Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/BsP_ZPie2B7_GiGS0yiwqNDsu5E.roa
File: BsP_ZPie2B7_GiGS0yiwqNDsu5E.roa (raw, json)
Hash identifier: q6pUZ9Cu0SWgUtmwBeZsx6B0vJesGROY3aQ1D37S5VU=
Subject key identifier: 06:C3:FF:64:F8:9E:D8:1E:FF:1A:21:92:D3:28:B0:A8:D0:EC:BB:91
Certificate issuer: /CN=0bac82804700ad36538bf86f34c073e971430da5
Certificate serial: 182BDCC5
Authority key identifier: 0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/BsP_ZPie2B7_GiGS0yiwqNDsu5E.roa
Signing time: Sat 01 Jan 2022 04:52:43 +0000
ROA not before: Sat 01 Jan 2022 04:52:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42381
IP address blocks: 212.237.195.0/24 maxlen: 24
212.237.194.0/23 maxlen: 24
212.237.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 405527749 (0x182bdcc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bac82804700ad36538bf86f34c073e971430da5
Validity
Not Before: Jan 1 04:52:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06c3ff64f89ed81eff1a2192d328b0a8d0ecbb91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:19:22:6d:53:2a:4c:1d:66:44:0f:c4:85:12:
7c:c9:7b:8c:c1:42:0d:ff:17:d3:2b:b8:1c:ae:6e:
a6:2c:cf:42:70:11:19:ba:7c:02:7c:0d:a4:e1:e9:
02:10:e9:e4:e4:f5:9c:d3:db:31:5b:28:82:fc:2f:
88:0c:f4:e5:76:c9:49:84:e7:36:7d:c3:b9:a0:86:
9c:02:7b:f8:ba:fe:82:68:10:00:b9:cc:11:ab:f8:
ea:ba:59:19:b8:48:7e:e8:32:8a:ad:f8:29:a3:0b:
fc:a0:27:2d:e3:36:5d:44:d6:83:40:ec:f9:08:6d:
52:52:12:e6:66:94:50:8a:82:28:d1:25:2b:7e:ec:
0b:f5:82:5f:58:3d:86:dc:b0:3d:4b:65:55:7e:3c:
fb:ff:a1:86:a9:63:57:4c:fe:a9:25:fe:ad:13:6e:
df:d5:fb:d2:79:db:a9:2c:bf:b1:66:5f:f1:f6:db:
ac:b5:b6:69:96:66:41:8b:17:ab:c5:08:3b:df:55:
76:3c:0b:54:5a:dd:6e:13:fe:96:32:47:57:9e:93:
16:b3:32:54:4b:5a:63:6c:ed:b6:44:5d:3e:58:8b:
ff:1b:32:19:f5:f7:d4:7b:9d:cd:cc:ee:44:6b:f4:
b7:5e:6b:e0:4b:6a:57:83:a2:b0:96:a5:aa:fd:51:
ff:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:C3:FF:64:F8:9E:D8:1E:FF:1A:21:92:D3:28:B0:A8:D0:EC:BB:91
X509v3 Authority Key Identifier:
keyid:0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/BsP_ZPie2B7_GiGS0yiwqNDsu5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/C6yCgEcArTZTi_hvNMBz6XFDDaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.237.194.0/23
Signature Algorithm: sha256WithRSAEncryption
65:14:fc:76:4e:6f:a4:6f:00:bd:84:0f:9a:de:e3:f2:f6:e4:
db:54:3b:c6:38:44:52:7b:0f:e2:e0:b0:9c:7e:e9:ce:82:ad:
