Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/BdXWoOOhaHAN311uIDMsOHyh000.roa
File: BdXWoOOhaHAN311uIDMsOHyh000.roa (raw, json)
Hash identifier: ud/Y74H8yXWFykW9TWmZIAKDZflDT12hK61+lMsL1Dg=
Subject key identifier: 05:D5:D6:A0:E3:A1:68:70:0D:DF:5D:6E:20:33:2C:38:7C:A1:D3:4D
Certificate issuer: /CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Certificate serial: 0186E4712A8EFD8BA9114664B38226E522CB
Authority key identifier: 1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/BdXWoOOhaHAN311uIDMsOHyh000.roa
Signing time: Wed 15 Mar 2023 08:44:27 +0000
ROA not before: Wed 15 Mar 2023 08:44:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207990
IP address blocks: 89.19.42.0/23 maxlen: 32
83.229.76.0/22 maxlen: 32
119.13.192.0/20 maxlen: 32
83.229.104.0/22 maxlen: 32
93.114.10.0/23 maxlen: 32
93.114.12.0/22 maxlen: 32
45.142.92.0/22 maxlen: 32
209.20.176.0/21 maxlen: 32
93.180.192.0/20 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e4:71:2a:8e:fd:8b:a9:11:46:64:b3:82:26:e5:22:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Validity
Not Before: Mar 15 08:44:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05d5d6a0e3a168700ddf5d6e20332c387ca1d34d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:bc:fb:41:ae:d3:86:9e:92:35:40:ad:c9:a4:
0c:fd:a5:4c:7b:12:a1:d1:46:de:d0:e4:9e:3b:55:
c0:bb:88:2b:b0:de:b6:bf:ff:0f:a1:ad:12:69:a6:
34:12:d0:5c:20:10:43:93:57:a9:ef:78:1c:cd:9e:
fb:0d:14:6c:f1:7d:f5:58:c1:e9:9d:71:09:4c:14:
e2:48:ea:e6:dd:76:6f:73:1c:d6:47:da:63:6b:24:
a0:49:11:2b:27:19:92:5b:86:66:87:6d:6e:e8:1c:
b0:87:47:05:9a:00:7c:0d:13:e4:85:36:c4:cd:cd:
14:25:22:c3:1a:50:f9:f3:a6:90:b1:6b:16:96:73:
b1:64:43:70:01:f6:a6:f8:29:2d:6a:86:87:a4:62:
06:c7:b5:2c:e0:63:bc:b0:db:7c:b4:69:32:73:13:
0a:ef:91:08:58:d7:ac:d6:47:21:2f:a7:1b:b7:80:
95:58:7d:66:1d:d5:d7:29:0d:14:49:c7:1f:bf:b9:
3b:d5:91:d5:5b:7f:bf:68:96:2a:2f:2d:33:91:02:
df:1b:86:8d:08:64:72:54:c3:13:e1:b3:fc:63:05:
a1:b3:9a:d5:5d:39:e7:f8:cf:01:6c:0e:2e:af:e4:
74:22:73:7a:45:14:c1:75:45:fc:2e:dd:27:79:00:
e4:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:D5:D6:A0:E3:A1:68:70:0D:DF:5D:6E:20:33:2C:38:7C:A1:D3:4D
X509v3 Authority Key Identifier:
keyid:1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/BdXWoOOhaHAN311uIDMsOHyh000.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.92.0/22
83.229.76.0/22
83.229.104.0/22
89.19.42.0/23
93.114.10.0-93.114.15.255
93.180.192.0/20
119.13.192.0/20
209.20.176.0/21
Signature Algorithm: sha256WithRSAEncryption
ad:10:35:bf:b5:8e:bc:ae:2f:f8:fe:3a:d2:3b:ec:27:96:24:
cf:98:fe:2f:36:a7:d2:e0:17:12:15:4f:58:ae:07:f8:cb:07:
2e:72:38:a8:dc:a8:eb:78:1e:a6:e4:4f:3a:0b:07:df:55:db:
07:47:c2:31:14:8a:a5:65:b3:9f:c6:0e:fd:bd:4a:7d:50:aa:
a4:be:66:57:f4:6a:83:4e:2e:ef:46:fa:e5:2e:6f:aa:1e:fb:
c4:18:d4:95:bb:cb:e0:ea:d6:3a:5c:e8:fe:ca:f1:07:a5:9a:
a9:c6:e4:a8:52:c0:05:1d:30:e9:8f:ad:df:0e:05:48:e8:75:
16:b9:a7:e6:33:94:b8:f6:a7:50:17:e5:0b:b9:5e:a3:6a:a2:
e7:92:0e:97:9c:d8:69:67:42:4f:4f:25:2f:d1:b1:1d:f1:03:
fc:bc:e8:76:19:21:eb:ce:58:99:ec:69:e2:46:78:9f:a6:07:
f0:31:f2:e9:d4:28:86:e0:9e:59:76:1b:9c:65:70:64:0f:e0:
c9:ad:37:5f:51:d9:55:61:f6:59:a7:3c:33:f1:c6:91:2b:10:
e9:2f:2c:b8:3e:d2:57:16:1c:2c:4f:6f:8d:77:cd:0b:cb:a7:
ce:b5:7a:58:5c:a1:36:f9:76:5f:53:48:85:b1:a4:15:6f:d2:
f6:97:2a:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 23:30:34 2025 by rpki-client