Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/BIDb0fpsdnw3eOuyTvHDSGoZa64.roa
File: BIDb0fpsdnw3eOuyTvHDSGoZa64.roa (raw, json)
Hash identifier: Aa+r2FluHx6Q1UuhHEWZy0j0WKiOmxoET048kGKdv4I=
Subject key identifier: 04:80:DB:D1:FA:6C:76:7C:37:78:EB:B2:4E:F1:C3:48:6A:19:6B:AE
Certificate issuer: /CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Certificate serial: 0184D7381871DD37B0A5D2BA2009D57DC7DC
Authority key identifier: EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/BIDb0fpsdnw3eOuyTvHDSGoZa64.roa
Signing time: Sat 03 Dec 2022 09:01:28 +0000
ROA not before: Sat 03 Dec 2022 09:01:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30860
IP address blocks: 185.255.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d7:38:18:71:dd:37:b0:a5:d2:ba:20:09:d5:7d:c7:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Validity
Not Before: Dec 3 09:01:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0480dbd1fa6c767c3778ebb24ef1c3486a196bae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:52:ce:7b:ac:9f:06:87:d4:91:72:bc:9a:dc:
f1:1d:fe:c1:30:d5:bb:8b:58:84:82:6e:7c:65:b8:
50:b3:c7:f5:3b:c0:ca:2e:a6:27:5c:91:72:b9:2c:
ae:c4:60:ec:f1:1c:27:27:c6:2f:d9:34:9f:07:ca:
d3:ae:a9:2e:12:ff:61:b5:1d:83:eb:3c:df:72:4d:
b4:0a:38:88:c7:74:d7:1c:0d:57:08:6f:79:22:e6:
b2:81:bb:7d:9f:19:d5:5c:f4:e5:0a:a7:67:cb:dc:
43:a6:8c:41:84:d8:69:25:9c:fb:f6:cb:7f:a6:0b:
46:e0:54:46:d0:c8:3d:c7:7e:47:9a:35:b4:31:5c:
68:96:12:06:e3:10:66:a2:89:4a:4e:6e:74:e4:9f:
33:f4:c6:23:75:9c:c2:75:b7:b6:86:a7:70:59:f1:
d6:cc:76:14:3c:ee:da:92:42:11:55:24:b3:33:3a:
8e:18:22:a6:76:71:da:cd:d8:4e:5f:a2:b9:2a:d9:
f3:13:9c:a2:2e:8b:36:ba:f8:9b:80:ae:a8:3d:32:
55:37:80:69:3b:d9:88:3d:98:be:ff:3f:41:e8:66:
ab:ed:0f:b1:9c:f6:e4:3b:62:37:92:67:c7:d0:47:
d6:73:9a:53:ce:49:6b:ea:4a:75:eb:cc:d0:21:27:
98:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:80:DB:D1:FA:6C:76:7C:37:78:EB:B2:4E:F1:C3:48:6A:19:6B:AE
X509v3 Authority Key Identifier:
keyid:EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/BIDb0fpsdnw3eOuyTvHDSGoZa64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/73OJCflNmWhDa7Tgmi1HzHkBczw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.120.0/24
Signature Algorithm: sha256WithRSAEncryption
83:be:f2:9c:95:eb:5d:b2:35:46:57:4b:68:17:73:d6:7a:3b:
49:c4:c6:12:f9:dc:6f:b3:94:4e:a1:8b:1a:71:2c:4c:31:ed:
b2:d4:af:31:f6:3f:5c:46:e4:74:74:26:2c:fa:ea:a3:4a:69:
9a:a0:7a:cb:3c:f4:70:0b:08:f5:99:e9:63:28:f8:15:d0:4f:
c1:c7:35:b8:d7:3b:43:94:2d:94:a9:11:c3:84:cf:8b:db:9d:
d2:c1:bc:b4:42:71:f6:28:fa:4c:54:b4:93:d2:b2:60:9a:6a:
44:2b:eb:28:96:a6:9e:ee:e8:db:a9:f5:4b:77:28:84:b1:b5:
b0:9a:58:b8:81:fa:05:6f:e2:c1:a7:b3:e4:e8:54:ac:b9:57:
a2:7a:66:2f:7a:ac:bd:6c:a3:ff:76:fe:cf:f0:88:37:24:c9:
01:6d:69:81:25:d7:6f:ea:2b:38:32:3a:05:9d:44:1e:bd:df:
0a:c5:49:ea:eb:b7:ab:e5:85:6b:e5:2d:97:ba:01:ed:e4:6f:
f4:2e:88:33:65:69:63:97:34:fa:a3:f6:ec:c4:33:da:97:37:
00:9e:30:79:ea:77:a3:bf:3a:30:ea:dd:fb:13:39:a8:b7:80:
33:19:7a:43:8e:1b:45:2d:7a:9b:e3:ea:fe:f5:ca:6c:09:b7:
89:93:99:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:30 2023 by rpki-client on console-fra.rpki-client.org