Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/BnhkGbt74oW2zzWP-G7pF20Ulbk.roa
File: BnhkGbt74oW2zzWP-G7pF20Ulbk.roa (raw, json)
Hash identifier: X+uiMxZBxvqIj6fxbp4LdruNmVo8/43eo6SYqYgYsMc=
Subject key identifier: 06:78:64:19:BB:7B:E2:85:B6:CF:35:8F:F8:6E:E9:17:6D:14:95:B9
Certificate issuer: /CN=22f344a63dcb70e89057deb8e2761dc45165881a
Certificate serial: 0373FB65
Authority key identifier: 22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/BnhkGbt74oW2zzWP-G7pF20Ulbk.roa
Signing time: Fri 18 Mar 2022 09:34:21 +0000
ROA not before: Fri 18 Mar 2022 09:34:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209372
IP address blocks: 85.28.60.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57932645 (0x373fb65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f344a63dcb70e89057deb8e2761dc45165881a
Validity
Not Before: Mar 18 09:34:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06786419bb7be285b6cf358ff86ee9176d1495b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:90:28:05:70:3c:32:b3:ef:c2:ce:17:82:b7:
1d:05:3c:1e:73:4c:42:17:72:dc:91:c5:b1:33:f3:
66:51:f5:2c:c6:00:bf:84:49:49:6e:30:8f:c9:cf:
0c:36:2d:3a:92:71:ec:ec:42:5c:25:6b:b0:c7:72:
e3:19:54:ca:41:45:8e:3d:31:a7:1d:cb:a9:26:6f:
a2:4a:9e:7e:ac:3d:ab:ac:de:cd:d9:d8:d5:99:9a:
d6:06:c9:b4:9e:eb:5f:97:d3:f9:c9:bc:69:0c:2a:
ee:eb:a3:53:6c:6d:d5:91:e9:21:3e:84:f3:63:56:
bb:8b:f7:42:13:6b:7a:0d:4a:33:a1:56:6a:75:cf:
d2:32:d3:72:d7:8d:89:85:c7:a8:b7:02:39:4e:14:
0d:ae:6c:e6:f2:42:b5:fd:81:35:cd:5e:84:42:6f:
89:04:2a:d5:ad:a4:0f:aa:7e:4e:9a:00:1e:28:c0:
f6:32:0c:a5:0f:89:21:77:96:e0:58:1e:26:4a:47:
23:f7:6b:9a:50:cb:51:a1:ec:fe:7b:3c:89:e8:c2:
8d:82:60:64:5e:53:85:62:92:c2:16:46:98:38:72:
be:be:0b:8e:66:65:08:3a:92:2f:06:55:0b:bb:f2:
d0:55:14:6f:2e:92:76:21:d6:05:36:09:fa:13:70:
68:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:78:64:19:BB:7B:E2:85:B6:CF:35:8F:F8:6E:E9:17:6D:14:95:B9
X509v3 Authority Key Identifier:
keyid:22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/BnhkGbt74oW2zzWP-G7pF20Ulbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.28.60.0/22
Signature Algorithm: sha256WithRSAEncryption
10:ff:fd:f3:95:e4:d7:fc:a4:35:cb:45:77:ef:fb:9e:df:82:
07:38:c9:c1:7c:1b:3f:2d:a0:b3:2e:b5:c4:87:da:9e:93:83:
e2:5b:09:8e:9d:2f:77:95:15:83:58:6b:73:2f:52:16:b6:8d:
72:f9:9a:db:35:3d:77:8e:81:a9:b9:b2:42:a7:f2:b2:fc:e7:
02:e1:ec:b2:ef:79:52:21:8a:98:36:c6:4f:e4:72:55:1a:a7:
8d:f2:58:31:75:95:84:7e:61:ee:88:13:7a:97:07:4f:48:7e:
96:3b:87:af:0c:27:c7:18:14:37:90:5c:ef:85:fe:fd:b1:ec:
34:b8:a6:ce:aa:bb:fb:c6:e9:d0:d8:55:3c:33:b7:20:e3:2b:
2d:75:e3:4d:94:9b:59:1b:bf:c4:86:45:a1:54:ca:02:89:cd:
1b:d4:cc:6f:a2:b7:4a:15:16:b4:31:25:83:00:02:54:79:2f:
20:cc:20:74:7f:8d:f6:c3:77:0f:df:fa:94:65:fb:f0:96:ef:
84:55:32:4f:e1:3f:04:e6:93:39:09:24:cb:dd:1e:63:63:77:
25:b9:5f:59:9c:35:f6:8a:31:2e:d7:e4:0d:7a:7f:dc:d6:a3:
76:ec:51:63:2b:1c:3c:54:e5:65:50:20:a0:f9:cd:62:5e:8d:
0b:6d:c5:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:38 2023 by rpki-client on console-fra.rpki-client.org