Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/4ae64b-f73e-408c-b4a8-cbb3d635d82f/1/BFKQ8qKwYxmMumSf1EN6tLrBMmY.roa
File: BFKQ8qKwYxmMumSf1EN6tLrBMmY.roa (raw, json)
Hash identifier: M2jDXiYx9fhIuGSiRO9Zn2VCWSVjagae1NfMfFWueBo=
Subject key identifier: 04:52:90:F2:A2:B0:63:19:8C:BA:64:9F:D4:43:7A:B4:BA:C1:32:66
Certificate issuer: /CN=69042c1f27a7d7862475087023dc97c3330f73c6
Certificate serial: 68EA03
Authority key identifier: 69:04:2C:1F:27:A7:D7:86:24:75:08:70:23:DC:97:C3:33:0F:73:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQQsHyen14YkdQhwI9yXwzMPc8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/4ae64b-f73e-408c-b4a8-cbb3d635d82f/1/BFKQ8qKwYxmMumSf1EN6tLrBMmY.roa
Signing time: Sat 01 Jan 2022 00:55:43 +0000
ROA not before: Sat 01 Jan 2022 00:55:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3176
IP address blocks: 185.104.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6875651 (0x68ea03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69042c1f27a7d7862475087023dc97c3330f73c6
Validity
Not Before: Jan 1 00:55:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=045290f2a2b063198cba649fd4437ab4bac13266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cd:4b:27:05:68:51:d8:f5:8d:e8:73:1e:a8:
13:01:9b:4a:62:e6:a2:65:ad:d9:22:7a:5e:ed:12:
00:86:d9:02:17:89:22:ce:d0:b7:50:f8:34:4a:6f:
cc:ad:12:75:d0:2e:ea:da:11:6f:b6:b5:ee:80:29:
41:1b:16:02:fd:f2:11:48:e8:e0:4b:ac:89:a8:65:
ea:57:ab:1d:1c:79:77:1d:7e:1f:f7:ed:6a:17:21:
78:db:27:17:cd:3f:2a:31:99:22:b3:2d:e3:72:8e:
50:63:42:95:e4:19:9e:88:3a:a6:8f:26:ed:35:0d:
03:ed:6c:8e:f9:ad:25:b0:2e:ac:5f:ab:ef:6a:42:
09:e3:e5:f8:06:82:26:63:9c:b6:89:a4:d7:20:c9:
39:7c:2b:d3:81:b5:14:8d:bb:9d:66:c4:ef:ef:73:
74:b4:bd:b7:47:30:f1:27:3b:75:f2:9f:f4:d8:b5:
0f:c7:9e:8c:cf:87:ea:1a:7c:19:5e:c6:40:47:f3:
44:2d:0e:35:2a:3f:b0:2e:ac:a2:5d:b7:0f:fb:4f:
a3:ee:ce:30:d1:f1:fb:ab:46:d5:e5:c1:98:fe:7c:
20:ca:98:e5:3c:c5:79:8a:c9:17:3d:4a:c2:52:bd:
1f:bc:ca:f8:a3:00:69:64:6d:a4:eb:55:52:44:9d:
e8:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:52:90:F2:A2:B0:63:19:8C:BA:64:9F:D4:43:7A:B4:BA:C1:32:66
X509v3 Authority Key Identifier:
keyid:69:04:2C:1F:27:A7:D7:86:24:75:08:70:23:DC:97:C3:33:0F:73:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQQsHyen14YkdQhwI9yXwzMPc8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/4ae64b-f73e-408c-b4a8-cbb3d635d82f/1/BFKQ8qKwYxmMumSf1EN6tLrBMmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/4ae64b-f73e-408c-b4a8-cbb3d635d82f/1/aQQsHyen14YkdQhwI9yXwzMPc8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.69.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:c2:37:27:a0:05:40:54:c9:47:a9:bc:40:7d:96:2f:5d:34:
13:17:58:52:32:a7:99:ff:ad:03:bb:77:61:6d:0a:56:f1:c6:
89:bf:03:4c:2d:8e:45:49:22:22:3a:e1:4b:69:ec:40:2d:8e:
f8:b6:2f:4e:1b:0f:66:36:c5:32:58:60:1f:80:48:f9:5b:8d:
e5:86:c2:bd:81:fb:1f:32:0b:e7:58:b6:b5:f1:4e:82:0f:b2:
96:ea:45:c2:8c:12:0f:5a:51:1b:8c:fe:a1:bc:b5:dc:e0:39:
65:48:25:79:78:7a:bd:f5:68:c4:07:53:6d:34:98:72:e8:6a:
1c:e7:d4:68:07:14:26:1a:e6:84:89:42:1a:78:3b:9f:7f:51:
55:e1:63:0f:99:d9:84:e2:7c:90:59:60:3a:73:d3:4b:34:c2:
8d:2d:96:8f:c4:77:35:22:03:02:07:f3:23:d1:ad:7a:ab:df:
c6:23:75:63:04:31:1e:3e:f5:89:3e:24:7e:98:04:1d:f3:33:
6e:25:e4:36:07:83:74:fc:a3:c2:f5:af:9b:cf:e9:5d:8c:92:
6e:4c:20:67:94:0f:53:35:a9:6a:ba:ee:f5:a4:87:cb:54:b3:
4e:6e:7c:bf:b2:f0:7f:5a:4a:bd:51:0d:9b:b8:e0:31:1c:86:
76:93:4f:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:05 2023 by rpki-client on console-fra.rpki-client.org