Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/b45b47-c2fd-42af-98bd-e0162401ff7a/1/BVVBjXd43K19Teekf8FF7aB2Xo0.roa
File: BVVBjXd43K19Teekf8FF7aB2Xo0.roa (raw, json)
Hash identifier: XRzyCXkuz1oM/aDKSzuZlGJowoJH7VMzGlA+pMj1+u0=
Subject key identifier: 05:55:41:8D:77:78:DC:AD:7D:4D:E7:A4:7F:C1:45:ED:A0:76:5E:8D
Certificate issuer: /CN=887e81ba84344598c61462833aadf3204eae087c
Certificate serial: 15731C5E
Authority key identifier: 88:7E:81:BA:84:34:45:98:C6:14:62:83:3A:AD:F3:20:4E:AE:08:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iH6BuoQ0RZjGFGKDOq3zIE6uCHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/b45b47-c2fd-42af-98bd-e0162401ff7a/1/BVVBjXd43K19Teekf8FF7aB2Xo0.roa
Signing time: Sat 01 Jan 2022 15:01:47 +0000
ROA not before: Sat 01 Jan 2022 15:01:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30950
IP address blocks: 193.28.236.0/24 maxlen: 24
185.58.68.0/22 maxlen: 22
2001:67c:324::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 359865438 (0x15731c5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=887e81ba84344598c61462833aadf3204eae087c
Validity
Not Before: Jan 1 15:01:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0555418d7778dcad7d4de7a47fc145eda0765e8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7b:89:47:44:01:fd:9a:18:5e:f1:c0:1c:4b:
dc:58:d5:ff:64:ec:02:e0:bb:d6:9a:94:08:a3:e4:
87:8e:a5:91:75:e2:26:f9:65:88:c9:95:84:19:3b:
aa:08:87:c2:a4:ed:b6:37:9c:b0:c8:10:aa:45:02:
bd:65:e5:03:2d:bd:49:bd:1f:6a:35:57:8a:72:85:
1b:40:0e:4b:78:9f:81:4e:40:41:2a:b2:1b:ed:ef:
7c:cb:cb:d1:cd:37:1d:2e:eb:ef:b1:62:70:3b:80:
12:2b:63:5c:8a:29:ac:2f:b2:f7:08:83:f6:28:91:
68:e1:2b:6d:83:cb:1c:db:27:a0:70:fc:26:d1:d2:
61:01:1f:25:cc:61:b2:fa:56:37:95:6a:05:00:ce:
23:16:35:57:39:71:d9:ec:28:a2:9c:1a:8f:22:29:
2e:64:77:1a:9e:21:5f:98:2b:2f:29:2d:14:36:cf:
11:7b:ae:ad:50:ec:c4:f4:f3:8d:2e:d0:b8:c7:f0:
1c:e8:75:ff:a5:d5:d5:d8:84:f0:02:99:e4:93:e6:
3b:49:eb:46:16:8d:a5:90:ae:90:17:61:03:b3:f8:
a0:d1:98:f1:54:b3:8c:f8:cd:55:8d:ac:5f:60:8c:
c5:de:68:3a:68:55:6f:70:dc:7c:47:56:1d:ff:a0:
89:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:55:41:8D:77:78:DC:AD:7D:4D:E7:A4:7F:C1:45:ED:A0:76:5E:8D
X509v3 Authority Key Identifier:
keyid:88:7E:81:BA:84:34:45:98:C6:14:62:83:3A:AD:F3:20:4E:AE:08:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iH6BuoQ0RZjGFGKDOq3zIE6uCHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b45b47-c2fd-42af-98bd-e0162401ff7a/1/BVVBjXd43K19Teekf8FF7aB2Xo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b45b47-c2fd-42af-98bd-e0162401ff7a/1/iH6BuoQ0RZjGFGKDOq3zIE6uCHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.58.68.0/22
193.28.236.0/24
IPv6:
2001:67c:324::/48
Signature Algorithm: sha256WithRSAEncryption
57:9a:7d:41:87:65:a8:40:e4:92:48:7a:87:63:99:89:7c:0d:
5d:79:96:ab:41:dd:74:8c:88:0d:18:e2:ae:86:12:fe:f9:02:
c4:8d:f5:f2:3f:07:27:58:73:a5:18:8c:44:45:e2:82:ee:b4:
2d:a1:7e:41:4e:fc:74:6e:45:a4:82:77:26:a2:97:6d:14:21:
4e:8b:47:cd:33:b3:16:ab:3e:6c:ce:e1:51:d0:e8:73:f4:e0:
88:42:18:6b:39:8f:ac:5d:c6:69:e0:1a:d7:47:9a:5c:64:0b:
bf:b3:b2:e8:a7:38:5d:51:a9:da:93:e8:0b:4a:52:02:0e:c2:
7c:36:17:87:cf:16:aa:6d:84:d6:04:77:2b:db:14:75:e4:6f:
d7:6d:2a:ad:e8:5c:a4:0c:70:90:1f:fa:47:37:e1:5c:7e:6b:
71:15:65:3e:7d:37:b8:4a:bf:0e:0f:98:a5:aa:6e:00:2d:78:
c5:77:3e:8c:98:6e:a1:ef:f7:1e:d2:39:54:98:26:09:ac:b2:
b6:72:fb:7d:bd:8c:c8:9e:64:e7:c4:34:a3:0c:6a:d1:86:be:
0b:15:0d:28:71:4b:f2:12:00:ec:0e:36:92:f8:4b:cc:66:cf:
dd:4d:54:cb:46:07:ed:a1:b2:f5:33:d5:4f:58:4f:94:a1:aa:
37:df:47:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:39 2024 by rpki-client on console-fra.rpki-client.org