Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/Bx9ZLeITwVQtLXxSa4M_n3n9qH8.roa
File: Bx9ZLeITwVQtLXxSa4M_n3n9qH8.roa (raw, json)
Hash identifier: 82Xy/Ox3iMDJlMNMsGqLjGw9w6/+7TPcB3tl9BZ3Od0=
Subject key identifier: 07:1F:59:2D:E2:13:C1:54:2D:2D:7C:52:6B:83:3F:9F:79:FD:A8:7F
Certificate issuer: /CN=b10780df36b5b942f660e403a2fe608a75e4e57d
Certificate serial: 0A830EEC
Authority key identifier: B1:07:80:DF:36:B5:B9:42:F6:60:E4:03:A2:FE:60:8A:75:E4:E5:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sQeA3za1uUL2YOQDov5ginXk5X0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/Bx9ZLeITwVQtLXxSa4M_n3n9qH8.roa
Signing time: Sat 01 Jan 2022 06:58:46 +0000
ROA not before: Sat 01 Jan 2022 06:58:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2852
IP address blocks: 192.108.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176361196 (0xa830eec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b10780df36b5b942f660e403a2fe608a75e4e57d
Validity
Not Before: Jan 1 06:58:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=071f592de213c1542d2d7c526b833f9f79fda87f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:4e:f5:cc:69:ca:16:90:14:e6:10:89:a2:ff:
b5:68:79:ac:ea:35:27:1e:e4:f3:05:47:20:c7:53:
07:63:45:88:89:3b:ec:44:8f:df:fc:d6:a1:32:14:
8d:d3:25:3d:03:b4:35:63:1f:91:57:74:e3:69:47:
a0:6f:8a:38:20:ff:5d:0e:6e:c4:d0:cc:4e:76:cc:
79:ad:af:92:54:ea:4f:9e:b7:9e:7d:4c:b9:8f:49:
e6:62:ad:60:1c:01:5c:a9:b2:e1:80:91:f1:cc:e9:
e8:fc:96:c3:48:0a:b9:7d:f3:f4:29:d4:45:85:f7:
36:87:bc:cb:09:74:1f:72:9f:71:0d:d1:34:67:af:
8b:9c:27:1c:64:5c:3e:d3:60:64:96:0a:43:2a:f0:
82:7d:a4:f2:b9:f0:51:ac:84:18:23:ba:a8:af:32:
d6:0c:27:58:71:b6:e2:90:8e:a0:20:2a:04:d0:19:
7a:75:14:b8:99:6f:6c:6b:74:fc:9c:c0:3e:a2:97:
3b:9a:2c:19:ed:72:a7:43:9f:57:15:40:b6:ab:4a:
92:7a:c6:74:b6:bc:17:08:6f:a7:f1:c2:66:e8:3f:
ff:96:46:bd:0b:da:cc:f1:7c:93:cb:38:d1:e4:af:
2a:f9:7f:3e:b9:9c:54:74:a2:96:44:1f:ab:1f:e5:
e9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:1F:59:2D:E2:13:C1:54:2D:2D:7C:52:6B:83:3F:9F:79:FD:A8:7F
X509v3 Authority Key Identifier:
keyid:B1:07:80:DF:36:B5:B9:42:F6:60:E4:03:A2:FE:60:8A:75:E4:E5:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sQeA3za1uUL2YOQDov5ginXk5X0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/Bx9ZLeITwVQtLXxSa4M_n3n9qH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.108.128.0/24
Signature Algorithm: sha256WithRSAEncryption
73:c9:f6:e6:b3:2f:55:e9:8f:cc:25:b0:f7:2e:02:54:73:9e:
b3:f4:79:0d:89:ec:74:6d:f7:82:40:5f:aa:92:3a:46:07:01:
bd:ce:6f:d7:fa:6e:49:21:78:b1:cc:9f:f2:52:76:ec:59:ce:
fd:30:8a:3e:a2:ed:7b:99:1f:67:a9:e2:fa:02:d6:83:0b:33:
b4:b8:b6:e3:26:27:27:2d:71:f5:8b:bf:d1:93:1f:52:fb:98:
39:c0:81:cf:d0:2a:a4:f6:4e:5d:c7:0c:9c:7e:c2:a3:96:42:
ee:a2:c7:cb:36:57:90:7d:07:b0:e4:ce:99:e8:6e:f4:90:4e:
f0:9c:35:e2:c6:69:2a:ac:9f:dc:77:37:49:6b:50:aa:05:2b:
ec:d7:f1:11:ac:34:3c:50:29:09:6b:96:22:3a:aa:cc:cf:e1:
e1:4b:77:2e:c3:1a:bb:58:2f:27:c2:fa:2e:d8:81:82:d4:46:
1f:0f:47:06:84:36:4c:3d:45:3d:4f:09:1f:04:8a:2a:4a:6f:
11:40:84:02:ea:b9:6f:c7:76:88:9e:d6:04:9e:c4:fc:fd:fb:
b6:1e:f6:fe:ff:2b:21:b4:66:57:2c:b5:50:f1:84:7c:4c:61:
7d:e1:78:60:a2:07:95:a9:e1:98:d9:d4:41:74:90:d8:c4:2a:
82:c1:bf:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:51 2024 by rpki-client on console-ams.rpki-client.org