Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/fc2815-d293-40af-bf3c-1c8afd19fdbb/1/BgoQwTxzy2tnqvUUwXUJRQNEzmU.roa
File: BgoQwTxzy2tnqvUUwXUJRQNEzmU.roa (raw, json)
Hash identifier: XDq16t6OjMGmHYAzxFvBEwPoBk32e80tLJquS0gYL+0=
Subject key identifier: 06:0A:10:C1:3C:73:CB:6B:67:AA:F5:14:C1:75:09:45:03:44:CE:65
Certificate issuer: /CN=c6c58ed1af964a7668e44397619ee1985a2491c5
Certificate serial: 383AEFF0
Authority key identifier: C6:C5:8E:D1:AF:96:4A:76:68:E4:43:97:61:9E:E1:98:5A:24:91:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xsWO0a-WSnZo5EOXYZ7hmFokkcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/fc2815-d293-40af-bf3c-1c8afd19fdbb/1/BgoQwTxzy2tnqvUUwXUJRQNEzmU.roa
Signing time: Wed 02 Feb 2022 07:52:09 +0000
ROA not before: Wed 02 Feb 2022 07:52:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42864
IP address blocks: 185.198.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 943386608 (0x383aeff0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6c58ed1af964a7668e44397619ee1985a2491c5
Validity
Not Before: Feb 2 07:52:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=060a10c13c73cb6b67aaf514c17509450344ce65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d0:00:99:01:9d:07:6b:6d:09:08:ee:53:45:
d9:39:09:5a:a6:cc:96:27:19:7a:85:9f:2e:d2:a5:
06:9f:81:42:8e:82:5b:1f:6a:23:ea:31:b2:c5:3d:
ed:1e:a8:be:9f:2c:51:0c:c4:48:51:ae:ff:a0:dd:
43:bd:dc:53:f1:2a:4d:c5:50:26:e3:bb:3e:a7:53:
b8:d1:8b:2f:c0:d8:57:b8:07:99:31:e0:0a:ea:44:
df:5f:aa:0b:13:6c:d9:c5:91:3f:6d:09:9d:15:9b:
da:e2:e5:58:90:de:1e:d2:c5:7d:91:f5:c9:82:3a:
55:80:91:bd:a1:74:ff:15:7c:ae:2f:4b:64:c2:f4:
89:55:b6:ee:43:b3:83:0e:c4:d7:c3:dc:1b:94:fa:
8f:3d:7e:cc:f4:be:70:76:c7:f0:8d:a9:9c:9e:57:
72:b0:39:6c:4c:fc:25:5d:bc:c2:10:48:4f:7c:66:
ca:34:62:9d:c0:be:e4:30:01:7f:de:6a:95:dc:fa:
c8:5d:dc:a8:fd:56:d7:23:84:e7:7c:7b:0e:65:1b:
13:45:8c:bb:28:42:14:e4:23:c0:0a:7e:af:33:8d:
a2:9b:08:67:6e:87:ba:e2:17:d7:74:61:1f:75:f1:
dc:ab:da:32:87:e4:fd:b0:f4:30:35:9b:21:3d:f4:
7e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:0A:10:C1:3C:73:CB:6B:67:AA:F5:14:C1:75:09:45:03:44:CE:65
X509v3 Authority Key Identifier:
keyid:C6:C5:8E:D1:AF:96:4A:76:68:E4:43:97:61:9E:E1:98:5A:24:91:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xsWO0a-WSnZo5EOXYZ7hmFokkcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/fc2815-d293-40af-bf3c-1c8afd19fdbb/1/BgoQwTxzy2tnqvUUwXUJRQNEzmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/fc2815-d293-40af-bf3c-1c8afd19fdbb/1/xsWO0a-WSnZo5EOXYZ7hmFokkcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.168.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:cc:8d:91:ae:94:f2:03:d7:66:28:87:db:9e:22:82:cb:e5:
20:e8:ed:cd:41:0a:30:35:f3:44:0a:74:2e:a7:5b:68:ed:bc:
70:94:d5:f1:ff:79:da:2b:23:7e:1c:64:38:d3:21:74:e4:8e:
1c:86:f2:fc:b0:87:fe:ce:65:e4:d5:7c:c4:39:e4:0f:f6:d0:
b7:b2:f0:bc:45:5f:01:8f:93:61:c8:9b:ee:fb:72:b9:f9:42:
53:fd:46:66:94:8d:b2:9d:b9:f2:1d:6c:46:62:85:dc:8d:5b:
5c:9c:2e:be:3f:eb:5b:5a:8f:d3:3c:e1:13:b0:33:f4:6f:12:
6d:67:f8:ee:c1:64:5a:27:52:64:6a:77:fe:de:30:2c:ef:27:
ca:db:3e:0c:cd:ab:7f:c1:e9:11:5f:44:fa:9d:f7:c5:65:37:
c1:c4:77:72:09:a4:c0:82:a8:ad:7c:21:f3:42:fc:15:c1:e9:
d2:0e:48:09:1b:c1:d9:7c:0b:f1:0e:45:c7:ca:16:d0:30:88:
93:8a:d5:e0:56:50:48:4d:2f:0a:c4:3a:3b:b4:ab:52:24:df:
f8:d1:85:2a:28:d1:6c:e3:99:e8:d3:49:b7:1c:c8:7d:c8:27:
a3:e1:3f:c6:c7:e6:8d:24:a4:78:63:06:bc:8c:1b:24:5b:21:
3f:60:52:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:55 2025 by rpki-client