Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/3382cf-2cb1-475e-92c0-815f990bd431/1/BVd42Ks6BXSpZPQ57DXc6TDZe5I.roa
File: BVd42Ks6BXSpZPQ57DXc6TDZe5I.roa (raw, json)
Hash identifier: 2qJNd5ldXh15vLhmt/htHnX4zRW+jlT4r0WXh/X2WDM=
Subject key identifier: 05:57:78:D8:AB:3A:05:74:A9:64:F4:39:EC:35:DC:E9:30:D9:7B:92
Certificate issuer: /CN=d6086ddd97ba381389357e0e56ca11e5cfe8f453
Certificate serial: 0376D42B
Authority key identifier: D6:08:6D:DD:97:BA:38:13:89:35:7E:0E:56:CA:11:E5:CF:E8:F4:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ght3Ze6OBOJNX4OVsoR5c_o9FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/3382cf-2cb1-475e-92c0-815f990bd431/1/BVd42Ks6BXSpZPQ57DXc6TDZe5I.roa
Signing time: Sat 01 Jan 2022 05:54:37 +0000
ROA not before: Sat 01 Jan 2022 05:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21260
IP address blocks: 80.87.128.0/20 maxlen: 24
185.27.20.0/22 maxlen: 24
2a04:1300::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58119211 (0x376d42b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6086ddd97ba381389357e0e56ca11e5cfe8f453
Validity
Not Before: Jan 1 05:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=055778d8ab3a0574a964f439ec35dce930d97b92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:34:13:8e:38:c8:91:19:e0:15:d3:b8:cc:8e:
09:f8:ac:40:80:99:54:09:8c:57:ea:1a:c1:d3:fe:
72:41:d2:87:62:09:63:d5:a9:0e:99:c9:2f:c7:c1:
22:e9:b8:a4:e7:df:5c:34:d4:75:8a:6e:43:ec:2f:
3c:83:06:e4:03:a6:8b:92:47:8b:de:2c:70:c4:e2:
f5:47:6c:9b:78:c3:91:ae:3a:8a:2e:99:9a:d3:7d:
a3:23:94:1d:0b:17:66:7d:34:bc:1c:5f:59:66:36:
de:fb:3a:41:cf:92:dd:d9:26:92:08:11:53:f9:8e:
ef:f6:d5:93:43:bb:28:29:90:aa:d1:bd:01:6e:3a:
88:8f:5b:52:25:50:00:1c:29:69:d3:d0:01:e4:fb:
95:4c:6f:34:ce:c8:59:94:aa:84:d8:5b:c7:5c:84:
de:8d:3c:08:04:a9:1c:29:a9:37:81:f4:d8:d3:c7:
ca:09:37:41:97:a3:72:d0:df:a2:fd:32:01:8a:02:
59:17:cb:60:62:88:55:2b:14:f8:7f:68:71:4e:53:
df:63:67:d5:a4:92:eb:e5:24:38:ce:49:19:39:21:
da:d4:16:82:fc:88:ed:bc:e5:04:fc:7d:2d:7f:19:
99:26:9e:ba:30:c6:0e:ae:07:9f:57:22:73:2f:67:
38:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:57:78:D8:AB:3A:05:74:A9:64:F4:39:EC:35:DC:E9:30:D9:7B:92
X509v3 Authority Key Identifier:
keyid:D6:08:6D:DD:97:BA:38:13:89:35:7E:0E:56:CA:11:E5:CF:E8:F4:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ght3Ze6OBOJNX4OVsoR5c_o9FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/3382cf-2cb1-475e-92c0-815f990bd431/1/BVd42Ks6BXSpZPQ57DXc6TDZe5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/3382cf-2cb1-475e-92c0-815f990bd431/1/1ght3Ze6OBOJNX4OVsoR5c_o9FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.87.128.0/20
