Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/d1fac7-7c5b-4fa6-b7e5-9a5d8ba7d803/1/BH2KBK3k5PD0U5y2PEta3DdN6BM.roa
File: BH2KBK3k5PD0U5y2PEta3DdN6BM.roa (raw, json)
Hash identifier: yHsB2QIOfpD3r+/G8AC2GYcU5Af0stflCzhZX3GX/4I=
Subject key identifier: 04:7D:8A:04:AD:E4:E4:F0:F4:53:9C:B6:3C:4B:5A:DC:37:4D:E8:13
Certificate issuer: /CN=6552d2cb5a9e8d5689fad67a9605149c6d5ef7ba
Certificate serial: 0185625CB8E6D25FDBFBC60FE86CB11BB754
Authority key identifier: 65:52:D2:CB:5A:9E:8D:56:89:FA:D6:7A:96:05:14:9C:6D:5E:F7:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZVLSy1qejVaJ-tZ6lgUUnG1e97o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/d1fac7-7c5b-4fa6-b7e5-9a5d8ba7d803/1/BH2KBK3k5PD0U5y2PEta3DdN6BM.roa
Signing time: Fri 30 Dec 2022 09:28:41 +0000
ROA not before: Fri 30 Dec 2022 09:28:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20570
IP address blocks: 194.93.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:5c:b8:e6:d2:5f:db:fb:c6:0f:e8:6c:b1:1b:b7:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6552d2cb5a9e8d5689fad67a9605149c6d5ef7ba
Validity
Not Before: Dec 30 09:28:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=047d8a04ade4e4f0f4539cb63c4b5adc374de813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:18:3e:22:62:9e:c7:29:34:97:85:56:2a:ff:
55:77:3c:0e:e2:1b:7e:06:4a:8f:4b:99:40:e2:4a:
78:2b:87:50:32:0f:e9:df:bf:c7:41:95:98:91:3e:
4c:5d:71:8b:2f:08:be:fc:cb:0c:ea:06:b5:33:86:
9c:b8:4d:a6:87:17:5e:75:0d:4c:ce:ae:2c:01:ee:
7f:30:ab:67:64:60:63:bc:78:85:19:e6:a1:24:df:
15:db:d6:51:d0:07:0b:ed:98:1a:b7:b1:29:44:25:
48:a9:72:8d:7c:13:12:8a:66:4e:ca:73:a2:89:f9:
cc:2a:b6:d5:8a:97:02:e0:a8:1a:eb:01:75:5f:89:
9c:a5:44:5e:1a:67:ff:04:27:f9:ab:c9:e4:40:71:
79:b9:56:55:50:42:82:ab:b5:03:81:e8:25:e2:14:
2f:16:dd:65:86:3f:2e:be:32:c4:9e:b4:5e:7b:52:
cb:77:9a:9c:29:24:d4:ea:14:5a:7f:99:b8:30:94:
54:9c:02:1f:d0:ff:02:e4:ec:02:dc:69:62:f7:69:
e9:fc:49:e2:55:50:72:bf:98:fa:87:0d:d8:66:76:
93:bc:ce:cf:19:52:31:bb:97:ec:03:38:7a:b7:35:
0e:64:44:91:26:80:54:99:0d:bb:39:5e:e6:d2:c8:
4c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:7D:8A:04:AD:E4:E4:F0:F4:53:9C:B6:3C:4B:5A:DC:37:4D:E8:13
X509v3 Authority Key Identifier:
keyid:65:52:D2:CB:5A:9E:8D:56:89:FA:D6:7A:96:05:14:9C:6D:5E:F7:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZVLSy1qejVaJ-tZ6lgUUnG1e97o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/d1fac7-7c5b-4fa6-b7e5-9a5d8ba7d803/1/BH2KBK3k5PD0U5y2PEta3DdN6BM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/d1fac7-7c5b-4fa6-b7e5-9a5d8ba7d803/1/ZVLSy1qejVaJ-tZ6lgUUnG1e97o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.93.96.0/24
