Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/B73LQZA5IGRQDVdg2W719RkDRqI.roa
File: B73LQZA5IGRQDVdg2W719RkDRqI.roa (raw, json)
Hash identifier: rXpQVSTQxzoLpoztqtViSpVt7z89KRLK7gXf/vt5mSk=
Subject key identifier: 07:BD:CB:41:90:39:20:64:50:0D:57:60:D9:6E:F5:F5:19:03:46:A2
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 01840C78D8C3BE89757A314E844BDACD3FBD
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/B73LQZA5IGRQDVdg2W719RkDRqI.roa
Signing time: Tue 25 Oct 2022 00:09:17 +0000
ROA not before: Tue 25 Oct 2022 00:09:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210439
IP address blocks: 194.246.37.0/24 maxlen: 24
45.143.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0c:78:d8:c3:be:89:75:7a:31:4e:84:4b:da:cd:3f:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Oct 25 00:09:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07bdcb4190392064500d5760d96ef5f5190346a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:93:34:eb:26:df:b3:8b:ca:af:84:25:fe:f4:
66:29:13:56:5e:75:d8:2f:92:54:fd:95:55:46:7b:
96:ca:96:49:0f:dc:45:e2:6d:8b:9b:fd:cb:fd:ba:
54:7f:33:cb:0c:8b:3f:d6:91:4b:6b:97:ed:50:2b:
6b:c4:10:dc:eb:68:f1:7f:c9:56:25:38:ea:2e:e1:
89:d4:da:60:bd:f1:e5:d4:62:98:07:11:a5:b1:1c:
ad:55:1a:ff:9b:d3:a4:55:db:72:8f:6a:60:bf:72:
2b:54:f1:fe:85:60:f6:dd:ec:52:cc:93:d0:4d:4d:
97:33:80:51:51:77:9b:c2:24:92:3a:88:0d:a8:24:
2e:02:fb:5a:54:12:5c:d4:ec:31:ad:38:05:6b:73:
1c:51:23:2e:ac:b1:c7:39:dd:e2:71:88:bc:71:b0:
cc:91:f7:25:af:70:02:79:90:8a:4a:a6:16:5a:75:
4c:d7:d3:e4:85:8c:16:b4:e5:1a:73:c6:b7:d9:d3:
fa:13:2f:8b:cd:16:2d:06:41:d9:20:d5:2a:7c:a6:
43:7e:67:5e:23:f8:3c:8f:e8:4f:62:18:f7:31:9c:
0b:ef:36:75:ee:5b:7a:23:a0:7e:1f:13:4b:f7:12:
a6:08:95:88:05:3b:14:05:fb:f9:9c:13:ee:53:aa:
9f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:BD:CB:41:90:39:20:64:50:0D:57:60:D9:6E:F5:F5:19:03:46:A2
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/B73LQZA5IGRQDVdg2W719RkDRqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.161.0/24
194.246.37.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:37:6f:c1:93:dc:47:a5:d3:96:5b:9d:ea:67:ef:d9:21:d0:
e7:78:41:2d:58:7f:3d:aa:15:9b:61:b4:c8:20:35:ba:6d:f1:
df:63:32:4c:8e:38:af:16:35:49:8e:fe:ac:53:87:46:93:6a:
ae:d3:f9:b4:a8:47:02:fe:f2:4f:76:6e:1b:24:6e:16:e0:f6:
e2:79:6f:86:3b:7f:0b:4c:88:52:31:9f:f3:eb:af:83:89:28:
39:b0:59:9e:9c:68:4f:7b:41:de:69:47:d0:3e:1f:c5:87:7d:
87:98:ab:77:b8:79:2f:21:38:9f:67:1a:1b:db:61:58:1e:6c:
af:cb:fd:a1:90:b1:ba:7e:28:1b:2c:53:c2:3b:37:6d:1b:c1:
18:f6:78:3c:6c:11:2d:15:6c:06:1e:7d:13:a5:e3:2a:30:50:
ca:85:b6:e2:c6:54:f5:9f:89:d0:91:19:23:a0:c6:c3:12:1d:
87:42:15:1a:ed:c3:8f:47:c2:69:5a:81:68:b0:4c:8b:d9:a8:
e9:bf:c1:65:0a:b2:01:8f:0a:3b:09:2a:76:3e:6e:fc:de:30:
19:24:3c:21:54:2e:80:92:9f:4d:ce:4d:32:38:b7:55:a1:89:
25:df:5b:01:2c:c2:84:32:b4:96:cc:ee:1e:fd:37:45:6d:c3:
6a:85:1b:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:51 2024 by rpki-client on console-fra.rpki-client.org