Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/bHIzzmtiExV8Ekh_53KlbI_L0Ss.roa
File: bHIzzmtiExV8Ekh_53KlbI_L0Ss.roa (raw, json)
Hash identifier: w/UlwT7bH93L2KKYw0XZ6BjvkkJqfoknOEY1/lDSX1g=
Subject key identifier: 6C:72:33:CE:6B:62:13:15:7C:12:48:7F:E7:72:A5:6C:8F:CB:D1:2B
Certificate issuer: /CN=eb500c9002321f03964583710b7baa4597341213
Certificate serial: 0A2CC6E7
Authority key identifier: EB:50:0C:90:02:32:1F:03:96:45:83:71:0B:7B:AA:45:97:34:12:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/61AMkAIyHwOWRYNxC3uqRZc0EhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/bHIzzmtiExV8Ekh_53KlbI_L0Ss.roa
Signing time: Sat 01 Jan 2022 04:57:08 +0000
ROA not before: Sat 01 Jan 2022 04:57:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35374
IP address blocks: 86.110.208.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170706663 (0xa2cc6e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb500c9002321f03964583710b7baa4597341213
Validity
Not Before: Jan 1 04:57:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c7233ce6b6213157c12487fe772a56c8fcbd12b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c1:82:ef:21:72:a5:69:ba:20:94:54:57:99:
95:55:01:8a:8b:76:64:fc:1c:1d:2b:71:7b:c1:13:
9b:80:4c:eb:36:5d:65:b1:aa:a1:56:89:e3:65:b6:
36:69:69:b3:3b:93:6b:b1:76:8e:b9:9c:f1:4d:ca:
69:8a:a3:4c:fc:7e:42:77:51:89:a4:b9:8e:31:ea:
b9:75:b0:a0:64:16:a3:ee:cf:83:26:78:7d:e5:df:
b7:06:a7:ca:ca:41:fa:4f:ec:1b:83:c9:50:da:58:
e1:99:e5:88:f5:42:47:5c:f2:e8:85:b5:f1:cc:47:
ec:68:13:46:d9:84:5c:63:c2:55:22:e0:4a:b9:70:
c4:c6:79:cf:6d:ac:10:c1:3a:62:35:61:46:dd:3a:
42:94:cd:81:81:85:88:7e:46:ce:ac:f1:70:f7:e3:
69:b5:42:d5:a6:71:68:a7:b4:53:03:70:5c:0d:29:
45:8c:6b:bc:f4:57:07:7c:5f:cf:90:66:f2:c4:f2:
91:b2:d5:f0:98:99:02:88:9a:ad:e1:e2:b4:cb:07:
48:21:99:1b:e5:9f:ee:07:99:d9:6f:4e:41:e8:a8:
a6:b7:22:7e:1b:3e:6b:65:92:f6:37:42:b3:44:15:
0d:26:44:4d:2b:7c:a2:fd:f3:7c:7b:e6:64:2a:41:
83:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:72:33:CE:6B:62:13:15:7C:12:48:7F:E7:72:A5:6C:8F:CB:D1:2B
X509v3 Authority Key Identifier:
keyid:EB:50:0C:90:02:32:1F:03:96:45:83:71:0B:7B:AA:45:97:34:12:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/61AMkAIyHwOWRYNxC3uqRZc0EhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/bHIzzmtiExV8Ekh_53KlbI_L0Ss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/19c09a-d79a-4de4-8a86-4a685962f3e8/1/61AMkAIyHwOWRYNxC3uqRZc0EhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.110.208.0/23
Signature Algorithm: sha256WithRSAEncryption
07:cc:f6:2c:61:1d:80:a9:ea:c2:97:cb:c3:9d:d3:aa:5a:c1:
37:1a:44:54:ad:c9:ac:87:26:9c:37:c0:97:d8:38:bb:9e:e1:
15:7d:c0:11:f3:9f:9c:0b:a6:af:52:6c:31:4a:54:2e:00:4f:
76:e6:2b:52:ca:db:a7:3b:ad:4e:bd:a2:67:90:9e:b3:52:35:
ed:7c:33:da:e4:4f:07:a5:ac:2c:0b:3f:e4:54:47:24:f8:fe:
72:85:1f:b7:c7:77:2c:55:a7:71:af:31:86:dd:f0:86:c2:bc:
92:f0:50:92:5e:74:9e:a8:0b:2b:2a:76:33:10:e4:8f:33:b5:
4a:ce:cc:93:c6:0f:97:f4:aa:6d:b0:a4:e3:b9:2d:90:61:a8:
85:36:64:f6:a1:08:c5:f0:77:1f:9a:f5:5f:48:dd:1b:c6:77:
e4:1d:83:49:47:17:e0:42:7a:0f:0a:8e:0c:57:13:21:4f:7e:
84:60:9a:8a:78:0d:32:ff:d2:ac:ac:9b:fd:37:d4:74:e3:76:
62:6f:ea:c7:9c:55:aa:01:b6:65:46:62:eb:ff:b4:7e:96:d5:
8d:57:cd:40:25:85:1a:4b:d2:ab:85:25:db:ab:14:09:2b:46:
3d:c9:8e:6e:ac:d9:8e:b2:e0:12:66:49:c3:bd:04:63:d9:de:
da:7d:d6:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:25 2023 by rpki-client on console-ams.rpki-client.org