Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/bBhv1Ju0kFtePZmA0U5q9WfEiIA.roa
File: bBhv1Ju0kFtePZmA0U5q9WfEiIA.roa (raw, json)
Hash identifier: U3hvCw8ess2va3bol7dgzTi1uvPaQIEHfyWuh5wH1l8=
Subject key identifier: 6C:18:6F:D4:9B:B4:90:5B:5E:3D:99:80:D1:4E:6A:F5:67:C4:88:80
Certificate issuer: /CN=d3cb5cecc213b9f86dbba518521e8546ec93861c
Certificate serial: 018384C3CF39B6096605103C35111F9ABD3E
Authority key identifier: D3:CB:5C:EC:C2:13:B9:F8:6D:BB:A5:18:52:1E:85:46:EC:93:86:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/08tc7MITufhtu6UYUh6FRuyThhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/bBhv1Ju0kFtePZmA0U5q9WfEiIA.roa
Signing time: Wed 28 Sep 2022 15:42:48 +0000
ROA not before: Wed 28 Sep 2022 15:42:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202613
IP address blocks: 217.198.140.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:84:c3:cf:39:b6:09:66:05:10:3c:35:11:1f:9a:bd:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cb5cecc213b9f86dbba518521e8546ec93861c
Validity
Not Before: Sep 28 15:42:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c186fd49bb4905b5e3d9980d14e6af567c48880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d3:81:14:f1:65:74:fb:57:d9:ed:bc:85:14:
95:34:44:b1:10:25:75:65:09:11:ee:ab:ac:47:19:
f3:0c:75:0e:d7:ff:d0:4e:11:68:10:b2:40:18:5f:
90:24:33:72:70:5a:2a:3a:c6:e7:19:b4:5c:41:29:
26:55:cd:71:25:48:63:b6:ee:d6:1f:3f:8d:5c:7a:
f3:0c:f0:36:30:5e:80:67:7f:f2:06:98:dc:c4:cc:
ff:cc:d8:cd:a8:f4:60:d4:e9:38:20:0f:62:31:69:
36:18:67:25:b9:1e:90:d3:48:d4:ab:c0:3a:53:71:
fd:c8:6d:b6:a7:33:80:7c:81:5f:fc:0d:9f:8a:21:
34:bb:2c:44:e6:ad:16:f8:14:ae:6a:f5:c7:b3:dc:
2b:63:4a:15:52:e1:e1:d4:04:b8:87:af:12:01:af:
8f:70:76:4e:e9:fb:d3:35:7f:17:b6:72:f2:c8:f0:
78:6a:35:df:92:10:de:4f:69:1a:16:c9:9d:2d:52:
6c:67:5e:31:9d:28:05:8c:67:b1:ae:5d:c5:48:34:
26:5b:fb:38:a2:20:5f:b6:ab:89:44:73:35:26:ad:
ab:4d:9a:ef:07:42:05:6d:3e:fb:2d:3e:14:55:96:
33:ed:e3:d9:50:50:64:e7:74:08:43:ea:0c:95:c7:
87:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:18:6F:D4:9B:B4:90:5B:5E:3D:99:80:D1:4E:6A:F5:67:C4:88:80
X509v3 Authority Key Identifier:
keyid:D3:CB:5C:EC:C2:13:B9:F8:6D:BB:A5:18:52:1E:85:46:EC:93:86:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/08tc7MITufhtu6UYUh6FRuyThhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/bBhv1Ju0kFtePZmA0U5q9WfEiIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/08tc7MITufhtu6UYUh6FRuyThhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.140.0/22
Signature Algorithm: sha256WithRSAEncryption
86:61:c4:f3:db:c9:44:ed:ed:91:fe:3b:72:9d:a3:e4:71:e8:
6e:93:14:cb:3c:e1:d2:11:bd:78:d1:a3:06:b0:23:f3:74:3f:
39:0f:f9:c4:c2:03:40:a8:b7:97:05:e1:ed:52:6a:8d:dc:31:
b2:f7:b6:0b:41:57:ae:54:0c:0e:b3:d0:bb:78:bc:4f:b9:38:
b8:11:d1:38:93:43:a0:67:07:4d:9f:61:01:9a:2c:33:d1:82:
a1:6d:3e:e7:8d:36:19:54:7a:ff:7f:52:51:cb:a7:71:a3:a6:
cb:cf:11:5d:25:90:e4:96:f3:50:ec:86:28:92:27:53:47:b7:
4d:5a:90:33:fe:f0:55:cf:0f:56:06:d8:b8:9d:f3:5d:01:96:
14:05:6d:77:85:dc:0f:08:3a:43:ea:49:b5:c8:9e:d0:61:2f:
cf:cd:e8:c9:37:33:7b:17:54:cd:f8:27:e8:b1:bb:f4:75:aa:
e6:9f:48:a6:55:90:4e:21:4b:f8:b8:ba:f5:f9:4d:20:7a:00:
54:74:32:8e:0c:51:e6:e1:fe:fd:5a:f3:96:cb:22:4f:9d:34:
eb:81:6b:fd:8c:97:69:29:f6:51:f9:2c:57:fc:0a:59:91:7d:
fa:de:e0:13:8b:db:4f:3f:8a:cc:ee:17:40:ee:ed:a6:da:b4:
e4:0d:2e:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:07 2023 by rpki-client on console-fra.rpki-client.org