Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/BGuyThpZuwPyWJapff32i856WgE.roa
File: BGuyThpZuwPyWJapff32i856WgE.roa (raw, json)
Hash identifier: 3vr/Xs/3QdZFQQoqiD1gfFvRNMmSCKZglMDOfZBtFZg=
Subject key identifier: 04:6B:B2:4E:1A:59:BB:03:F2:58:96:A9:7D:FD:F6:8B:CE:7A:5A:01
Certificate issuer: /CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Certificate serial: 07EB30A3
Authority key identifier: BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/BGuyThpZuwPyWJapff32i856WgE.roa
Signing time: Fri 25 Mar 2022 08:17:36 +0000
ROA not before: Fri 25 Mar 2022 08:17:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.31.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132853923 (0x7eb30a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Validity
Not Before: Mar 25 08:17:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=046bb24e1a59bb03f25896a97dfdf68bce7a5a01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:53:b1:8e:8b:87:3b:66:24:a9:f7:5a:e0:40:
63:c3:17:f6:37:ae:d2:f5:4d:16:9b:34:dc:4e:24:
90:e0:37:3d:27:ec:78:1a:90:b1:94:c7:9c:6f:3a:
68:96:9a:10:3e:ce:2e:c5:29:6e:62:b4:52:6f:06:
45:e6:9f:08:dd:f7:a0:90:e6:0a:c9:a1:34:7f:55:
55:f4:ff:dd:54:77:ae:fc:1c:f5:ae:04:b7:3e:6b:
4b:a6:e7:7c:24:c0:37:f7:b1:c9:7b:5a:85:86:ef:
aa:ec:78:37:65:79:4f:7f:ae:58:b5:ae:0f:59:cc:
e5:64:4e:d3:e6:29:55:e9:57:55:3d:68:76:79:65:
b7:6e:16:1f:2e:e6:8a:77:89:70:bb:4f:14:72:8f:
fe:1f:88:f6:da:49:77:df:7f:94:09:21:28:c0:a3:
0f:45:47:c9:70:02:8a:db:4c:3d:05:cf:5a:7d:26:
bb:e8:b9:be:c0:8c:9b:12:eb:c1:38:b7:cb:ad:9b:
9d:83:00:6a:e2:83:fa:64:86:97:e3:dd:2f:dd:7b:
c8:ca:10:e1:c4:e4:c0:d9:ce:2e:0f:de:0c:a8:8f:
12:bc:a0:42:82:72:d8:58:aa:df:00:ea:51:93:b1:
17:9e:27:d5:d2:5e:92:d5:2b:c9:25:a6:5d:13:7f:
2d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:6B:B2:4E:1A:59:BB:03:F2:58:96:A9:7D:FD:F6:8B:CE:7A:5A:01
X509v3 Authority Key Identifier:
keyid:BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/BGuyThpZuwPyWJapff32i856WgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/vx1f6v05F0clv-S--RvSfHsvb5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.15.0/24
Signature Algorithm: sha256WithRSAEncryption
73:37:cf:7e:44:be:c4:ef:27:92:07:03:47:37:73:25:e1:1a:
8e:99:56:48:49:e8:1a:44:ea:da:ce:0f:ef:68:0a:f6:e5:08:
53:6e:42:19:37:62:be:fa:54:44:c5:c0:07:96:54:fa:a7:55:
7b:1b:f0:b1:e8:03:b3:61:4c:e8:f8:a8:7a:51:ba:43:3b:cd:
92:8f:63:53:47:25:49:7d:a7:6d:51:1c:f7:d7:02:9a:28:4b:
50:ae:7e:6c:85:fe:ff:71:e5:b1:30:47:4e:2d:ec:6f:ae:15:
13:4e:69:1a:c4:30:b2:89:cb:f5:9f:b2:12:eb:af:3b:46:48:
c4:55:16:18:4a:3a:37:02:e9:ea:0c:97:e2:32:47:85:3e:f5:
2b:5c:6b:d4:4c:a7:ec:2e:ba:05:a5:08:6b:77:ab:26:f0:dd:
85:3a:73:ba:2e:d7:5e:82:46:3f:bd:3d:46:0c:07:15:2b:6f:
35:a2:75:40:9a:2e:97:0a:5d:e5:ea:26:c1:7d:4b:42:f4:ac:
2a:78:c7:93:66:b3:58:d0:17:c8:ce:d7:48:7b:db:7d:c1:08:
15:89:2a:88:c8:b0:8a:40:29:08:a7:69:19:07:ec:f0:cb:55:
29:f5:ee:32:ee:75:dc:9e:31:8b:21:61:29:97:85:e7:5b:2a:
8f:0e:cc:7b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB+swozANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZjFkNWZlYWZkMzkxNzQ3MjViZmU0YmVmOTFiZDI3YzdiMmY2ZjkxMB4XDTIyMDMy
NTA4MTczNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDQ2YmIyNGUxYTU5
YmIwM2YyNTg5NmE5N2RmZGY2OGJjZTdhNWEwMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAONTsY6LhztmJKn3WuBAY8MX9jeu0vVNFps03E4kkOA3PSfs
eBqQsZTHnG86aJaaED7OLsUpbmK0Um8GReafCN33oJDmCsmhNH9VVfT/3VR3rvwc
9a4Etz5rS6bnfCTAN/exyXtahYbvqux4N2V5T3+uWLWuD1nM5WRO0+YpVelXVT1o
dnllt24WHy7mineJcLtPFHKP/h+I9tpJd99/lAkhKMCjD0VHyXACittMPQXPWn0m
u+i5vsCMmxLrwTi3y62bnYMAauKD+mSGl+PdL917yMoQ4cTkwNnOLg/eDKiPEryg
QoJy2Fiq3wDqUZOxF54n1dJektUrySWmXRN/LZUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQEa7JOGlm7A/JYlql9/faLznpaATAfBgNVHSMEGDAWgBS/HV/q/TkXRyW/
5L75G9J8ey9vkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3Z4MWY2djA1RjBjbHYtUy0tUnZTZkhzdmI1RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjMvNjA2NWQyLTEwM2UtNGFiNy1iZmIzLTFhOGM4NDJhZmUyYS8x
L0JHdXlUaHBadXdQeVdKYXBmZjMyaTg1NldnRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjMv
NjA2NWQyLTEwM2UtNGFiNy1iZmIzLTFhOGM4NDJhZmUyYS8xL3Z4MWY2djA1RjBj
bHYtUy0tUnZTZkhzdmI1RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEfDzANBgkqhkiG9w0BAQsFAAOC
AQEAczfPfkS+xO8nkgcDRzdzJeEajplWSEnoGkTq2s4P72gK9uUIU25CGTdivvpU
RMXAB5ZU+qdVexvwsegDs2FM6PioelG6QzvNko9jU0clSX2nbVEc99cCmihLUK5+
bIX+/3HlsTBHTi3sb64VE05pGsQwsonL9Z+yEuuvO0ZIxFUWGEo6NwLp6gyX4jJH
hT71K1xr1Eyn7C66BaUIa3erJvDdhTpzui7XXoJGP709RgwHFStvNaJ1QJoulwpd
5eomwX1LQvSsKnjHk2azWNAXyM7XSHvbfcEIFYkqiMiwikApCKdpGQfs8MtVKfXu
Mu513J4xiyFhKZeF51sqjw7Mew==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:29 2024 by rpki-client on console-ams.rpki-client.org