Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/BVihxUb98HXEV7wGPIROSEC7tBA.roa
File: BVihxUb98HXEV7wGPIROSEC7tBA.roa (raw, json)
Hash identifier: jzvR9MAIpS8kvvc/CtLTOxQoyFJHmeQif0CZjYeNtjQ=
Subject key identifier: 05:58:A1:C5:46:FD:F0:75:C4:57:BC:06:3C:84:4E:48:40:BB:B4:10
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 1884E130
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/BVihxUb98HXEV7wGPIROSEC7tBA.roa
Signing time: Tue 21 Jun 2022 11:55:47 +0000
ROA not before: Tue 21 Jun 2022 11:55:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31575
IP address blocks: 82.179.176.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 411361584 (0x1884e130)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jun 21 11:55:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0558a1c546fdf075c457bc063c844e4840bbb410
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3f:32:29:ee:a3:75:31:d9:72:4c:e8:40:6d:
e4:28:df:95:ed:41:48:03:f2:6a:81:78:2f:32:c4:
f8:4e:ac:1f:9e:14:15:93:19:3b:d6:30:27:b1:2b:
ab:78:d0:16:b3:85:7f:c1:a5:fe:49:65:21:a2:f9:
fe:c1:32:25:5c:e4:37:9e:4e:6b:c1:07:d0:6b:d7:
fd:5f:4a:56:65:ea:ed:ff:84:4b:fc:d6:2c:63:11:
f1:fe:8a:74:89:a4:4f:d6:b2:64:98:4a:a6:77:1a:
91:0c:fa:92:11:42:13:9c:ca:bb:9c:0f:d5:23:5d:
a9:e2:ec:82:4b:7c:f5:e1:0a:08:dd:e3:7d:16:63:
98:d7:ad:ff:72:97:0e:2e:bb:59:c9:4e:d5:d6:e5:
89:d1:75:05:02:56:c8:4e:36:04:7c:3d:38:63:72:
98:46:63:42:33:71:8d:11:ff:45:d9:ac:ca:de:c3:
43:14:0c:66:86:39:10:e6:82:9a:f9:86:68:5e:47:
f3:3f:48:1b:be:f8:ba:14:0f:87:f9:64:c3:af:13:
81:20:f7:3d:f8:a9:ab:79:ca:d1:28:a5:57:33:3b:
08:35:e8:ea:6b:c6:04:50:23:aa:65:b3:8e:4a:1e:
5a:5c:55:1b:45:23:d5:a8:86:cb:62:15:03:09:81:
de:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:58:A1:C5:46:FD:F0:75:C4:57:BC:06:3C:84:4E:48:40:BB:B4:10
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/BVihxUb98HXEV7wGPIROSEC7tBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.179.176.0/20
Signature Algorithm: sha256WithRSAEncryption
51:d5:c0:cd:39:a9:15:f5:58:ed:27:bd:27:03:43:9f:3d:85:
d7:7a:77:5c:a6:e8:15:e9:ee:38:e9:ba:f2:0d:5d:1b:0b:32:
05:d5:3e:c5:77:fb:f0:f5:bb:45:41:ca:5a:31:7c:04:e1:03:
d8:d2:f1:07:c6:10:48:a1:52:93:e3:78:fe:ef:e7:9f:df:a7:
4b:09:6d:98:8a:00:5a:5e:81:65:1b:ca:af:9b:1e:cf:e9:f6:
52:8b:06:06:05:55:83:49:c2:3d:7a:91:d1:62:ac:e2:c0:1a:
cf:dc:6e:bb:7a:8a:8b:4c:c9:f4:04:3f:cb:10:c6:b5:01:c8:
55:28:ea:d8:18:52:54:7f:93:8c:c2:93:c2:26:a7:f1:00:0d:
8b:8c:bd:4d:3f:10:de:9e:64:4c:51:72:e6:40:e7:91:0e:44:
10:8b:5a:fe:6e:f0:c4:82:c9:92:62:70:8b:3d:dc:62:bb:b3:
e7:54:9d:72:bf:12:6d:09:bf:14:d3:8c:60:ef:c7:c7:81:a4:
6f:96:c5:42:1f:ce:7c:93:2e:37:4e:b5:b4:52:0d:3e:7f:b7:
98:98:08:2f:8a:57:61:ca:0c:19:47:8d:26:63:cb:25:22:9f:
14:b6:0c:79:d0:7a:1e:16:1f:e7:18:b1:af:85:93:a7:50:54:
55:23:10:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org