Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/eada0f-bcbf-4c5e-aaa2-37661770051f/1/BHMk_XZfbEbKEXScP6IaAyQxVGc.roa
File: BHMk_XZfbEbKEXScP6IaAyQxVGc.roa (raw, json)
Hash identifier: xFuJtSKaoAPA0X5TnpglecFJsd0GSViokLBrN9Iv6iI=
Subject key identifier: 04:73:24:FD:76:5F:6C:46:CA:11:74:9C:3F:A2:1A:03:24:31:54:67
Certificate issuer: /CN=51798cc1434bce8478b6ae49aa0bac24c5f117fc
Certificate serial: 96D835
Authority key identifier: 51:79:8C:C1:43:4B:CE:84:78:B6:AE:49:AA:0B:AC:24:C5:F1:17:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UXmMwUNLzoR4tq5JqgusJMXxF_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/eada0f-bcbf-4c5e-aaa2-37661770051f/1/BHMk_XZfbEbKEXScP6IaAyQxVGc.roa
Signing time: Fri 14 Jan 2022 18:05:28 +0000
ROA not before: Fri 14 Jan 2022 18:05:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 212.52.25.0/24 maxlen: 24
2a12:ea00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9885749 (0x96d835)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51798cc1434bce8478b6ae49aa0bac24c5f117fc
Validity
Not Before: Jan 14 18:05:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=047324fd765f6c46ca11749c3fa21a0324315467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:71:e5:bd:9f:54:c6:1e:8a:fc:b4:ea:8d:53:
a5:fd:57:cb:86:87:f7:69:e7:48:5d:9f:a6:8f:18:
6a:69:b8:4d:ea:d8:cd:0e:01:4b:d4:96:06:88:0f:
ab:41:48:a4:1c:8f:dd:73:02:1e:f0:c6:7a:03:b3:
38:37:ba:a6:b4:ba:89:1a:98:50:f8:e8:9d:24:f8:
fa:76:0b:38:b8:e1:28:b7:31:f8:1e:fe:c2:89:76:
df:72:c4:f6:89:2f:31:eb:39:1f:c5:30:23:62:0b:
de:1a:97:09:a5:b5:f7:78:40:2e:e7:2f:14:ac:5c:
a0:36:85:48:37:db:fd:2e:d3:7f:a2:37:9a:5a:f4:
69:86:46:33:38:7f:13:0c:09:0e:9c:5e:50:29:dd:
0a:82:e5:1c:e7:52:f0:25:49:c4:38:29:81:90:e8:
ee:af:2b:56:2a:9f:cb:9f:60:1e:69:0a:fb:7f:5c:
a6:1c:c2:c0:26:36:fc:49:a2:17:5c:93:63:80:bc:
a0:b1:98:cb:54:c6:e7:6f:f9:76:ba:94:fc:c7:37:
f7:1a:5d:e2:26:f1:d0:a6:c5:74:12:25:67:aa:1a:
3b:d9:f8:75:5c:2f:e9:26:bf:40:ca:5a:67:1e:b4:
5a:d7:2e:b4:52:86:bb:91:14:82:8b:bb:bc:b2:58:
b5:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:73:24:FD:76:5F:6C:46:CA:11:74:9C:3F:A2:1A:03:24:31:54:67
X509v3 Authority Key Identifier:
keyid:51:79:8C:C1:43:4B:CE:84:78:B6:AE:49:AA:0B:AC:24:C5:F1:17:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UXmMwUNLzoR4tq5JqgusJMXxF_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/eada0f-bcbf-4c5e-aaa2-37661770051f/1/BHMk_XZfbEbKEXScP6IaAyQxVGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/eada0f-bcbf-4c5e-aaa2-37661770051f/1/UXmMwUNLzoR4tq5JqgusJMXxF_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.25.0/24
IPv6:
2a12:ea00::/29
Signature Algorithm: sha256WithRSAEncryption
31:f4:3d:c2:fe:80:b5:f5:d2:4f:d3:8c:24:8b:45:8b:b7:f5:
7e:05:23:2b:ec:26:ef:18:0a:a0:30:c5:8f:70:51:69:cd:fc:
3e:bd:c7:6b:36:62:d4:45:d2:ce:cf:23:d5:32:f8:7b:03:86:
1a:9d:e5:4b:83:f0:b3:ef:63:a5:8d:bc:b8:ca:99:18:72:1f:
dc:1a:e9:bc:98:21:bb:b1:34:01:07:37:c9:1a:cb:03:c5:ae:
f7:4f:82:10:22:f3:39:d0:6d:bd:ad:b6:28:9f:7a:d9:35:6b:
2e:8d:12:e6:be:3f:f5:ff:2f:ed:63:ac:f8:2a:d5:c2:0f:89:
68:2c:59:49:23:2b:fc:f7:5e:c3:81:23:b0:40:20:dd:81:61:
fa:2e:a0:41:1a:07:e6:2a:bc:c3:18:82:2e:94:3b:db:07:c1:
a6:4b:25:2a:e2:2a:e1:ae:ab:ae:6e:42:53:cc:a6:4c:99:17:
41:5f:57:8b:db:60:dd:9c:b6:34:1a:31:4f:0b:c4:2a:12:1c:
1e:b7:3f:b6:3e:d1:9f:d3:72:80:45:4e:da:cf:ee:f4:ed:ac:
e1:bd:47:8a:f3:a6:d8:42:24:3e:5f:e7:2a:31:09:b9:3d:95:
f8:13:98:d2:a8:5f:e2:2b:cd:6b:4b:5c:c2:29:62:32:e9:07:
70:4f:b6:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:52 2023 by rpki-client on console-fra.rpki-client.org