1a:00:52:a9:29:cb:0b:65:95:63:2d:7d:2e:63:57:b9:16:03:
ec:81:80:f1:8f:98:68:34:80:f5:fb:c2:7f:dd:98:bd:97:7e:
b5:1a:fc:db:14:da:84:1e:70:16:5f:6c:b3:c3:cf:32:09:79:
01:d4:71:54:1f:06:d6:b0:c1:60:9f:d2:ab:67:19:0a:c3:99:
80:89:d1:dd:fc:ff:dd:c6:55:6e:9f:31:7d:83:4c:41:0b:a7:
fc:2f:7d:cf:28:b1:4c:3a:06:cc:2f:11:c4:d9:83:20:d5:22:
53:c1:b6:22:5c:27:c6:b7:d9:ee:5c:8f:9f:a1:4e:6c:e1:72:
40:b6:14:64:61:18:34:cc:0c:cb:25:7a:e2:8b:1c:de:61:79:
d8:41:33:61:6f:42:56:95:7c:4e:ec:64:5c:a2:4a:c8:52:33:
41:05:52:5d:d0:f1:36:6c:34:a4:2a:1d:40:93:e8:60:5c:e0:
7d:a5:1f:86:83:eb:55:e9:ce:8b:78:ce:ca:87:a2:ef:a0:a8:
4f:e2:0a:49:d5:9b:3d:d8:02:f5:a6:b0:e2:5a:8c:44:18:ba:
7d:fd:f4:42
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGCvcxTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YmFjODI4MDQ3MDBhZDM2NTM4YmY4NmYzNGMwNzNlOTcxNDMwZGE1MB4XDTIyMDEw
MTA0NTI0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDZjM2ZmNjRmODll
ZDgxZWZmMWEyMTkyZDMyOGIwYThkMGVjYmI5MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALAZIm1TKkwdZkQPxIUSfMl7jMFCDf8X0yu4HK5upizPQnAR
Gbp8AnwNpOHpAhDp5OT1nNPbMVsogvwviAz05XbJSYTnNn3DuaCGnAJ7+Lr+gmgQ
ALnMEav46rpZGbhIfugyiq34KaML/KAnLeM2XUTWg0Ds+QhtUlIS5maUUIqCKNEl
K37sC/WCX1g9htywPUtlVX48+/+hhqljV0z+qSX+rRNu39X70nnbqSy/sWZf8fbb
rLW2aZZmQYsXq8UIO99VdjwLVFrdbhP+ljJHV56TFrMyVEtaY2zttkRdPliL/xsy
GfX31HudzczuRGv0t15r4EtqV4OisJalqv1R/+0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQGw/9k+J7YHv8aIZLTKLCo0Oy7kTAfBgNVHSMEGDAWgBQLrIKARwCtNlOL
+G80wHPpcUMNpTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0M2eUNnRWNBclRaVGlfaHZOTUJ6NlhGRERhVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWEvYTcyODkxLWRlMmYtNDE1Ni1hMDExLTQzZjY0YmNlYTk5ZC8x
L0JzUF9aUGllMkI3X0dpR1MweWl3cU5Ec3U1RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWEv
YTcyODkxLWRlMmYtNDE1Ni1hMDExLTQzZjY0YmNlYTk5ZC8xL0M2eUNnRWNBclRa
VGlfaHZOTUJ6NlhGRERhVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAdTtwjANBgkqhkiG9w0BAQsFAAOC
AQEAZRT8dk5vpG8AvYQPmt7j8vbk21Q7xjhEUnsP4uCwnH7pzoKtGgBSqSnLC2WV
Yy19LmNXuRYD7IGA8Y+YaDSA9fvCf92YvZd+tRr82xTahB5wFl9ss8PPMgl5AdRx
VB8G1rDBYJ/Sq2cZCsOZgInR3fz/3cZVbp8xfYNMQQun/C99zyixTDoGzC8RxNmD
INUiU8G2IlwnxrfZ7lyPn6FObOFyQLYUZGEYNMwMyyV64osc3mF52EEzYW9CVpV8
TuxkXKJKyFIzQQVSXdDxNmw0pCodQJPoYFzgfaUfhoPrVenOi3jOyoei76CoT+IK
SdWbPdgC9aaw4lqMRBi6ff30Qg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:40 2023 by rpki-client on console-ams.rpki-client.org