Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/BV3BW-uhH0xLb1O0o3oDgBRYaPc.roa
File: BV3BW-uhH0xLb1O0o3oDgBRYaPc.roa (raw, json)
Hash identifier: QeZJn20q5kcCZ3XRKXQMze9/xqei4vZmQXS8XCajTWM=
Subject key identifier: 05:5D:C1:5B:EB:A1:1F:4C:4B:6F:53:B4:A3:7A:03:80:14:58:68:F7
Certificate issuer: /CN=700a1231d1c27a754e46ef10e92a730ae15d0f55
Certificate serial: 03C6320D
Authority key identifier: 70:0A:12:31:D1:C2:7A:75:4E:46:EF:10:E9:2A:73:0A:E1:5D:0F:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAoSMdHCenVORu8Q6SpzCuFdD1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/BV3BW-uhH0xLb1O0o3oDgBRYaPc.roa
Signing time: Sat 01 Jan 2022 12:57:20 +0000
ROA not before: Sat 01 Jan 2022 12:57:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201091
IP address blocks: 217.11.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63320589 (0x3c6320d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=700a1231d1c27a754e46ef10e92a730ae15d0f55
Validity
Not Before: Jan 1 12:57:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=055dc15beba11f4c4b6f53b4a37a0380145868f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c2:50:6d:3b:ad:50:9f:cc:34:82:84:13:66:
10:08:17:fa:8a:c6:b8:dd:db:fc:eb:0c:06:59:63:
84:97:6a:fb:14:ec:df:d4:0e:33:8b:06:ef:cc:bb:
03:fe:32:41:ae:7e:9b:e6:b7:87:95:34:67:a7:09:
da:ca:cf:0d:d4:48:77:e8:e0:ce:57:d1:34:37:fc:
7c:c9:c4:25:cc:d0:e2:88:1a:37:d6:07:89:6d:6a:
91:67:a5:e5:7e:c9:c1:46:5b:e6:5c:20:c3:2a:f5:
5f:c7:c2:3f:e8:3b:e9:8c:b3:c5:0f:ee:c6:49:ca:
c1:cf:f0:8e:63:b5:52:d9:10:21:98:f8:8a:02:31:
30:53:2f:ee:d0:a8:c4:5c:02:86:66:c2:ca:59:b1:
56:43:45:bb:f9:9e:91:a8:f3:d2:02:0f:53:cc:38:
b4:cb:72:5b:0f:4e:1f:de:e3:62:44:7d:66:82:3d:
03:1b:46:88:f2:cf:2b:1f:04:56:70:40:70:0a:de:
4e:d3:a6:c3:06:8a:82:30:b4:00:f7:fe:84:87:54:
75:40:6d:57:0c:05:dc:03:7d:76:57:fa:cb:d7:4c:
73:e7:a1:dd:93:f0:f5:1d:0a:95:e9:c3:7e:0f:42:
4f:ad:6c:ba:3d:31:b1:2c:73:14:d5:9d:bd:a1:ec:
bc:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:5D:C1:5B:EB:A1:1F:4C:4B:6F:53:B4:A3:7A:03:80:14:58:68:F7
X509v3 Authority Key Identifier:
keyid:70:0A:12:31:D1:C2:7A:75:4E:46:EF:10:E9:2A:73:0A:E1:5D:0F:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAoSMdHCenVORu8Q6SpzCuFdD1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/BV3BW-uhH0xLb1O0o3oDgBRYaPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/cAoSMdHCenVORu8Q6SpzCuFdD1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.11.134.0/24
Signature Algorithm: sha256WithRSAEncryption
26:86:8f:87:7f:18:ac:95:cd:b7:ba:db:0b:67:3b:7d:f3:42:
88:89:c4:34:9a:33:81:29:ab:fd:ae:77:52:66:bd:ba:ae:4c:
ff:81:e8:91:12:6f:81:ef:28:50:11:6a:43:ca:bb:da:a0:00:
ba:a6:b8:0a:d0:45:43:7c:5c:5b:f6:26:6b:6a:b9:2b:5b:a6:
1a:ee:c6:6a:0d:a0:b7:40:f2:b1:24:4c:c2:09:de:99:01:d2:
0c:e8:bb:9e:99:45:21:68:f3:1c:43:7d:c3:ee:83:ff:8d:e5:
20:74:f9:fb:2a:b8:f4:95:1f:43:48:cf:a4:d1:b1:c0:55:93:
5d:0f:70:55:c8:89:0f:eb:87:be:40:08:17:4d:b7:ef:cc:a0:
79:48:d5:9e:a5:6c:ca:c2:ca:70:87:2b:4f:1e:fd:18:75:5e:
72:a3:63:9a:51:72:71:70:dd:f7:1d:a0:a6:13:3e:a7:37:dc:
27:f4:bf:ef:7c:d5:17:7a:70:d8:8b:4c:cc:d2:3e:38:6b:d2:
c3:74:7f:27:f7:86:07:7e:f7:d4:ff:37:a3:64:15:80:bc:25:
66:50:09:49:d4:24:87:7c:4f:10:ed:36:fe:c3:93:07:c0:bd:
bd:06:9e:54:70:58:85:23:f1:b7:a0:f9:d3:2b:83:b4:78:cd:
a6:25:5e:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:58 2024 by rpki-client on console-fra.rpki-client.org