Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/344e2c-1c56-43ab-8108-eaf68b59e599/1/BQ3uhfzzNa0DhygjEnxxczQxpw8.roa
File: BQ3uhfzzNa0DhygjEnxxczQxpw8.roa (raw, json)
Hash identifier: OrFFNDkcs39MvBriNVcv6wvodgKJbi4t2DnifKMZgvA=
Subject key identifier: 05:0D:EE:85:FC:F3:35:AD:03:87:28:23:12:7C:71:73:34:31:A7:0F
Certificate issuer: /CN=6cfd360736f1fa6c9770fcb48be594be609e5b3e
Certificate serial: 17701186
Authority key identifier: 6C:FD:36:07:36:F1:FA:6C:97:70:FC:B4:8B:E5:94:BE:60:9E:5B:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bP02Bzbx-myXcPy0i-WUvmCeWz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/344e2c-1c56-43ab-8108-eaf68b59e599/1/BQ3uhfzzNa0DhygjEnxxczQxpw8.roa
Signing time: Sat 01 Jan 2022 16:02:51 +0000
ROA not before: Sat 01 Jan 2022 16:02:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43366
IP address blocks: 91.231.184.0/24 maxlen: 24
185.70.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 393220486 (0x17701186)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cfd360736f1fa6c9770fcb48be594be609e5b3e
Validity
Not Before: Jan 1 16:02:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=050dee85fcf335ad03872823127c71733431a70f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c4:67:09:78:5e:bc:25:5f:7b:f0:78:fb:38:
b4:a7:f7:ca:23:45:bb:99:17:89:99:4e:c3:9f:2e:
78:82:97:48:ba:89:06:81:ce:44:77:04:76:00:c1:
97:58:d8:78:43:82:c7:c0:df:43:26:43:3e:fa:99:
a8:59:54:5a:32:99:9f:fe:82:b1:b0:d3:6e:de:c8:
f1:e3:f6:e2:08:ab:c2:9f:ed:ec:e1:08:af:f2:d1:
36:b6:64:62:ac:e3:92:0b:56:82:50:81:21:ef:04:
be:34:0e:1b:54:8f:bc:61:8d:11:fc:f0:d3:f3:62:
66:36:3a:22:3e:76:ab:2e:3e:a0:82:77:a3:cf:32:
83:0e:c0:0c:e6:85:52:1f:52:15:3e:2a:b7:fd:ab:
a6:3d:8f:be:12:db:42:20:f3:98:e0:f6:ca:4a:de:
b0:5d:de:77:8e:61:02:66:62:82:b2:44:32:52:de:
2a:fa:59:60:9a:d3:4a:2f:bd:05:fd:9e:03:12:37:
01:09:36:ae:cc:f0:4e:17:ef:ff:1f:9e:a3:ca:67:
0a:f1:4a:ec:26:38:60:ac:78:81:4e:cb:4e:51:61:
7f:b2:8d:f4:95:96:88:b8:6d:88:67:f4:50:2e:72:
e3:77:d6:f4:94:a5:1e:46:77:d4:4a:31:c6:51:4f:
0c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:0D:EE:85:FC:F3:35:AD:03:87:28:23:12:7C:71:73:34:31:A7:0F
X509v3 Authority Key Identifier:
keyid:6C:FD:36:07:36:F1:FA:6C:97:70:FC:B4:8B:E5:94:BE:60:9E:5B:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bP02Bzbx-myXcPy0i-WUvmCeWz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/344e2c-1c56-43ab-8108-eaf68b59e599/1/BQ3uhfzzNa0DhygjEnxxczQxpw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/344e2c-1c56-43ab-8108-eaf68b59e599/1/bP02Bzbx-myXcPy0i-WUvmCeWz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.184.0/24
