Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/blBYewz-Wr-9cJsio3ERrfEaEK4.roa
File: blBYewz-Wr-9cJsio3ERrfEaEK4.roa (raw, json)
Hash identifier: 7XMdBrjKoj3smt2bk15In8YmT/Obud7yEcmC2wxmBdM=
Subject key identifier: 6E:50:58:7B:0C:FE:5A:BF:BD:70:9B:22:A3:71:11:AD:F1:1A:10:AE
Certificate issuer: /CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Certificate serial: 03AFC2FC
Authority key identifier: 05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/blBYewz-Wr-9cJsio3ERrfEaEK4.roa
Signing time: Sat 01 Jan 2022 09:55:40 +0000
ROA not before: Sat 01 Jan 2022 09:55:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6658
IP address blocks: 194.1.128.0/24 maxlen: 24
194.1.129.0/24 maxlen: 24
194.1.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61850364 (0x3afc2fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Validity
Not Before: Jan 1 09:55:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e50587b0cfe5abfbd709b22a37111adf11a10ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f9:97:3e:05:bc:c9:08:bd:f2:c9:24:86:80:
06:6c:7b:4e:27:e7:66:05:8d:32:37:62:2b:59:98:
6e:e3:01:49:0e:ad:36:a5:94:60:00:9b:ec:0f:b6:
2c:fb:85:66:db:e8:cc:0d:29:53:91:45:85:3a:79:
dd:8d:59:bf:c4:1c:0a:9c:43:9d:f9:3a:55:52:22:
07:de:a1:37:82:96:92:7a:6d:d9:3f:6e:17:ba:cd:
9a:c9:ea:c5:e0:3e:0e:1c:2a:38:14:10:be:ca:a8:
17:e5:11:49:31:4a:a6:ae:10:e7:72:71:d7:fe:bb:
44:bc:91:63:9c:26:0b:a1:b8:f7:26:8a:ba:36:2a:
44:4f:45:d4:3b:8e:85:40:61:2e:c3:f7:9e:6e:74:
06:ea:bd:96:c9:92:bf:40:14:d0:fa:49:24:cc:0e:
40:7a:6c:e8:5e:ea:68:7b:65:44:bc:1e:5c:83:2f:
10:cc:11:1d:0b:2b:c2:0e:25:57:f7:fe:ad:76:82:
ef:ba:b1:46:b8:9a:d6:42:17:09:39:44:9f:90:a6:
ca:b2:e3:32:be:d5:be:bf:d0:07:2a:11:0b:71:98:
15:c8:ef:cb:21:1f:85:b6:92:de:68:2d:4d:e9:bb:
8a:db:7e:9b:4e:68:4d:9c:e1:1a:e9:7c:5d:c5:80:
52:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:50:58:7B:0C:FE:5A:BF:BD:70:9B:22:A3:71:11:AD:F1:1A:10:AE
X509v3 Authority Key Identifier:
keyid:05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/blBYewz-Wr-9cJsio3ERrfEaEK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.128.0/23
194.1.140.0/24
Signature Algorithm: sha256WithRSAEncryption
52:4f:c4:53:22:59:73:c0:f6:ea:85:86:f1:cd:79:86:27:c2:
4f:10:81:92:9b:50:d9:27:34:ca:a6:ff:78:e8:fa:c6:b1:ae:
32:74:2b:bf:24:82:e9:68:11:55:55:18:2b:2f:2c:7e:b7:1a:
80:4f:d7:7d:a6:24:60:0d:4e:43:8e:04:e6:c4:bf:66:11:a1:
ff:39:3a:7e:95:eb:21:63:a1:20:3a:be:48:d4:32:96:b9:62:
66:f7:08:3b:ae:ce:1e:59:48:b4:41:20:9e:89:da:2c:1f:cc:
24:8c:16:29:ae:db:86:c4:4d:79:67:1e:5e:c4:1b:f6:f7:fe:
31:b7:9a:35:ad:56:70:cd:ad:0a:71:fb:cd:14:14:df:98:55:
24:0c:cf:c4:4d:59:2a:e9:59:00:1e:8d:c4:d1:2c:9b:a0:4c:
08:95:98:1f:e1:5f:af:04:38:d9:85:1b:ab:cc:13:ad:da:7a:
0a:1c:6a:79:87:a2:9d:e7:c0:81:df:72:fb:90:1c:58:2d:61:
5c:81:dc:f4:18:48:de:3c:32:f0:da:3e:e7:b0:60:4f:f6:7c:
67:a0:b7:03:56:20:48:d9:77:ab:5d:db:fe:a1:8f:11:f0:7a:
a6:5a:e9:1b:f5:18:10:a7:ff:e4:f8:2a:97:3c:88:7e:de:f3:
50:c0:d5:d2
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEA6/C/DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTYyZDVhNjdiN2EyMGY4NjVlNzUzMTYzYTZlZDBlNWYzNDdlODM5MB4XDTIyMDEw
MTA5NTU0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmU1MDU4N2IwY2Zl
NWFiZmJkNzA5YjIyYTM3MTExYWRmMTFhMTBhZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMj5lz4FvMkIvfLJJIaABmx7TifnZgWNMjdiK1mYbuMBSQ6t
NqWUYACb7A+2LPuFZtvozA0pU5FFhTp53Y1Zv8QcCpxDnfk6VVIiB96hN4KWknpt
2T9uF7rNmsnqxeA+DhwqOBQQvsqoF+URSTFKpq4Q53Jx1/67RLyRY5wmC6G49yaK
ujYqRE9F1DuOhUBhLsP3nm50Buq9lsmSv0AU0PpJJMwOQHps6F7qaHtlRLweXIMv
EMwRHQsrwg4lV/f+rXaC77qxRria1kIXCTlEn5CmyrLjMr7Vvr/QByoRC3GYFcjv
yyEfhbaS3mgtTem7itt+m05oTZzhGul8XcWAUi0CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRuUFh7DP5av71wmyKjcRGt8RoQrjAfBgNVHSMEGDAWgBQFYtWme3og+GXn
UxY6btDl80foOTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JXTFZwbnQ2SVBobDUxTVdPbTdRNWZOSDZEay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODIvOGIwMWMyLWVjYmUtNGY4OC1hZTM3LTUwNGM4ZmMyMjBlYS8x
L2JsQllld3otV3ItOWNKc2lvM0VScmZFYUVLNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIv
OGIwMWMyLWVjYmUtNGY4OC1hZTM3LTUwNGM4ZmMyMjBlYS8xL0JXTFZwbnQ2SVBo
bDUxTVdPbTdRNWZOSDZEay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAcIBgAMEAMIBjDANBgkqhkiG9w0B
AQsFAAOCAQEAUk/EUyJZc8D26oWG8c15hifCTxCBkptQ2Sc0yqb/eOj6xrGuMnQr
vySC6WgRVVUYKy8sfrcagE/XfaYkYA1OQ44E5sS/ZhGh/zk6fpXrIWOhIDq+SNQy
lrliZvcIO67OHllItEEgnonaLB/MJIwWKa7bhsRNeWceXsQb9vf+MbeaNa1WcM2t
CnH7zRQU35hVJAzPxE1ZKulZAB6NxNEsm6BMCJWYH+FfrwQ42YUbq8wTrdp6Chxq
eYeinefAgd9y+5AcWC1hXIHc9BhI3jwy8No+57BgT/Z8Z6C3A1YgSNl3q13b/qGP
EfB6plrpG/UYEKf/5PgqlzyIft7zUMDV0g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:10 2024 by rpki-client on console-fra.rpki-client.org