Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/8fb468-fbc5-4a57-a7fe-275c5f731b44/1/BgtCpvYGh_VDqkdVu4b4T_WrZII.roa
File: BgtCpvYGh_VDqkdVu4b4T_WrZII.roa (raw, json)
Hash identifier: B+ymVGCBxmG/QEhJ9ZCv1biQmd1M5OwDyxguG6nIAE0=
Subject key identifier: 06:0B:42:A6:F6:06:87:F5:43:AA:47:55:BB:86:F8:4F:F5:AB:64:82
Certificate issuer: /CN=98b53b86eb1f19d0ae7c00b132e97c03a94bff61
Certificate serial: 042562CE
Authority key identifier: 98:B5:3B:86:EB:1F:19:D0:AE:7C:00:B1:32:E9:7C:03:A9:4B:FF:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mLU7husfGdCufACxMul8A6lL_2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/8fb468-fbc5-4a57-a7fe-275c5f731b44/1/BgtCpvYGh_VDqkdVu4b4T_WrZII.roa
Signing time: Sat 01 Jan 2022 10:54:44 +0000
ROA not before: Sat 01 Jan 2022 10:54:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212631
IP address blocks: 91.220.243.0/24 maxlen: 24
2a0d:2380::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69558990 (0x42562ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98b53b86eb1f19d0ae7c00b132e97c03a94bff61
Validity
Not Before: Jan 1 10:54:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=060b42a6f60687f543aa4755bb86f84ff5ab6482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4e:ce:3d:53:77:0f:b7:de:03:d2:41:b9:9f:
75:64:79:96:69:b0:60:8d:44:d2:ab:24:a7:1d:52:
ff:3b:ee:18:8e:84:fb:4c:20:ba:ac:cd:26:32:9f:
24:77:28:90:1b:dc:54:38:43:1c:d0:ec:2f:7a:66:
de:da:eb:3f:9a:f9:1c:ca:aa:0d:c5:61:24:ee:2d:
aa:6a:a3:3f:40:5e:c7:ba:db:c0:8a:c8:6e:5f:45:
f4:77:0f:5c:8c:c0:74:f1:4f:4d:ab:0b:1a:7e:d6:
72:c0:e4:ce:1d:2a:2d:63:83:c4:5a:d3:1b:cc:c3:
df:db:db:0f:e5:37:37:03:a7:42:90:df:cf:59:db:
10:37:2f:19:e3:a4:de:83:c9:9d:71:0b:73:ac:8f:
89:d5:0e:4b:f3:9a:92:b5:63:b1:55:f6:d9:aa:3a:
9b:5b:21:cb:07:37:b8:a2:cc:3e:37:24:bd:33:09:
a5:f5:02:af:fe:c2:46:3a:ad:02:3a:99:00:a4:68:
25:b0:c1:0b:4b:e8:b6:cd:18:72:b2:4a:d6:2d:30:
ac:20:ca:76:18:5a:d1:37:48:0a:db:45:9b:aa:48:
f1:df:f3:eb:88:9a:96:5f:cf:50:da:99:24:0e:0b:
37:c6:31:d2:19:15:bb:f5:94:23:ca:20:27:c6:0a:
eb:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:0B:42:A6:F6:06:87:F5:43:AA:47:55:BB:86:F8:4F:F5:AB:64:82
X509v3 Authority Key Identifier:
keyid:98:B5:3B:86:EB:1F:19:D0:AE:7C:00:B1:32:E9:7C:03:A9:4B:FF:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mLU7husfGdCufACxMul8A6lL_2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8fb468-fbc5-4a57-a7fe-275c5f731b44/1/BgtCpvYGh_VDqkdVu4b4T_WrZII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8fb468-fbc5-4a57-a7fe-275c5f731b44/1/mLU7husfGdCufACxMul8A6lL_2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.243.0/24
IPv6:
2a0d:2380::/29
Signature Algorithm: sha256WithRSAEncryption
bf:7a:91:99:d7:6e:7b:25:ee:85:54:9b:04:bd:b9:04:b3:06:
bf:c1:8a:95:f1:9d:7a:21:11:07:5e:64:fb:6f:06:ae:da:f1:
5c:c3:c6:da:16:41:a1:ce:7b:f3:18:2c:52:a3:96:72:e3:c1:
a5:6f:1e:8c:11:1c:f2:38:a4:64:05:00:75:80:ba:cf:22:9e:
31:06:0e:86:cc:2e:41:98:0b:f8:bf:34:fb:59:b1:5c:de:de:
f7:27:71:06:44:76:0a:25:b2:ba:02:ab:31:5f:87:ae:03:aa:
1a:f9:5a:1c:f8:c3:1e:8f:51:ae:4e:76:ab:6b:be:aa:6f:f2:
a0:69:c4:42:9f:be:b3:b9:52:de:e5:3c:87:0f:bd:86:56:a5:
f5:cb:82:1a:fc:8b:f5:92:e3:c3:49:fe:7d:86:04:04:af:f1:
54:67:ef:eb:a3:4a:62:2f:0c:b3:c6:f0:c4:ff:c1:a9:f2:ec:
fa:31:20:9c:38:c7:5e:54:90:42:ef:1b:bb:29:91:47:66:a2:
ab:e7:f4:41:06:7a:d2:fd:77:5e:33:43:81:1e:77:7e:e4:64:
ef:86:66:bd:75:f1:02:4f:0c:20:9f:27:09:e6:26:df:88:91:
b2:db:2e:40:f4:b8:43:dc:8e:05:ac:1c:89:27:b2:c1:8f:ea:
25:a3:6d:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:00 2024 by rpki-client on console-ams.rpki-client.org