Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/b6aa96-aa8f-4fd4-b9e8-373a0d3c4534/1/BFQ1xnMg5pQRAPZFoX7jppZOYNA.roa
File: BFQ1xnMg5pQRAPZFoX7jppZOYNA.roa (raw, json)
Hash identifier: Axq+d07DnW/Gylz1ZQ2eqpIK/oOYtRtPLmOR+ACpEw0=
Subject key identifier: 04:54:35:C6:73:20:E6:94:11:00:F6:45:A1:7E:E3:A6:96:4E:60:D0
Certificate issuer: /CN=c115f1341a87140a122dc8f96502b72449057e60
Certificate serial: 04725EED
Authority key identifier: C1:15:F1:34:1A:87:14:0A:12:2D:C8:F9:65:02:B7:24:49:05:7E:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wRXxNBqHFAoSLcj5ZQK3JEkFfmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/b6aa96-aa8f-4fd4-b9e8-373a0d3c4534/1/BFQ1xnMg5pQRAPZFoX7jppZOYNA.roa
Signing time: Sat 01 Jan 2022 14:08:02 +0000
ROA not before: Sat 01 Jan 2022 14:08:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212991
IP address blocks: 185.158.206.0/24 maxlen: 24
2a0c:8d80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74604269 (0x4725eed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c115f1341a87140a122dc8f96502b72449057e60
Validity
Not Before: Jan 1 14:08:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=045435c67320e6941100f645a17ee3a6964e60d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ca:2c:6a:4b:85:2c:c4:72:98:e1:c4:5b:5f:
fd:27:2e:5c:f3:46:95:d8:6c:12:f2:2a:70:e8:2b:
1d:9d:a1:a7:a0:f6:c3:60:cc:74:aa:be:31:30:20:
8d:7a:a0:e5:c2:60:96:d2:d8:90:a6:2f:7c:b9:f7:
6b:30:6b:fa:22:18:8c:f7:1d:b4:87:9f:da:57:52:
0e:11:c7:7c:9e:8c:86:a6:75:25:a9:18:ce:76:53:
30:55:f5:08:ea:03:30:17:14:08:30:5a:ef:34:10:
01:8d:a8:f2:1d:eb:fc:6e:d1:dd:15:5c:a6:82:8b:
fa:8d:4a:97:e0:ea:e3:45:36:a2:98:2b:ca:12:fc:
a3:f3:a3:46:e6:d8:d6:35:0a:c5:07:bb:b9:1f:e9:
9c:9e:ca:a5:26:e6:69:62:57:5f:59:33:fc:6b:77:
49:5e:6c:e1:08:40:9f:f5:87:a9:49:40:95:23:ac:
59:d7:45:cf:01:5d:40:c2:1e:bc:05:a5:50:3d:ee:
62:ba:d0:82:fb:74:07:28:fd:d3:55:9a:bb:b6:19:
49:69:80:45:e0:42:53:2a:c7:a1:52:0f:28:06:ef:
ac:b2:86:11:50:15:8f:3a:e5:e6:7c:d1:c2:2d:0e:
19:b7:85:bf:ea:d3:ca:6b:11:e1:77:38:5f:c7:45:
e1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:54:35:C6:73:20:E6:94:11:00:F6:45:A1:7E:E3:A6:96:4E:60:D0
X509v3 Authority Key Identifier:
keyid:C1:15:F1:34:1A:87:14:0A:12:2D:C8:F9:65:02:B7:24:49:05:7E:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wRXxNBqHFAoSLcj5ZQK3JEkFfmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b6aa96-aa8f-4fd4-b9e8-373a0d3c4534/1/BFQ1xnMg5pQRAPZFoX7jppZOYNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b6aa96-aa8f-4fd4-b9e8-373a0d3c4534/1/wRXxNBqHFAoSLcj5ZQK3JEkFfmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.206.0/24
IPv6:
2a0c:8d80::/29
Signature Algorithm: sha256WithRSAEncryption
8d:82:bf:bd:62:68:33:37:8e:23:a1:ab:77:25:13:a6:2a:87:
6b:47:b1:20:4e:cc:45:aa:51:a3:80:d9:44:84:aa:94:0d:f0:
36:bb:4f:3b:48:cb:e2:35:81:21:9a:53:ad:d0:4e:94:74:a3:
61:13:e9:49:e1:c0:49:b8:02:c5:61:97:a7:9d:a5:69:f8:b4:
a2:db:ee:08:26:b9:51:57:df:a8:99:04:fb:0a:c5:4a:d3:d6:
ad:a1:81:32:e1:17:c2:a4:69:26:36:e9:fe:c0:71:68:a3:e0:
47:d6:83:7c:d1:65:14:45:3d:8b:91:e0:b1:f3:20:08:db:85:
99:49:2e:3c:1d:bf:95:b6:36:74:9d:70:2a:d8:6c:ef:b7:1f:
66:fa:62:67:9d:e8:d9:7e:22:e9:d6:c1:af:9d:ba:6b:d8:79:
6a:4c:e0:d4:6e:8c:fe:73:8c:1b:dd:e0:a5:15:ab:b1:b4:31:
15:1c:fb:b0:d3:82:ce:b9:9a:d8:81:ca:2b:e7:11:70:af:40:
f2:a0:a0:45:9a:07:42:8f:17:b9:49:05:7f:dd:04:c4:e5:6f:
08:c7:00:39:6b:bc:96:76:d1:ee:16:66:df:1b:7c:75:d1:47:
84:7c:40:ff:17:cd:ed:7a:57:78:67:f0:e8:f0:3f:ba:a6:fc:
19:11:76:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:40 2023 by rpki-client on console-ams.rpki-client.org