Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/BmUmZQ7d-6JaVRLM894H8zqkZDw.roa
File: BmUmZQ7d-6JaVRLM894H8zqkZDw.roa (raw, json)
Hash identifier: q59xxbor6pYQf2RnEqyJeYlPBnhRMHwYlFE65M5IHk0=
Subject key identifier: 06:65:26:65:0E:DD:FB:A2:5A:55:12:CC:F3:DE:07:F3:3A:A4:64:3C
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 0184A96C95561CC9BF623EDAEBFE82EFF59D
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/BmUmZQ7d-6JaVRLM894H8zqkZDw.roa
Signing time: Thu 24 Nov 2022 11:36:16 +0000
ROA not before: Thu 24 Nov 2022 11:36:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 62.182.168.0/24 maxlen: 24
185.65.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a9:6c:95:56:1c:c9:bf:62:3e:da:eb:fe:82:ef:f5:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Nov 24 11:36:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=066526650eddfba25a5512ccf3de07f33aa4643c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:86:b5:e3:c0:f3:9b:a6:b7:5f:b5:1f:5f:fa:
02:9f:db:a9:c1:0e:e4:52:5d:a1:73:be:85:36:57:
e1:d8:18:b3:5d:61:d8:29:9d:9f:d8:f9:1c:89:4f:
3e:ed:f7:cf:46:de:bc:53:3a:e0:e3:3d:d2:e9:a7:
6a:4e:62:26:7c:04:a6:a8:40:19:f2:73:6d:23:a7:
51:6d:f8:29:32:9f:83:1b:32:c7:9d:8e:a6:bc:9d:
b7:2f:86:54:21:de:ef:fb:01:db:5a:43:d9:0c:58:
b7:cd:0f:24:2d:9a:20:f5:34:d6:78:cf:f7:7f:fa:
26:3b:6d:ac:e9:a1:74:3a:4c:84:bd:1d:d3:01:eb:
46:c7:1e:e7:02:32:94:8f:f8:eb:33:36:c0:90:0b:
2c:d5:8e:91:0a:89:4f:2d:8f:e6:73:a7:9d:78:1d:
a6:dc:76:22:3a:a2:e4:67:8b:22:fa:74:9a:3b:f3:
43:66:e0:19:07:40:68:db:ac:8c:a9:9c:84:47:e2:
31:09:18:90:24:59:3d:06:43:af:c6:f5:7f:4f:15:
c6:86:ec:0c:22:78:10:02:93:85:d7:f3:9a:f7:1a:
25:c1:2c:73:9e:c2:24:e2:43:9d:8d:20:a7:ba:b6:
c6:77:52:1c:2a:64:6e:68:7f:f4:42:9b:88:8f:c4:
1a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:65:26:65:0E:DD:FB:A2:5A:55:12:CC:F3:DE:07:F3:3A:A4:64:3C
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/BmUmZQ7d-6JaVRLM894H8zqkZDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.182.168.0/24
185.65.68.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:bb:d8:74:4a:61:15:b4:c0:02:f6:f1:17:62:e8:ca:b8:1d:
8a:9f:e6:27:d9:28:42:87:99:b9:96:19:95:d1:b5:8c:f4:6f:
34:15:f5:b5:aa:33:b6:68:55:9c:67:5f:b9:ba:74:12:83:f7:
44:32:d1:04:3f:01:47:a0:61:2f:ad:68:59:de:e7:61:05:a2:
8d:cd:74:b0:28:7d:c0:f4:51:d3:41:ed:1a:93:fc:8e:0a:18:
e6:97:a0:8f:2d:21:a9:52:66:80:c1:ec:8b:08:f4:70:9f:0d:
ea:d7:97:83:44:2a:cb:10:59:44:08:f0:05:d0:3d:54:e2:3f:
e1:63:15:ad:1a:0e:c8:b2:00:25:51:5b:ed:f9:af:ab:fc:89:
f8:38:14:d5:d2:bd:ca:25:c8:c5:54:77:ec:2f:0f:c4:b8:33:
af:39:82:15:84:b4:39:ef:bc:ed:6d:1d:ad:e9:4a:c2:4b:fd:
f2:ca:ad:fe:a8:e0:af:5d:1c:1d:3c:4b:63:c3:e6:69:b4:9f:
57:ab:0e:93:8e:bd:87:a9:40:1f:24:fa:20:ba:1e:a9:1a:59:
4b:4d:ed:bd:e2:52:da:0d:2b:5e:95:a1:24:15:ff:54:3d:0a:
07:6a:ce:ad:97:5c:61:8e:1b:1d:9d:c6:4c:3b:ce:5d:45:e0:
a1:f7:cc:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:12 2023 by rpki-client on console-fra.rpki-client.org