Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/BVV99ONk4Umsllt-lgzKNeU70VA.roa
File: BVV99ONk4Umsllt-lgzKNeU70VA.roa (raw, json)
Hash identifier: 5V/dgMz96gbfV397ljC7Gp3/Tk6Cyk7fAnetVAaM2z8=
Subject key identifier: 05:55:7D:F4:E3:64:E1:49:AC:96:5B:7E:96:0C:CA:35:E5:3B:D1:50
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 01833AF4CC61045F25D2C59206CC0F09CF32
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/BVV99ONk4Umsllt-lgzKNeU70VA.roa
Signing time: Wed 14 Sep 2022 07:44:25 +0000
ROA not before: Wed 14 Sep 2022 07:44:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204650
IP address blocks: 185.215.231.0/24 maxlen: 24
185.124.172.0/22 maxlen: 24
185.26.34.0/23 maxlen: 24
185.124.173.0/24 maxlen: 24
185.124.174.0/24 maxlen: 24
185.124.175.0/24 maxlen: 24
37.32.44.0/24 maxlen: 24
37.32.44.0/22 maxlen: 22
37.32.47.0/24 maxlen: 24
37.32.45.0/24 maxlen: 24
185.243.48.0/23 maxlen: 23
185.243.48.0/22 maxlen: 22
178.239.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3a:f4:cc:61:04:5f:25:d2:c5:92:06:cc:0f:09:cf:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Sep 14 07:44:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05557df4e364e149ac965b7e960cca35e53bd150
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f2:ab:84:63:09:f5:7c:3a:28:2e:ff:3b:37:
e7:2d:03:45:db:bc:52:63:73:5d:65:72:17:31:ca:
3b:cf:67:04:04:f0:01:59:f2:27:7c:46:34:0b:90:
18:db:0c:fb:b2:e1:60:c0:b0:09:9c:54:00:e7:9e:
c6:03:17:91:62:dd:8d:25:2f:63:a1:a3:6d:74:cc:
27:0b:d2:69:eb:dc:49:c5:fb:8d:32:28:24:49:46:
4b:10:f8:79:68:24:fc:0f:11:90:20:c0:da:bc:71:
8f:b6:dc:e1:c3:d0:b2:42:bb:cf:df:72:f7:62:e9:
fb:1e:f8:44:48:b5:4b:7d:5a:34:1b:ac:e3:68:c8:
87:f5:76:f2:9c:0a:c3:0f:a9:fc:33:05:a2:c9:ee:
9d:00:b6:78:9d:8a:6f:44:ef:c1:8e:3e:33:1d:f5:
73:49:27:e7:c6:14:f8:fd:b3:e2:9a:85:f9:2e:3d:
53:5f:7c:4d:72:24:df:fc:70:14:45:40:f3:6a:4f:
c5:23:aa:82:ba:b2:07:b1:57:b5:99:72:e3:a3:c3:
41:0d:08:3b:fb:59:1e:77:96:24:67:9d:7c:2b:b9:
bc:23:89:01:53:ba:21:b8:e1:f6:c9:e7:ab:cd:e3:
18:9a:e2:38:64:fc:ea:bb:d5:df:86:96:8b:2b:d4:
0d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:55:7D:F4:E3:64:E1:49:AC:96:5B:7E:96:0C:CA:35:E5:3B:D1:50
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/BVV99ONk4Umsllt-lgzKNeU70VA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.44.0/22
178.239.150.0/24
185.26.34.0/23
185.124.172.0/22
185.215.231.0/24
185.243.48.0/22
Signature Algorithm: sha256WithRSAEncryption
11:b4:1a:c1:3c:f0:f6:20:a4:7a:e3:e7:56:61:c9:09:99:11:
31:73:80:f4:d0:5b:1e:4e:fc:aa:30:46:83:15:e5:19:39:88:
2e:7a:02:51:3c:53:1c:0f:ae:7c:e4:29:c3:6c:53:52:67:cc:
2a:11:ea:ac:18:10:30:8b:38:24:8a:fd:22:f1:0a:2b:ab:28:
0a:7a:ee:77:53:42:ae:b6:9a:01:b4:76:8e:71:3e:2d:fb:5e:
7f:3f:d2:fa:eb:e2:c4:52:66:0d:8e:f3:71:be:93:bd:51:42:
7c:9e:59:58:fc:34:69:d0:90:a4:7f:80:f7:bc:56:56:33:18:
14:8e:79:4a:93:35:fc:58:de:73:54:e1:c2:69:be:50:77:24:
5a:3f:a0:7d:b2:bd:c6:7b:8a:ff:f4:39:6c:48:f7:0a:be:3b:
56:c3:47:0d:2e:71:2d:10:d0:06:b6:01:d3:1e:79:fa:1f:a8:
1e:02:02:25:5c:bd:4c:c2:1e:f3:11:9b:49:f1:f7:79:29:d3:
a3:49:07:48:0f:dc:0e:de:62:d5:34:9d:e0:68:23:71:21:1d:
61:36:f6:74:82:96:74:b2:a6:b4:66:c4:ac:61:db:ea:04:56:
3f:21:47:6a:85:2a:01:94:40:b3:e7:f6:1d:36:f9:82:0a:0d:
cc:1e:8d:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:06 2025 by rpki-client