Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/BKzWCgeqmLsqBS4aVJ_Z94m41q8.roa
File: BKzWCgeqmLsqBS4aVJ_Z94m41q8.roa (raw, json)
Hash identifier: Y1i6EC/JU2Lx0AIIOEucY13B4ocglUL3ZOuI2MwitmA=
Subject key identifier: 04:AC:D6:0A:07:AA:98:BB:2A:05:2E:1A:54:9F:D9:F7:89:B8:D6:AF
Certificate issuer: /CN=68e078b5181be5fbe914b412a412096bc8d71549
Certificate serial: 0885DB0A
Authority key identifier: 68:E0:78:B5:18:1B:E5:FB:E9:14:B4:12:A4:12:09:6B:C8:D7:15:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOB4tRgb5fvpFLQSpBIJa8jXFUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/BKzWCgeqmLsqBS4aVJ_Z94m41q8.roa
Signing time: Sat 01 Jan 2022 16:07:39 +0000
ROA not before: Sat 01 Jan 2022 16:07:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43046
IP address blocks: 91.229.0.0/23 maxlen: 23
195.191.160.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142990090 (0x885db0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e078b5181be5fbe914b412a412096bc8d71549
Validity
Not Before: Jan 1 16:07:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04acd60a07aa98bb2a052e1a549fd9f789b8d6af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:70:38:ac:b2:95:e4:ab:4d:fc:33:91:f8:47:
ba:65:cd:7e:95:a8:0a:a0:a6:65:0d:dd:52:86:7f:
91:26:ae:40:71:59:83:ca:ae:b0:5a:6f:a6:31:78:
3f:7b:90:e2:35:5d:c3:a9:64:52:b9:ce:0e:27:4b:
ee:44:7d:22:b0:81:6f:d1:10:31:3a:b6:88:5e:9b:
d9:6a:66:ad:09:01:44:1f:3e:0e:fc:50:5d:60:9b:
15:0d:a4:3c:3b:c1:b2:c7:f5:ff:33:f8:7d:55:80:
6a:bd:e0:6c:42:a4:03:e5:d0:ef:b7:bd:c7:e9:47:
6e:e1:8d:d0:26:56:ea:d4:42:82:fe:7a:d3:0e:f3:
82:77:8c:09:f3:08:af:65:67:ee:d1:6d:d6:5d:63:
fa:a1:ac:a7:07:d6:2b:cb:be:cd:4c:a5:96:3d:96:
12:ed:91:40:97:9d:72:ad:dd:73:bf:f3:4d:b0:41:
5c:f4:16:79:2e:32:96:fa:75:ef:3f:75:95:e2:cd:
2a:ad:27:46:12:89:2e:53:ec:5b:12:73:b1:35:d4:
02:87:eb:49:28:63:5f:5f:98:d0:fd:f6:b2:cc:aa:
09:77:10:4c:30:b8:78:7a:4c:55:89:4d:5d:f2:62:
b5:dd:54:6f:61:37:71:36:4b:d6:14:14:66:20:a1:
87:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:AC:D6:0A:07:AA:98:BB:2A:05:2E:1A:54:9F:D9:F7:89:B8:D6:AF
X509v3 Authority Key Identifier:
keyid:68:E0:78:B5:18:1B:E5:FB:E9:14:B4:12:A4:12:09:6B:C8:D7:15:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOB4tRgb5fvpFLQSpBIJa8jXFUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/BKzWCgeqmLsqBS4aVJ_Z94m41q8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.0.0/23
195.191.160.0/23
Signature Algorithm: sha256WithRSAEncryption
c8:45:46:63:44:f9:db:75:9a:0c:32:1a:f3:00:b0:9a:df:71:
66:0e:47:8e:58:6a:a9:b8:a4:7f:7a:66:e3:a0:a5:34:d1:56:
d2:46:f2:b7:30:14:46:88:f6:08:46:d4:ea:85:c9:02:35:e3:
1a:6a:49:df:1b:95:f6:a2:93:00:ee:19:1e:b1:0a:95:f2:82:
4d:66:da:95:d7:0d:6d:cf:f8:d3:f9:10:f8:e3:6d:32:76:9d:
78:59:73:8d:ce:6a:5b:f0:71:8d:f8:1c:be:81:54:b7:5b:5f:
81:36:c0:e7:b6:1f:2e:cd:1d:00:13:e5:98:d5:9a:b6:18:13:
42:92:dd:54:3e:09:4b:80:f8:23:03:2a:9d:f5:70:00:4c:97:
d1:c1:86:fd:8f:2e:bd:19:7f:0a:ca:40:cf:f9:a1:54:a6:de:
4b:4e:84:c9:3f:cf:d6:ac:17:df:1a:4d:d7:67:f6:34:cd:8d:
6a:9b:50:1a:59:e3:3b:13:48:c0:de:d3:df:01:7f:c8:79:56:
ad:d2:69:09:40:45:f7:5f:20:f4:c3:a7:3b:ab:86:fe:ec:cb:
b2:38:3f:08:d7:70:fc:5a:71:c2:1d:83:14:85:c4:13:0b:ac:
59:b4:26:b8:dc:1c:e2:7e:ff:4a:14:4d:92:e9:c1:00:2c:a7:
a5:58:1b:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:58 2023 by rpki-client on console-fra.rpki-client.org