Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/bad1c1-365d-41de-ad7c-ce8fc93adb21/1/k-BvmdkoYMH6ikA9d1M5vPMsglE.roa
File: k-BvmdkoYMH6ikA9d1M5vPMsglE.roa (raw, json)
Hash identifier: sFZIrJuBNqxMRN+l85PUjTwnnmdqyOqBdCpukmPI18k=
Subject key identifier: 93:E0:6F:99:D9:28:60:C1:FA:8A:40:3D:77:53:39:BC:F3:2C:82:51
Certificate issuer: /CN=474a88bc6e9e10bbaf150f019bbf8a615a2b03c2
Certificate serial: 28D05F5F
Authority key identifier: 47:4A:88:BC:6E:9E:10:BB:AF:15:0F:01:9B:BF:8A:61:5A:2B:03:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R0qIvG6eELuvFQ8Bm7-KYVorA8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/bad1c1-365d-41de-ad7c-ce8fc93adb21/1/k-BvmdkoYMH6ikA9d1M5vPMsglE.roa
Signing time: Sat 01 Jan 2022 15:00:27 +0000
ROA not before: Sat 01 Jan 2022 15:00:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44305
IP address blocks: 217.61.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 684744543 (0x28d05f5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=474a88bc6e9e10bbaf150f019bbf8a615a2b03c2
Validity
Not Before: Jan 1 15:00:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93e06f99d92860c1fa8a403d775339bcf32c8251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e0:7f:78:3a:17:a5:9c:95:ec:12:4c:a4:fa:
90:b3:46:79:38:5f:a6:8a:1c:1e:ac:d1:96:1e:7d:
df:7f:8a:40:17:2e:0e:d3:ff:25:ea:44:68:25:9a:
0a:3c:a5:68:e0:80:87:1b:70:e4:42:99:f3:40:93:
b4:4e:36:d5:42:21:5d:ff:d7:cf:20:28:ba:88:04:
1b:2a:5a:cc:2a:99:79:e1:8c:d7:50:a7:3f:5e:3e:
22:8a:b2:f3:27:69:a6:43:ab:9d:2a:05:f2:2e:62:
8b:6c:64:33:f3:b0:c5:7a:d6:7f:fa:40:d5:b3:fa:
25:06:b8:b3:fc:6d:a2:42:53:02:9b:5f:18:8b:4b:
2f:d8:26:94:4a:4f:4f:0d:ae:28:cf:78:a2:5c:37:
f3:73:e4:57:13:1f:14:36:66:58:20:90:bb:63:2c:
55:84:f9:79:bb:ba:ab:5e:92:43:da:d4:bc:a6:e0:
ef:ce:aa:cd:fc:35:ec:0b:50:0d:ba:de:67:85:f1:
5d:ee:57:52:29:67:08:e8:1a:ef:36:8f:82:7f:58:
10:23:ed:7d:bd:6a:8d:a1:81:9c:65:fe:1e:93:90:
0a:45:e1:0d:7b:18:b2:ab:52:c8:8b:bb:83:27:52:
81:f0:23:70:e2:ae:51:67:f5:a3:9a:7b:47:62:ab:
5f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:E0:6F:99:D9:28:60:C1:FA:8A:40:3D:77:53:39:BC:F3:2C:82:51
X509v3 Authority Key Identifier:
keyid:47:4A:88:BC:6E:9E:10:BB:AF:15:0F:01:9B:BF:8A:61:5A:2B:03:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R0qIvG6eELuvFQ8Bm7-KYVorA8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bad1c1-365d-41de-ad7c-ce8fc93adb21/1/k-BvmdkoYMH6ikA9d1M5vPMsglE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bad1c1-365d-41de-ad7c-ce8fc93adb21/1/R0qIvG6eELuvFQ8Bm7-KYVorA8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.61.186.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:54:ac:1e:0c:50:5c:c3:2e:e5:59:77:00:14:27:bc:c1:ca:
77:87:57:b9:b4:7e:92:49:a3:0e:83:25:85:30:b2:e5:76:2d:
79:60:c7:e3:ff:12:d2:a3:95:d5:54:69:cb:70:90:ea:86:b6:
e1:ae:9c:84:9a:aa:50:b1:3e:eb:1b:64:05:de:1b:01:57:ed:
bf:f2:b1:02:a2:ec:ac:ee:c0:13:65:15:62:40:3d:38:00:8c:
db:cb:ff:7b:c2:40:61:97:19:2c:08:8b:28:64:63:87:5b:5a:
3f:12:f3:8d:ad:6c:c7:99:76:1f:c1:86:55:d6:ce:d8:01:59:
9b:f5:83:7c:fd:dc:da:5e:00:82:71:b7:0e:9d:09:f3:88:55:
65:77:be:a2:6d:15:55:c8:81:3c:bc:81:f3:df:90:e5:da:46:
a4:2a:07:45:25:f6:d9:e0:e5:41:51:4c:fe:8e:30:12:3d:32:
45:82:a5:88:c6:09:cf:5f:1e:ef:29:53:e8:99:a0:51:2b:d2:
75:50:5d:4d:e2:af:12:1c:b1:9f:45:c7:93:00:82:ec:89:25:
e3:34:cb:fb:a2:cc:a7:45:9f:76:26:b7:34:29:32:a9:65:3a:
cc:04:da:76:54:e6:0d:db:bb:10:46:9a:e4:99:2f:97:db:44:
83:02:c6:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:21 2024 by rpki-client on console-fra.rpki-client.org