Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/BjtQ6sxnAnCdvZRcu_rvfiJm93M.roa
File: BjtQ6sxnAnCdvZRcu_rvfiJm93M.roa (raw, json)
Hash identifier: nS7NOJqG/DY3NqFv9WFUickpn1EgsHQR+mE5c7BtBHk=
Subject key identifier: 06:3B:50:EA:CC:67:02:70:9D:BD:94:5C:BB:FA:EF:7E:22:66:F7:73
Certificate issuer: /CN=9cce3b1197d0cf9511540572a58fd372dcc07489
Certificate serial: 039D99A9
Authority key identifier: 9C:CE:3B:11:97:D0:CF:95:11:54:05:72:A5:8F:D3:72:DC:C0:74:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/BjtQ6sxnAnCdvZRcu_rvfiJm93M.roa
Signing time: Wed 15 Jun 2022 11:21:44 +0000
ROA not before: Wed 15 Jun 2022 11:21:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212017
IP address blocks: 185.159.40.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60660137 (0x39d99a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cce3b1197d0cf9511540572a58fd372dcc07489
Validity
Not Before: Jun 15 11:21:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=063b50eacc6702709dbd945cbbfaef7e2266f773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:38:41:51:2b:44:f9:ce:a2:f4:02:b8:6a:37:
a1:f1:08:cc:a6:b8:87:28:02:30:3c:7b:6c:91:8c:
e1:9b:7c:e2:79:91:03:fb:90:54:8c:71:06:64:af:
0a:a2:b0:6c:39:c2:dd:53:52:2f:d7:cd:47:4c:7d:
6f:99:d3:46:ac:d1:30:e2:99:3b:4e:e2:de:18:53:
cb:04:ef:25:8e:eb:a0:b0:b0:38:40:81:82:62:65:
31:df:24:35:42:b0:cf:d2:0c:13:55:f8:36:f9:49:
88:b5:a6:a9:ae:c1:48:4c:42:c4:e9:65:04:f8:0a:
d1:60:be:51:e8:17:21:30:0a:be:d4:48:98:3d:a8:
11:1c:3a:a9:c3:70:51:67:c8:87:d8:08:b4:eb:1b:
58:dc:2a:3e:cb:41:f8:60:62:b2:4b:4f:e9:64:27:
6a:44:32:1a:08:2b:fb:35:ee:b1:37:48:52:a6:d0:
23:78:ca:fa:8d:26:45:f0:19:ae:23:cd:1e:31:69:
9e:29:d4:1b:0c:7d:a3:61:9a:33:ce:7d:84:22:d7:
47:66:8a:31:c3:b8:e0:95:fd:82:cc:05:2d:fa:ad:
4a:a7:55:7a:19:5a:b9:61:f6:22:42:6c:94:a2:89:
65:7b:4b:c6:0a:c7:77:55:d4:7a:c6:c5:5a:ce:6f:
58:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:3B:50:EA:CC:67:02:70:9D:BD:94:5C:BB:FA:EF:7E:22:66:F7:73
X509v3 Authority Key Identifier:
keyid:9C:CE:3B:11:97:D0:CF:95:11:54:05:72:A5:8F:D3:72:DC:C0:74:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/BjtQ6sxnAnCdvZRcu_rvfiJm93M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.40.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:bb:d5:83:b7:d0:88:c1:73:da:01:df:b6:e6:8f:a4:48:e5:
96:d6:e3:0d:be:85:38:d8:e1:ae:3b:57:16:eb:37:03:d1:5e:
da:ef:cf:c2:31:9d:1a:4f:c0:d3:55:f7:df:6b:b7:47:68:41:
5b:79:79:87:e7:1b:af:5b:21:63:10:ed:89:6e:06:30:bd:cc:
56:51:9b:bd:44:3f:f5:73:25:a7:77:f2:9b:8e:9b:34:77:dc:
1a:5f:c8:ce:a2:5a:fe:83:26:73:f5:97:7a:33:aa:e0:ef:e1:
6e:f4:80:5e:7d:47:f2:0f:31:46:79:2d:30:9c:64:d4:27:7a:
58:31:3a:d8:9b:0c:11:03:33:04:af:83:ac:4e:9d:f1:e5:97:
5f:db:e5:a6:82:6f:0b:4f:1f:d5:03:a0:51:d2:f1:20:36:ca:
98:21:1e:44:a0:38:0e:8f:b6:30:c0:20:4c:c6:d6:32:23:6d:
c2:31:83:13:21:ac:7e:e4:12:af:22:f6:9a:28:2a:76:26:e2:
64:46:1a:77:5a:d3:ac:ff:97:1a:a8:9e:3e:20:04:70:c4:0a:
d9:ab:75:6e:a0:4e:63:8b:b6:87:e6:95:f0:d7:f9:92:45:65:
46:f5:ec:50:35:f8:72:36:e1:d3:91:f1:b7:4f:fa:3a:b7:af:
70:76:d9:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:58 2023 by rpki-client on console-fra.rpki-client.org