Signature Algorithm: sha256WithRSAEncryption
26:1f:3f:19:9c:9e:0c:0d:fc:5f:43:04:b7:26:92:8d:1f:1f:
0a:86:c3:45:9b:73:a5:bf:96:32:35:01:6c:90:79:0a:2d:90:
b6:09:77:54:f3:bf:45:a4:70:74:ac:b0:24:06:7c:3c:ea:d7:
98:72:73:1a:1a:97:a6:5f:c1:dd:97:f5:e1:1e:bf:f2:27:58:
4a:38:bc:14:08:5c:81:18:45:a3:10:95:5b:4f:3c:53:6b:b6:
e7:c0:39:13:1a:2b:4a:be:9b:e4:c6:3b:b4:04:89:27:08:c9:
47:96:77:37:3c:7e:7d:c8:26:9a:3c:23:4f:2e:72:42:dd:b7:
36:64:d0:d6:10:64:0f:31:03:88:9e:23:2c:fc:f6:fa:af:bb:
b8:ad:5d:52:39:65:fc:b0:9b:3d:6b:0d:2c:e6:03:64:e4:8a:
55:ac:6b:a2:b0:6a:35:76:0b:87:62:45:4c:8b:47:b9:a8:45:
f9:a3:14:64:bc:36:ed:ae:07:34:f2:fb:b9:6b:b9:71:b7:c9:
d4:6c:25:8d:9e:b0:7c:24:05:b5:da:7f:7f:f9:0e:09:03:51:
40:40:93:71:39:64:ac:92:23:40:eb:e8:e6:cc:c8:2c:54:ab:
3b:1c:ce:60:27:c9:31:92:d3:1b:c5:e7:52:92:f0:4f:09:1a:
45:3f:c7:54
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYViXLjm0l/b+8YP6GyxG7dUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1NTJkMmNiNWE5ZThkNTY4OWZhZDY3YTk2MDUxNDljNmQ1
ZWY3YmEwHhcNMjIxMjMwMDkyODQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDdkOGEwNGFkZTRlNGYwZjQ1MzljYjYzYzRiNWFkYzM3NGRlODEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAixg+ImKexyk0l4VWKv9VdzwO4ht+
BkqPS5lA4kp4K4dQMg/p37/HQZWYkT5MXXGLLwi+/MsM6ga1M4acuE2mhxdedQ1M
zq4sAe5/MKtnZGBjvHiFGeahJN8V29ZR0AcL7Zgat7EpRCVIqXKNfBMSimZOynOi
ifnMKrbVipcC4Kga6wF1X4mcpUReGmf/BCf5q8nkQHF5uVZVUEKCq7UDgegl4hQv
Ft1lhj8uvjLEnrRee1LLd5qcKSTU6hRaf5m4MJRUnAIf0P8C5OwC3Gli92np/Eni
VVByv5j6hw3YZnaTvM7PGVIxu5fsAzh6tzUOZESRJoBUmQ27OV7m0shMVwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAR9igSt5OTw9FOctjxLWtw3TegTMB8GA1UdIwQY
MBaAFGVS0stano1WifrWepYFFJxtXve6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWlZMU3kxcWVqVmFKLXRaNmxnVVVuRzFlOTdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC9kMWZhYzctN2M1Yi00ZmE2LWI3ZTUt
OWE1ZDhiYTdkODAzLzEvQkgyS0JLM2s1UEQwVTV5MlBFdGEzRGRONkJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC9kMWZhYzctN2M1Yi00ZmE2LWI3ZTUtOWE1ZDhiYTdkODAz
LzEvWlZMU3kxcWVqVmFKLXRaNmxnVVVuRzFlOTdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwl1gMA0G
CSqGSIb3DQEBCwUAA4IBAQAmHz8ZnJ4MDfxfQwS3JpKNHx8KhsNFm3Olv5YyNQFs
kHkKLZC2CXdU879FpHB0rLAkBnw86teYcnMaGpemX8Hdl/XhHr/yJ1hKOLwUCFyB
GEWjEJVbTzxTa7bnwDkTGitKvpvkxju0BIknCMlHlnc3PH59yCaaPCNPLnJC3bc2
ZNDWEGQPMQOIniMs/Pb6r7u4rV1SOWX8sJs9aw0s5gNk5IpVrGuisGo1dguHYkVM
i0e5qEX5oxRkvDbtrgc08vu5a7lxt8nUbCWNnrB8JAW12n9/+Q4JA1FAQJNxOWSs
kiNA6+jmzMgsVKs7HM5gJ8kxktMbxedSkvBPCRpFP8dU
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:49 2023 by rpki-client on console-ams.rpki-client.org