:5F:74:E7:99:2D:BD:3C
Certificate issuer: /CN=86b22303de4b0a870fcfe7b6556c024f75c76a34
Certificate serial: 0219458B
Authority key identifier: 86:B2:23:03:DE:4B:0A:87:0F:CF:E7:B6:55:6C:02:4F:75:C7:6A:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hrIjA95LCocPz-e2VWwCT3XHajQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/BbO_THz46wUr48DEDV9055ktvTw.roa
Signing time: Sat 01 Jan 2022 16:04:58 +0000
ROA not before: Sat 01 Jan 2022 16:04:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25591
IP address blocks: 5.183.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35210635 (0x219458b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86b22303de4b0a870fcfe7b6556c024f75c76a34
Validity
Not Before: Jan 1 16:04:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05b3bf4c7cf8eb052be3c0c40d5f74e7992dbd3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:20:48:1f:bb:46:31:f9:ee:2e:68:6a:d3:6e:
79:7b:97:fa:4e:f4:e0:54:2d:1d:53:10:24:7c:b1:
1b:db:a3:4c:80:d7:6e:9a:74:ba:27:6c:b7:63:77:
51:ab:52:59:cf:28:e4:26:19:b9:c3:4a:c4:a3:ad:
00:ce:e0:e6:5d:22:16:9c:14:d5:3c:75:42:25:4d:
16:b2:21:2a:2a:ea:0d:f1:d8:40:5b:35:0e:85:99:
8a:d6:ec:1a:1f:e9:0d:c8:2a:40:a8:42:9c:2d:ed:
38:72:da:76:80:1f:0a:b8:1a:f4:69:44:5e:0c:36:
7e:51:cb:d9:21:de:55:01:9c:19:1f:e8:0b:8b:6d:
a8:55:78:1b:06:c0:84:ee:6a:07:c8:f1:74:a4:4c:
1a:24:22:72:3b:75:00:c9:9e:97:52:91:a6:88:20:
e5:f0:32:bd:bc:4c:a9:d8:34:7c:50:db:1d:58:35:
8d:26:bc:00:a3:4b:32:a1:a6:25:45:91:8c:1d:5b:
e4:51:af:83:75:28:63:95:74:2b:80:e1:65:33:19:
fa:9d:87:fb:7c:11:4f:17:de:83:16:d9:25:96:98:
ef:55:19:4d:95:40:5e:72:5c:ec:08:fa:9f:ff:7e:
4f:ca:38:70:11:82:6e:ad:82:3a:df:6a:05:69:81:
45:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:B3:BF:4C:7C:F8:EB:05:2B:E3:C0:C4:0D:5F:74:E7:99:2D:BD:3C
X509v3 Authority Key Identifier:
keyid:86:B2:23:03:DE:4B:0A:87:0F:CF:E7:B6:55:6C:02:4F:75:C7:6A:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hrIjA95LCocPz-e2VWwCT3XHajQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/BbO_THz46wUr48DEDV9055ktvTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.68.0/22
Signature Algorithm: sha256WithRSAEncryption
31:24:07:86:61:9e:fc:36:38:f8:b9:36:56:79:13:39:9d:38:
f3:d6:8c:f5:e2:f6:50:72:18:86:e7:1f:8c:2b:b0:d2:f9:dc:
b4:37:69:7d:f9:2d:d5:5a:98:8b:7a:e9:bd:1d:12:b7:36:f7:
67:f4:85:fc:4c:db:f8:c3:52:9d:2d:1f:00:8b:55:40:8a:2f:
83:64:4b:fe:73:15:b9:00:bb:10:0b:64:f0:8a:f4:f6:d6:5d:
fd:fd:be:a2:9c:ea:6a:a4:92:3b:ad:86:40:4e:66:80:ec:2b:
78:94:66:3d:6b:20:3e:f3:62:51:39:be:71:12:ed:cb:8b:04:
0c:e1:35:64:10:ad:ac:64:57:c1:00:ad:31:24:41:c8:e5:78:
a2:df:1d:07:f6:09:48:99:26:99:a6:58:1d:ef:39:c0:6c:f4:
30:a7:08:9e:dd:af:13:4d:96:40:c0:c9:ea:e4:25:b1:eb:3c:
4a:d8:6a:81:2c:d5:90:18:c4:7f:3d:67:ff:55:2e:36:1c:32:
ea:ee:f1:a5:6c:51:3a:3b:23:19:e0:c4:83:dd:52:40:f8:36:
fd:03:d8:b8:cf:98:e7:28:b1:1c:e1:d7:74:b0:e1:9a:b7:4f:
84:4f:3a:16:a1:70:9d:e9:bc:4c:a0:be:4f:c4:bc:fb:28:25:
bd:f4:6e:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:39 2025 by rpki-client