Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/bTr_le_aH5XcLv2s5A6-31bVZGw.roa
File: bTr_le_aH5XcLv2s5A6-31bVZGw.roa (raw, json)
Hash identifier: BSHW2ZF2P56z6q5Gn9YDvV4GFmpu8LcHIISrLD38F44=
Subject key identifier: 6D:3A:FF:95:EF:DA:1F:95:DC:2E:FD:AC:E4:0E:BE:DF:56:D5:64:6C
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01826DFFBE113B3205280121DAEA89D2280F
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/bTr_le_aH5XcLv2s5A6-31bVZGw.roa
Signing time: Fri 05 Aug 2022 12:34:12 +0000
ROA not before: Fri 05 Aug 2022 12:34:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 94.241.160.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6d:ff:be:11:3b:32:05:28:01:21:da:ea:89:d2:28:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Aug 5 12:34:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d3aff95efda1f95dc2efdace40ebedf56d5646c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:88:e9:5c:d6:06:6a:ad:81:c9:f7:c4:ac:5d:
c1:1f:5f:6e:c7:c2:86:64:9b:51:6f:37:69:36:92:
85:84:03:49:87:37:c3:77:27:a9:23:97:27:58:fb:
03:b1:da:f1:96:b5:aa:d3:f0:89:c4:4e:44:c1:ec:
32:ec:f7:20:8a:83:5a:61:0c:ef:62:c5:6b:c8:92:
1f:0a:ac:2f:5d:00:d2:69:f7:69:21:ae:90:ca:93:
d2:ca:0c:6b:0b:05:88:87:91:d9:f5:7e:af:3e:73:
b6:fd:c9:7d:dd:04:dd:69:12:85:53:b9:c5:a3:ee:
b4:eb:50:3d:e6:77:bb:8d:64:4a:05:50:d7:22:35:
3b:41:60:ed:f6:55:56:45:2f:00:50:e1:7c:62:e6:
a2:a9:e2:b3:fa:b5:64:7e:eb:8e:05:2d:dc:5b:fb:
05:f4:59:fe:7e:9e:a2:75:4b:11:39:6f:e2:27:7f:
18:f0:a7:39:8d:51:57:05:6d:54:98:5d:ad:a5:e3:
ca:a1:ec:ef:d4:a4:2d:c6:5b:16:3c:34:14:33:b2:
47:a9:95:04:e3:29:c7:45:f2:c5:e9:9a:59:01:91:
9a:ca:dc:82:8c:f6:89:03:5e:a0:61:7b:b3:ba:63:
90:52:12:96:e6:b1:89:6b:10:05:46:14:55:44:20:
f2:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:3A:FF:95:EF:DA:1F:95:DC:2E:FD:AC:E4:0E:BE:DF:56:D5:64:6C
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/bTr_le_aH5XcLv2s5A6-31bVZGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.241.160.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:a9:e8:43:f1:c2:65:9f:b8:b8:74:df:61:06:87:39:16:e8:
8b:cd:5f:b3:63:8c:cc:1d:b8:43:58:ac:6a:aa:d1:63:05:e4:
30:83:0b:45:aa:b3:e2:7f:64:57:0e:53:51:23:27:de:6a:e0:
40:65:35:f3:2a:26:37:80:6d:87:3a:29:d7:77:ae:76:6e:93:
b8:6d:f0:40:e8:5e:ee:df:a1:c2:51:1d:fd:a8:e3:77:49:07:
17:0a:ba:70:e1:7d:e5:a1:6a:f1:ba:dd:be:c2:da:d3:e7:8f:
79:42:f6:41:06:ea:c1:03:b7:69:3f:36:8f:ea:0a:ed:06:6c:
77:46:bf:7f:e2:ef:89:dc:e6:3f:20:76:04:99:dc:83:43:23:
a8:cf:ff:c4:75:f9:77:35:a1:8e:94:91:c5:f1:e0:41:52:72:
fc:3d:b9:b7:5d:f8:30:9f:02:06:6c:c1:f7:41:8f:78:b8:1a:
d7:ba:4a:67:8c:b7:6a:8d:d6:af:eb:90:14:0b:91:74:96:39:
f4:8e:5d:29:5a:a3:a7:82:d3:e0:21:ba:cb:a1:2c:be:b3:68:
d6:fa:1a:b5:8a:06:71:c1:a3:56:d3:66:ba:75:6f:49:ad:4f:
8e:af:a3:f2:d8:13:da:5b:5a:0a:0a:0a:ff:e5:a8:6b:15:58:
f6:74:8d:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:19 2024 by rpki-client on console-ams.rpki-client.org