Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/f84198-2bdb-447d-8722-d8869311499a/1/bxG5hlt-Hi3D82MWeQt5ypb-LSg.roa
File: bxG5hlt-Hi3D82MWeQt5ypb-LSg.roa (raw, json)
Hash identifier: U5JxB85P2mq1dW9q4uuVc4FSRvgd9mGD8H9XsH42oUo=
Subject key identifier: 6F:11:B9:86:5B:7E:1E:2D:C3:F3:63:16:79:0B:79:CA:96:FE:2D:28
Certificate issuer: /CN=6e489fe1c7e20a0b0c63842c45c16c57631785d3
Certificate serial: 074BE858
Authority key identifier: 6E:48:9F:E1:C7:E2:0A:0B:0C:63:84:2C:45:C1:6C:57:63:17:85:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bkif4cfiCgsMY4QsRcFsV2MXhdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/f84198-2bdb-447d-8722-d8869311499a/1/bxG5hlt-Hi3D82MWeQt5ypb-LSg.roa
Signing time: Sat 01 Jan 2022 02:58:40 +0000
ROA not before: Sat 01 Jan 2022 02:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34958
IP address blocks: 193.43.215.0/24 maxlen: 24
193.189.147.0/24 maxlen: 24
2001:67c:25e8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122415192 (0x74be858)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e489fe1c7e20a0b0c63842c45c16c57631785d3
Validity
Not Before: Jan 1 02:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f11b9865b7e1e2dc3f36316790b79ca96fe2d28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:db:80:54:dc:48:b7:4b:dc:50:ee:4b:d1:f3:
d2:29:bf:3a:e6:f8:a2:35:83:b3:5b:54:7c:94:7a:
ed:49:8f:20:8b:32:96:34:c7:d8:8d:7e:ff:0b:d0:
41:f4:4c:68:68:a1:30:18:ce:51:04:e3:c2:db:f3:
6c:d5:76:05:5b:3f:6f:11:1c:1d:8a:9c:84:16:27:
b5:98:96:66:66:30:a5:5b:e8:ca:56:49:8b:ba:69:
6c:7a:a0:da:cc:10:dc:50:77:b9:72:22:86:fd:e6:
b5:ad:15:c7:5e:6e:96:0c:5d:c2:76:eb:67:c3:53:
9e:91:71:d3:08:99:ea:ef:e7:38:2b:fd:b2:14:7e:
26:f7:7c:ed:6c:d5:53:3b:49:16:70:9e:c3:b0:e3:
f4:09:92:f7:ff:fa:04:6b:9f:2b:17:44:88:38:b8:
08:a0:b5:e5:4f:9d:16:a1:8e:15:58:69:41:0e:0d:
55:18:66:bb:73:35:3c:dc:2a:b9:9a:56:8d:ed:5a:
11:6c:fc:b9:af:dc:f3:20:ee:a3:18:d1:e9:cf:ad:
06:19:ec:dd:d4:36:ba:54:2a:c5:6b:2b:de:0f:fd:
a7:13:ff:4a:be:79:48:e9:9d:b6:d4:f6:61:de:6e:
04:6e:d3:69:81:36:5c:1a:32:1c:4b:33:88:c7:e3:
01:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:11:B9:86:5B:7E:1E:2D:C3:F3:63:16:79:0B:79:CA:96:FE:2D:28
X509v3 Authority Key Identifier:
keyid:6E:48:9F:E1:C7:E2:0A:0B:0C:63:84:2C:45:C1:6C:57:63:17:85:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bkif4cfiCgsMY4QsRcFsV2MXhdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/f84198-2bdb-447d-8722-d8869311499a/1/bxG5hlt-Hi3D82MWeQt5ypb-LSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/f84198-2bdb-447d-8722-d8869311499a/1/bkif4cfiCgsMY4QsRcFsV2MXhdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.215.0/24
193.189.147.0/24
IPv6:
2001:67c:25e8::/48
Signature Algorithm: sha256WithRSAEncryption
5f:09:b2:14:88:06:29:06:b1:7e:b1:2f:1e:03:3d:06:ad:97:
87:4c:8f:99:bb:e5:c7:24:6e:fe:48:12:36:b6:23:e7:24:8a:
4f:b3:21:0f:c4:eb:bf:5e:dc:3b:06:f9:75:c0:2f:88:f1:e8:
b3:52:d6:95:6d:b4:d1:ad:6c:f0:18:31:d4:2b:12:d7:4b:72:
73:3a:25:9d:48:b2:3e:1c:8e:83:7a:a8:7a:0c:22:12:89:3d:
4a:55:a6:87:74:eb:b4:11:50:84:b9:aa:74:b6:c9:f0:5d:dc:
7a:ff:64:31:b5:ae:ed:6e:5e:97:39:34:e0:b6:3b:24:9f:5f:
bc:9a:8c:17:09:ac:07:77:35:43:ca:a7:90:9a:25:f6:8d:2e:
52:69:3e:df:a1:7c:20:76:68:1e:3c:fd:5f:6f:ff:c0:73:c4:
48:ad:83:46:58:16:12:0e:12:f2:99:e4:99:7b:84:1c:41:0b:
f6:d2:01:4f:5a:e3:f7:a1:58:7d:69:62:11:06:24:01:d1:c3:
82:d7:2e:62:4e:60:36:89:03:74:a5:57:f2:70:76:b0:73:68:
77:ce:41:53:fb:a3:a9:d7:1c:19:b7:24:f3:a2:00:f4:c6:9b:
31:be:e2:21:a8:e5:9b:03:68:1b:a9:42:d4:c9:d9:56:9d:b4:
4d:77:a6:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:08 2024 by rpki-client on console-fra.rpki-client.org