Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/bKW61bqwKHH_bO2YIoTbMZJVnR8.roa
File: bKW61bqwKHH_bO2YIoTbMZJVnR8.roa (raw, json)
Hash identifier: 0kipy/cubuPs9pL3LWzp9gCgyLV5mMtN73WHw7cfW8M=
Subject key identifier: 6C:A5:BA:D5:BA:B0:28:71:FF:6C:ED:98:22:84:DB:31:92:55:9D:1F
Certificate issuer: /CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Certificate serial: 059780D3
Authority key identifier: 81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/bKW61bqwKHH_bO2YIoTbMZJVnR8.roa
Signing time: Tue 04 Jan 2022 19:17:49 +0000
ROA not before: Tue 04 Jan 2022 19:17:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210122
IP address blocks: 185.229.240.0/24 maxlen: 24
185.229.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93814995 (0x59780d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Validity
Not Before: Jan 4 19:17:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ca5bad5bab02871ff6ced982284db3192559d1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:51:b8:e1:f5:6f:e0:1a:47:cd:02:3f:8e:a2:
f1:bf:52:b0:a3:e1:b6:40:dd:6f:cd:c1:f7:6d:38:
2d:d1:d1:20:4a:89:2a:66:ac:4d:fa:50:1f:b2:5b:
94:1b:45:ab:8f:ba:20:fe:f2:47:e9:a1:64:fa:b1:
b9:d5:89:a1:cb:ea:79:23:80:18:67:0e:18:e0:bc:
7b:59:dd:96:12:1e:65:4d:0d:cb:fd:26:96:83:7f:
65:a7:b9:7d:91:17:21:5f:e5:7b:ed:0c:90:b2:6c:
15:b0:be:ce:92:43:7b:d9:bd:19:63:70:52:35:76:
37:81:56:f4:a3:f5:02:c1:9d:d1:68:a2:14:da:fa:
42:cc:44:63:98:62:29:89:c3:98:5b:cb:de:08:1c:
c3:9f:ee:80:1a:1c:ad:5e:ce:f2:72:53:95:91:3f:
bd:ee:72:d9:05:98:44:da:75:5e:fb:32:c9:b6:d3:
19:bd:0e:69:5d:da:e2:3d:d5:74:6e:40:5d:6a:ee:
f4:a1:d7:f7:d9:05:92:ac:8b:e5:f2:cc:13:58:29:
b3:9e:51:f1:80:6b:0e:45:ec:fe:7a:d6:58:51:e4:
49:1a:9e:7e:25:a7:c6:dc:ce:bb:c7:83:47:0b:3e:
9e:43:db:86:86:85:41:0c:9f:a6:2a:76:fa:6a:8a:
45:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A5:BA:D5:BA:B0:28:71:FF:6C:ED:98:22:84:DB:31:92:55:9D:1F
X509v3 Authority Key Identifier:
keyid:81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/bKW61bqwKHH_bO2YIoTbMZJVnR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/gci3Ore963b_SLLKCZYW7b5xxCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.240.0/23
Signature Algorithm: sha256WithRSAEncryption
60:db:61:35:10:35:16:26:3e:5f:9c:e1:92:29:5b:ba:9f:78:
ed:2e:c3:f1:9a:54:79:da:03:f5:45:f9:99:b2:82:3b:a7:67:
90:4f:55:7c:b9:83:a0:95:34:8d:f2:78:3c:16:94:3a:3f:e6:
bb:2e:64:36:70:47:1e:b2:b9:3a:3a:67:d6:1d:b5:42:ae:f8:
38:45:f2:f1:1a:9e:70:b8:b5:ad:81:56:08:b6:b1:55:9c:83:
64:da:d2:6a:59:ac:2d:78:af:60:c4:50:a6:d0:73:78:3c:7f:
ca:d8:7c:0c:70:88:16:b4:11:2b:45:49:d3:d1:79:ee:1d:af:
7e:e4:b8:07:74:97:6e:ee:ba:11:60:17:b5:5b:d4:51:57:6d:
21:97:23:8a:0f:01:3b:4c:75:22:ca:82:46:83:72:bd:12:55:
62:3b:80:63:dc:f0:21:22:22:65:31:50:1a:18:7c:19:77:86:
c0:56:01:9f:a2:62:3a:85:16:34:6b:56:b8:66:e0:aa:13:5c:
5f:c7:63:d7:5a:6a:d0:4b:24:8d:e7:db:1a:47:ea:8a:5a:54:
5d:97:ff:7c:0a:b6:fe:c7:ba:f9:a7:2d:c2:11:57:45:a3:48:
4a:76:39:e6:5d:dd:3a:15:e0:a2:02:52:63:c6:28:c9:9a:8c:
aa:fd:3f:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:08 2024 by rpki-client on console-fra.rpki-client.org