185.27.20.0/22
IPv6:
2a04:1300::/29
Signature Algorithm: sha256WithRSAEncryption
60:0a:c6:69:02:5b:9c:c1:7c:f6:30:fc:cd:ef:49:75:32:95:
3a:7d:9d:84:84:33:f2:0a:7f:ca:31:5d:b1:8a:52:01:aa:26:
82:c2:3e:92:19:4b:58:2f:d9:fb:85:7e:d2:43:c6:18:87:60:
d7:ea:ed:ed:16:b4:86:c1:91:fd:b3:0b:16:05:49:ce:82:42:
ad:32:31:38:98:b8:c8:40:23:67:6e:51:1b:a4:72:82:a3:ee:
3d:02:e9:ba:14:4d:d8:20:ed:fb:99:ae:3c:bd:0e:b0:8e:9e:
39:1a:fd:76:44:d7:32:7e:0a:e9:aa:1b:23:a1:85:d6:39:2c:
e5:66:05:5f:dc:28:05:79:81:10:96:02:03:a6:15:94:a9:de:
3c:30:1c:8c:bc:27:3c:79:2d:dc:ff:ac:94:d0:f2:d3:28:59:
4e:d2:e1:45:aa:f7:ab:f2:4d:1c:bd:c6:90:d0:65:ac:c2:65:
3e:b1:70:9b:bf:65:8c:fe:eb:42:18:10:c5:13:16:e6:05:c4:
9c:6b:b6:21:7b:23:5f:4d:94:17:47:14:ae:e0:46:ae:10:87:
c9:ed:85:36:4f:95:d0:51:ab:d5:19:93:95:7f:3f:01:a9:0d:
79:df:cb:72:b4:bd:ee:e9:3a:34:00:a2:92:cd:d0:b6:c5:b5:
18:74:99:fa
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEA3bUKzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NjA4NmRkZDk3YmEzODEzODkzNTdlMGU1NmNhMTFlNWNmZThmNDUzMB4XDTIyMDEw
MTA1NTQzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDU1Nzc4ZDhhYjNh
MDU3NGE5NjRmNDM5ZWMzNWRjZTkzMGQ5N2I5MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALQ0E444yJEZ4BXTuMyOCfisQICZVAmMV+oawdP+ckHSh2IJ
Y9WpDpnJL8fBIum4pOffXDTUdYpuQ+wvPIMG5AOmi5JHi94scMTi9Udsm3jDka46
ii6ZmtN9oyOUHQsXZn00vBxfWWY23vs6Qc+S3dkmkggRU/mO7/bVk0O7KCmQqtG9
AW46iI9bUiVQABwpadPQAeT7lUxvNM7IWZSqhNhbx1yE3o08CASpHCmpN4H02NPH
ygk3QZejctDfov0yAYoCWRfLYGKIVSsU+H9ocU5T32Nn1aSS6+UkOM5JGTkh2tQW
gvyI7bzlBPx9LX8ZmSaeujDGDq4Hn1cicy9nOBkCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBQFV3jYqzoFdKlk9DnsNdzpMNl7kjAfBgNVHSMEGDAWgBTWCG3dl7o4E4k1
fg5WyhHlz+j0UzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFnaHQzWmU2T0JPSk5YNE9Wc29SNWNfbzlGTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2EvMzM4MmNmLTJjYjEtNDc1ZS05MmMwLTgxNWY5OTBiZDQzMS8x
L0JWZDQyS3M2QlhTcFpQUTU3RFhjNlREWmU1SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Ev
MzM4MmNmLTJjYjEtNDc1ZS05MmMwLTgxNWY5OTBiZDQzMS8xLzFnaHQzWmU2T0JP
Sk5YNE9Wc29SNWNfbzlGTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEBFBXgAMEArkbFDANBAIAAjAHAwUD
KgQTADANBgkqhkiG9w0BAQsFAAOCAQEAYArGaQJbnMF89jD8ze9JdTKVOn2dhIQz
8gp/yjFdsYpSAaomgsI+khlLWC/Z+4V+0kPGGIdg1+rt7Ra0hsGR/bMLFgVJzoJC
rTIxOJi4yEAjZ25RG6RygqPuPQLpuhRN2CDt+5muPL0OsI6eORr9dkTXMn4K6aob
I6GF1jks5WYFX9woBXmBEJYCA6YVlKnePDAcjLwnPHkt3P+slNDy0yhZTtLhRar3
q/JNHL3GkNBlrMJlPrFwm79ljP7rQhgQxRMW5gXEnGu2IXsjX02UF0cUruBGrhCH
ye2FNk+V0FGr1RmTlX8/AakNed/LcrS97uk6NACiks3QtsW1GHSZ+g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:15 2024 by rpki-client on console-ams.rpki-client.org