Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/6018cb-339a-416f-af4c-1244ba9eacd9/1/BvRcfXX-tDnfe0sjv3R8kr58kIU.roa
File: BvRcfXX-tDnfe0sjv3R8kr58kIU.roa (raw, json)
Hash identifier: JvnMmqP+5NEvm3KIOd/vfJzIl/1pyiv3tY/0rNp2fDI=
Subject key identifier: 06:F4:5C:7D:75:FE:B4:39:DF:7B:4B:23:BF:74:7C:92:BE:7C:90:85
Certificate issuer: /CN=eeb526fe681118956441227133b320f5efbdfd6b
Certificate serial: 37389E99
Authority key identifier: EE:B5:26:FE:68:11:18:95:64:41:22:71:33:B3:20:F5:EF:BD:FD:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rUm_mgRGJVkQSJxM7Mg9e-9_Ws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/6018cb-339a-416f-af4c-1244ba9eacd9/1/BvRcfXX-tDnfe0sjv3R8kr58kIU.roa
Signing time: Sat 01 Jan 2022 04:51:18 +0000
ROA not before: Sat 01 Jan 2022 04:51:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31669
IP address blocks: 195.28.164.0/23 maxlen: 24
89.106.240.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 926457497 (0x37389e99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eeb526fe681118956441227133b320f5efbdfd6b
Validity
Not Before: Jan 1 04:51:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06f45c7d75feb439df7b4b23bf747c92be7c9085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:cd:47:d0:9a:19:02:6e:90:76:54:5d:00:df:
ef:8f:1f:f6:f4:b1:1a:dc:92:2d:8f:1f:c8:74:3e:
36:88:87:1a:b2:2c:87:09:75:95:08:0a:f9:fc:72:
3e:a5:f1:fa:93:e2:01:eb:02:40:d8:ae:07:a9:4b:
b1:36:37:93:a2:35:4a:4c:5d:fb:4b:e5:71:57:3f:
5e:78:66:08:f8:d2:4e:10:31:06:3d:fb:0b:00:0d:
06:84:09:db:79:72:88:3a:8a:68:50:2a:21:de:f9:
db:d1:42:9c:79:15:a4:5f:9f:35:39:88:9e:2e:fa:
b9:8f:9e:02:de:a0:8a:4c:bd:2d:b8:71:de:b4:97:
b7:c9:50:52:99:aa:26:72:4b:2b:88:c4:ae:9d:7e:
83:78:a9:23:4a:00:68:ca:d9:89:03:65:2c:5b:0f:
53:99:08:b3:a0:ba:a0:eb:6e:59:cd:ad:3f:92:39:
35:59:26:f0:78:14:ca:b2:fd:d4:28:38:3f:6c:75:
ca:b0:c9:6e:4d:f9:dc:46:10:f5:0c:55:26:86:fb:
85:68:8b:a9:83:b5:84:18:b6:5a:0e:de:b0:ae:ea:
4f:5d:76:9c:44:62:12:6a:56:c5:b5:53:c4:6a:0a:
00:5a:93:7d:8d:a2:05:ea:d9:13:68:ad:66:8b:92:
b1:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:F4:5C:7D:75:FE:B4:39:DF:7B:4B:23:BF:74:7C:92:BE:7C:90:85
X509v3 Authority Key Identifier:
keyid:EE:B5:26:FE:68:11:18:95:64:41:22:71:33:B3:20:F5:EF:BD:FD:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rUm_mgRGJVkQSJxM7Mg9e-9_Ws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/6018cb-339a-416f-af4c-1244ba9eacd9/1/BvRcfXX-tDnfe0sjv3R8kr58kIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/6018cb-339a-416f-af4c-1244ba9eacd9/1/7rUm_mgRGJVkQSJxM7Mg9e-9_Ws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.106.240.0/21
195.28.164.0/23
Signature Algorithm: sha256WithRSAEncryption
58:1b:a1:ea:f2:00:9f:f2:8c:9b:f7:42:e3:1e:50:bb:30:51:
ab:1d:52:77:c4:28:f4:d8:3c:91:1d:25:ba:68:b6:84:6f:d2:
dd:71:77:55:44:43:de:3f:a5:5c:c5:a7:9a:e8:fc:d6:f3:47:
da:ad:14:f0:ef:3d:2d:1c:7a:6f:d1:fb:f4:19:dd:6e:78:f6:
72:98:a5:31:da:8a:df:b4:3d:89:4c:34:b0:4c:34:56:94:02:
8d:4b:e9:8c:d4:09:f2:5b:9a:85:e7:1d:74:66:b6:08:1a:fb:
dc:c2:3e:00:b1:ec:70:0d:a7:ac:cb:b6:34:9d:c8:db:ac:60:
00:8a:d0:b4:49:99:ae:2d:7c:96:fc:83:37:df:8b:54:bd:46:
92:56:bd:a5:73:4c:94:95:94:a9:d0:45:49:ad:b0:cd:20:4d:
ec:cf:88:37:f5:5a:12:78:43:48:88:5a:b9:6b:df:19:90:0b:
53:47:6b:0d:04:c7:5d:44:10:c3:13:4c:89:84:75:0f:d2:cc:
cd:ef:d2:8f:45:da:40:2a:e8:56:bb:a4:9d:31:1c:12:63:0b:
b1:b6:6d:ae:fe:f7:f5:e5:e4:76:e1:13:d3:83:c7:be:48:5a:
7f:be:6d:b6:89:0e:e9:cb:f0:38:b1:47:66:1a:25:05:6e:9e:
b4:54:c6:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:55 2024 by rpki-client on console-ams.rpki-client.org