185.70.228.0/22
Signature Algorithm: sha256WithRSAEncryption
13:ce:5e:41:17:d5:f0:91:89:a9:e4:a5:11:72:81:ea:d8:f5:
4e:c2:ef:8f:dc:4c:63:2f:96:75:00:c1:66:38:0d:c9:f8:df:
41:3d:28:7d:5e:bf:9d:a8:e5:b5:1a:5b:5c:eb:48:b2:01:40:
b8:75:3b:b9:c3:56:c6:19:ef:c1:2c:9d:38:cc:8a:58:9d:cf:
4b:4d:cd:62:5b:12:a2:c7:be:38:1b:3e:e4:e2:f7:80:2c:e8:
ec:2a:78:c9:c5:8a:75:a9:e7:5c:03:b1:c1:cc:06:2c:1a:f3:
11:c3:5b:2b:dd:af:ce:0a:3b:96:c1:46:5c:39:bc:75:35:20:
04:06:47:fe:35:73:9d:57:32:c7:b0:a4:c0:ee:82:ea:35:65:
2f:36:a4:d1:7d:18:74:40:7b:08:73:08:74:29:11:bc:39:5c:
93:31:44:f5:ff:68:12:d1:5e:05:ad:a3:7e:49:f7:04:ca:c5:
23:72:b0:a6:ab:a4:33:38:85:1a:69:af:2b:8c:ef:14:7a:0c:
5d:1d:16:35:17:ec:5b:ab:fc:0b:b4:1d:8f:52:e4:6c:75:03:
69:ef:bc:0f:9b:88:38:73:81:4d:1f:a4:12:df:e4:c1:4b:a1:
d4:66:29:16:77:69:a0:a5:80:7b:ba:95:4d:dd:c2:93:c4:83:
89:29:77:cc
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEF3ARhjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
Y2ZkMzYwNzM2ZjFmYTZjOTc3MGZjYjQ4YmU1OTRiZTYwOWU1YjNlMB4XDTIyMDEw
MTE2MDI1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDUwZGVlODVmY2Yz
MzVhZDAzODcyODIzMTI3YzcxNzMzNDMxYTcwZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALjEZwl4XrwlX3vwePs4tKf3yiNFu5kXiZlOw58ueIKXSLqJ
BoHORHcEdgDBl1jYeEOCx8DfQyZDPvqZqFlUWjKZn/6CsbDTbt7I8eP24girwp/t
7OEIr/LRNrZkYqzjkgtWglCBIe8EvjQOG1SPvGGNEfzw0/NiZjY6Ij52qy4+oIJ3
o88ygw7ADOaFUh9SFT4qt/2rpj2PvhLbQiDzmOD2ykresF3ed45hAmZigrJEMlLe
KvpZYJrTSi+9Bf2eAxI3AQk2rszwThfv/x+eo8pnCvFK7CY4YKx4gU7LTlFhf7KN
9JWWiLhtiGf0UC5y43fW9JSlHkZ31EoxxlFPDN0CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQFDe6F/PM1rQOHKCMSfHFzNDGnDzAfBgNVHSMEGDAWgBRs/TYHNvH6bJdw
/LSL5ZS+YJ5bPjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JQMDJCemJ4LW15WGNQeTBpLVdVdm1DZVd6NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTEvMzQ0ZTJjLTFjNTYtNDNhYi04MTA4LWVhZjY4YjU5ZTU5OS8x
L0JRM3VoZnp6TmEwRGh5Z2pFbnh4Y3pReHB3OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTEv
MzQ0ZTJjLTFjNTYtNDNhYi04MTA4LWVhZjY4YjU5ZTU5OS8xL2JQMDJCemJ4LW15
WGNQeTBpLVdVdm1DZVd6NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFvnuAMEArlG5DANBgkqhkiG9w0B
AQsFAAOCAQEAE85eQRfV8JGJqeSlEXKB6tj1TsLvj9xMYy+WdQDBZjgNyfjfQT0o
fV6/najltRpbXOtIsgFAuHU7ucNWxhnvwSydOMyKWJ3PS03NYlsSose+OBs+5OL3
gCzo7Cp4ycWKdannXAOxwcwGLBrzEcNbK92vzgo7lsFGXDm8dTUgBAZH/jVznVcy
x7CkwO6C6jVlLzak0X0YdEB7CHMIdCkRvDlckzFE9f9oEtFeBa2jfkn3BMrFI3Kw
pqukMziFGmmvK4zvFHoMXR0WNRfsW6v8C7Qdj1LkbHUDae+8D5uIOHOBTR+kEt/k
wUuh1GYpFndpoKWAe7qVTd3Ck8SDiSl3zA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:55 2024 by rpki-client on console-ams.rpki-client.org