Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/9e57aa-8901-4bd8-8295-9c1a53580e39/1/Bg2wETKZr08uxL_YVZR4D8GeLCU.roa
File: Bg2wETKZr08uxL_YVZR4D8GeLCU.roa (raw, json)
Hash identifier: lTnm1uCi0KidF5YYiLB5RVfyW0qWm3H1jDTgtxvyb+Q=
Subject key identifier: 06:0D:B0:11:32:99:AF:4F:2E:C4:BF:D8:55:94:78:0F:C1:9E:2C:25
Certificate issuer: /CN=266e0c40e4e9370db99ad27a97298d7d05598f73
Certificate serial: 070C8014
Authority key identifier: 26:6E:0C:40:E4:E9:37:0D:B9:9A:D2:7A:97:29:8D:7D:05:59:8F:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jm4MQOTpNw25mtJ6lymNfQVZj3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/9e57aa-8901-4bd8-8295-9c1a53580e39/1/Bg2wETKZr08uxL_YVZR4D8GeLCU.roa
Signing time: Sat 01 Jan 2022 05:52:25 +0000
ROA not before: Sat 01 Jan 2022 05:52:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 185.252.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118259732 (0x70c8014)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=266e0c40e4e9370db99ad27a97298d7d05598f73
Validity
Not Before: Jan 1 05:52:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=060db0113299af4f2ec4bfd85594780fc19e2c25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:de:76:e3:84:2f:c9:14:9c:e9:3e:bd:a6:27:
31:4e:6a:a1:2c:39:79:0e:b2:dc:29:c3:08:45:03:
d5:28:3a:7f:7e:46:f1:d5:1b:48:ce:ca:79:19:d7:
ea:d9:55:bc:35:23:db:bc:0d:65:84:43:22:85:db:
1c:b2:15:a8:d3:b3:6e:2a:8c:6e:64:cb:df:6e:85:
22:98:3f:63:ff:85:f5:02:75:27:15:15:7c:82:68:
29:24:ec:62:ba:35:d8:cc:f9:48:85:e6:59:dd:cc:
fd:63:00:13:43:c1:ab:08:76:16:46:ae:3c:76:9f:
f7:c1:3e:b6:a9:59:c9:43:ef:77:7a:73:6b:e4:ab:
6a:12:e1:20:93:88:91:e5:c4:ec:e6:21:1a:9e:20:
73:d7:b3:31:62:ff:45:32:6b:0c:19:e8:73:70:97:
1f:f0:d5:d0:a3:8c:a0:bf:23:53:4f:27:89:a1:a1:
53:31:cd:3b:e3:bb:6c:52:9d:89:66:c8:d6:d7:f0:
ad:ba:84:13:d9:04:12:57:03:03:a2:66:63:e8:d5:
66:7e:7c:63:45:ae:ee:d0:78:3c:f9:c7:6f:88:cf:
df:a1:be:3b:04:70:50:3a:22:b7:44:3b:7c:ca:de:
83:6d:c2:e1:71:f6:cc:a4:4c:20:76:72:5d:75:ed:
fe:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:0D:B0:11:32:99:AF:4F:2E:C4:BF:D8:55:94:78:0F:C1:9E:2C:25
X509v3 Authority Key Identifier:
keyid:26:6E:0C:40:E4:E9:37:0D:B9:9A:D2:7A:97:29:8D:7D:05:59:8F:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jm4MQOTpNw25mtJ6lymNfQVZj3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9e57aa-8901-4bd8-8295-9c1a53580e39/1/Bg2wETKZr08uxL_YVZR4D8GeLCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9e57aa-8901-4bd8-8295-9c1a53580e39/1/Jm4MQOTpNw25mtJ6lymNfQVZj3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.43.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:af:92:f9:22:ea:9f:09:2a:4c:43:4f:cb:e7:f6:61:7a:e8:
be:3f:4c:7a:ae:78:9e:f6:b7:9b:4a:34:98:a1:9e:7d:2f:ec:
54:57:96:ba:74:b9:81:05:4a:9a:3c:0a:88:f7:37:62:d7:6d:
b6:db:94:76:38:5b:23:f9:1e:2c:0c:d4:86:58:20:58:f6:b7:
76:a0:31:a0:d1:ee:5e:9c:c6:32:8c:f5:06:68:f0:10:85:be:
de:24:d4:62:dd:71:c4:9e:5e:55:c8:45:89:51:98:e4:46:65:
b3:12:5f:b2:93:ae:f8:e0:12:c2:6a:31:0e:7e:47:df:f6:6e:
e3:11:8c:ad:47:90:ad:31:1a:7e:d1:52:b4:69:ef:5e:4c:a9:
df:ed:85:e2:77:e2:64:4f:4e:59:ab:e4:e2:50:fb:56:6e:96:
b3:0a:f2:50:7f:f8:c1:de:07:6c:3e:b9:85:02:fa:73:95:5d:
69:9a:91:7b:09:b5:7a:00:92:65:fc:d2:e8:34:dd:62:4d:a2:
4c:88:9d:d9:c7:ff:c0:7e:24:43:75:05:86:b6:a2:e6:c9:ad:
45:5b:ef:99:09:06:65:af:8a:e2:ab:0c:20:68:25:ad:9f:e1:
fd:54:f6:2a:34:39:40:88:40:b2:fd:de:c6:c8:10:35:e2:ae:
aa:36:21:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:27 2024 by rpki-client on console-fra.rpki-client.org