Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/BFpqG9lmPfVefbffKMr1zv1CznA.roa
File: BFpqG9lmPfVefbffKMr1zv1CznA.roa (raw, json)
Hash identifier: HaYQsbzGVL9GhhhyOh4Ga/tTniF04Hjjeg6+nxBRz8c=
Subject key identifier: 04:5A:6A:1B:D9:66:3D:F5:5E:7D:B7:DF:28:CA:F5:CE:FD:42:CE:70
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0183E711E069109BF7CD83AF003777343EC0
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/BFpqG9lmPfVefbffKMr1zv1CznA.roa
Signing time: Mon 17 Oct 2022 17:50:51 +0000
ROA not before: Mon 17 Oct 2022 17:50:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197890
IP address blocks: 91.186.196.0/22 maxlen: 24
83.147.240.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e7:11:e0:69:10:9b:f7:cd:83:af:00:37:77:34:3e:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Oct 17 17:50:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=045a6a1bd9663df55e7db7df28caf5cefd42ce70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:02:37:e4:4e:41:81:9c:42:be:d2:e1:e2:fe:
29:8e:ab:c4:d8:7d:c9:7c:b7:5e:3c:f0:5a:d9:c2:
2a:e2:69:a1:46:1e:02:5a:ed:77:d1:ba:ff:5e:ea:
8c:61:c4:59:77:32:69:f0:90:68:c7:07:56:c1:f9:
d7:42:ed:5a:8a:d8:d9:09:33:1d:23:d2:8c:ad:73:
67:e1:53:6a:6f:e5:28:f5:bc:f9:f5:72:11:69:7c:
d8:a5:c8:69:e0:7b:b0:56:10:1a:44:7f:d6:47:d2:
f5:c3:eb:a0:80:0c:d6:c1:79:c3:63:22:4f:a4:76:
34:26:26:b0:2f:01:32:c1:99:30:5d:7d:bb:7a:f3:
0f:fa:fc:5f:c6:21:1d:8f:76:b0:14:4a:5f:df:7c:
81:c9:94:07:b6:41:e0:36:5f:cc:8a:d0:15:2d:8a:
55:f1:3b:e4:12:ad:ef:1c:ae:5e:c7:66:e2:5e:41:
29:53:d5:e4:a9:f8:be:c5:37:22:33:b2:57:21:1a:
48:2e:6b:3f:b3:3f:0b:be:54:91:af:d3:cc:5e:38:
1a:84:73:06:3f:2d:9f:3e:e4:84:5a:ce:77:dc:4e:
00:3d:0c:0a:93:0c:e6:fb:b6:83:5c:bb:6d:c6:5e:
03:3a:bb:ce:00:fd:ad:ea:de:45:5b:93:13:3b:7a:
80:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:5A:6A:1B:D9:66:3D:F5:5E:7D:B7:DF:28:CA:F5:CE:FD:42:CE:70
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/BFpqG9lmPfVefbffKMr1zv1CznA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.240.0/22
91.186.196.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:22:9d:cc:1e:90:58:39:e7:10:59:3b:83:41:22:5b:5f:e6:
a8:ce:03:0e:39:e7:86:09:c5:06:3b:c1:86:b3:6e:d3:28:30:
2f:b8:8b:de:0d:c6:31:5f:5e:d2:1e:17:4d:6c:20:2e:e4:d4:
2b:d4:76:70:2d:2f:dc:9c:c5:6e:85:81:07:72:ea:2d:b3:1e:
1c:29:4f:8f:a4:34:40:b2:72:26:8c:92:7b:7e:e8:b9:6f:08:
10:13:5a:68:fe:85:1b:34:72:0e:65:1f:0f:8c:7a:68:d4:88:
53:1b:3b:5e:49:0f:fd:72:5e:64:18:5c:c5:33:46:90:71:96:
40:31:b4:34:cb:af:a5:f7:df:60:e9:d7:eb:32:6c:42:9b:67:
12:32:e5:42:a1:32:0c:c6:40:59:e2:2a:b6:4b:8f:ba:6d:5c:
6f:3e:14:eb:92:fb:a6:de:c6:cd:ec:5d:b0:32:dc:c0:07:fd:
aa:71:b2:fc:b8:ee:9d:9c:b0:f1:0b:13:c0:74:a6:ce:0b:b1:
09:22:3b:f0:01:37:bc:4e:2d:7e:c9:5d:ad:1c:98:90:1c:1d:
08:52:a3:cd:fb:66:3c:ea:d1:f7:13:e6:ad:c2:39:73:fb:48:
a6:1c:87:fe:0b:c6:d9:d4:48:4c:71:6f:04:4c:82:f0:7e:18:
90:84:54:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org