Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/3a7e49-9d27-4e4e-aa36-6f6ccb6e2cda/1/BhmyD1vg-27lxETNOJQeZu7Hy-8.roa
File: BhmyD1vg-27lxETNOJQeZu7Hy-8.roa (raw, json)
Hash identifier: L2dmR5b456pP3fAyuTACmg1BiEdhhYPT5F4fu4SsvLQ=
Subject key identifier: 06:19:B2:0F:5B:E0:FB:6E:E5:C4:44:CD:38:94:1E:66:EE:C7:CB:EF
Certificate issuer: /CN=4ddd0f9dcd88949b8f3a3771063562a057679290
Certificate serial: 0C0766FF
Authority key identifier: 4D:DD:0F:9D:CD:88:94:9B:8F:3A:37:71:06:35:62:A0:57:67:92:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Td0Pnc2IlJuPOjdxBjVioFdnkpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/3a7e49-9d27-4e4e-aa36-6f6ccb6e2cda/1/BhmyD1vg-27lxETNOJQeZu7Hy-8.roa
Signing time: Fri 18 Feb 2022 09:22:26 +0000
ROA not before: Fri 18 Feb 2022 09:22:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204810
IP address blocks: 2a0c:4b80:4000::/34 maxlen: 34
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 201811711 (0xc0766ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ddd0f9dcd88949b8f3a3771063562a057679290
Validity
Not Before: Feb 18 09:22:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0619b20f5be0fb6ee5c444cd38941e66eec7cbef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:bb:16:4b:de:56:89:ce:e5:01:fc:d7:ed:87:
79:12:86:ef:c5:5a:2f:c0:37:de:9d:b3:08:d3:99:
0d:c7:d0:31:50:be:20:c2:95:f0:9c:1a:d1:fa:e4:
0c:33:6a:73:b4:ea:84:52:45:91:07:06:24:ea:57:
fa:cf:ab:e1:bf:a0:51:28:66:5f:6f:2d:dd:13:a5:
5a:31:41:69:35:70:c6:f5:e2:6f:b9:d9:2f:49:e5:
29:a3:cf:91:78:52:2f:95:e0:0e:5c:bd:ad:a1:63:
88:b9:5c:3b:fe:91:8a:fc:b9:1d:41:4f:eb:94:e8:
34:58:ff:8f:2e:37:a0:56:f1:b2:fe:e2:18:b0:e4:
9e:d9:44:8f:6c:89:7c:7b:41:54:7f:55:a3:25:6e:
8a:b9:c0:3c:b0:66:65:d7:39:6d:67:8a:2d:fd:80:
76:7f:3d:2a:b6:8e:23:62:5f:df:e6:a9:b8:e6:dc:
7a:c2:12:e1:39:3e:53:66:f7:b5:c5:12:0a:d9:d6:
11:87:da:6e:78:4e:55:e6:75:8d:f4:ed:b2:fd:9d:
fc:6c:d3:b5:1d:97:ad:8d:5e:7c:4d:9c:8f:e2:43:
93:d8:3d:f6:a2:ee:3e:de:bb:05:e1:d4:a1:d2:9f:
56:b8:e3:0f:81:e5:62:92:fd:54:51:eb:51:31:58:
b1:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:19:B2:0F:5B:E0:FB:6E:E5:C4:44:CD:38:94:1E:66:EE:C7:CB:EF
X509v3 Authority Key Identifier:
keyid:4D:DD:0F:9D:CD:88:94:9B:8F:3A:37:71:06:35:62:A0:57:67:92:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Td0Pnc2IlJuPOjdxBjVioFdnkpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3a7e49-9d27-4e4e-aa36-6f6ccb6e2cda/1/BhmyD1vg-27lxETNOJQeZu7Hy-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3a7e49-9d27-4e4e-aa36-6f6ccb6e2cda/1/Td0Pnc2IlJuPOjdxBjVioFdnkpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:4b80:4000::/34
Signature Algorithm: sha256WithRSAEncryption
a6:94:6f:f5:90:1f:07:3a:e4:d9:a6:d5:17:33:04:e3:4d:2f:
ba:8e:5d:18:7a:c1:92:17:0f:51:43:4f:2e:f2:54:1f:ad:19:
91:3f:65:7f:38:89:b7:ba:fe:93:8a:10:f6:bc:e0:3d:f4:27:
1e:21:b2:d7:40:62:4d:5d:96:bd:d0:80:d2:13:df:6f:f3:4b:
0d:e6:2e:8b:3a:a9:18:a4:b8:18:f3:44:6b:38:3b:be:25:73:
39:0f:e8:fc:b1:28:a2:56:3a:ef:72:b3:93:4e:50:5b:51:7c:
26:27:a3:f8:5a:9d:76:7e:a5:ba:29:9e:2d:8c:a0:53:46:ff:
ba:61:9a:c4:4c:9c:99:0d:f1:ac:dd:7a:5f:ed:aa:8a:8e:92:
4a:fa:c6:77:48:89:ac:b8:f9:2e:6d:c3:98:7f:d9:a5:a1:67:
d5:a1:ea:20:fa:63:f1:0a:bb:9d:9f:24:8e:98:ea:76:82:2f:
d8:e8:be:35:ca:a6:06:7c:75:ba:0d:69:3e:81:88:1e:dc:25:
bb:c7:6f:7f:4b:74:4b:33:49:97:0a:1e:3a:36:e2:7e:bf:b0:
fd:44:94:64:57:fe:89:25:39:ed:a2:96:8b:08:35:1c:0d:a4:
a5:e2:3b:a7:55:e4:bd:de:11:b7:16:7b:5d:35:2d:2e:41:df:
9f:c1:5d:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:03 2024 by rpki-client on console-ams.rpki-client.org