Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/BswyCm3SUfZvFJ901w6jMbEgDaU.roa
File: BswyCm3SUfZvFJ901w6jMbEgDaU.roa (raw, json)
Hash identifier: lo5YeoK8BPcxcx/pImwPfZI+6p4EeGrtXU2AbpnYb/s=
Subject key identifier: 06:CC:32:0A:6D:D2:51:F6:6F:14:9F:74:D7:0E:A3:31:B1:20:0D:A5
Certificate issuer: /CN=aea84d7e64ba3e85b57036c7318f93cc3d94d187
Certificate serial: 0166359A
Authority key identifier: AE:A8:4D:7E:64:BA:3E:85:B5:70:36:C7:31:8F:93:CC:3D:94:D1:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/BswyCm3SUfZvFJ901w6jMbEgDaU.roa
Signing time: Sat 01 Jan 2022 07:52:35 +0000
ROA not before: Sat 01 Jan 2022 07:52:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16184
IP address blocks: 193.109.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23475610 (0x166359a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aea84d7e64ba3e85b57036c7318f93cc3d94d187
Validity
Not Before: Jan 1 07:52:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06cc320a6dd251f66f149f74d70ea331b1200da5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3f:bb:59:9b:15:da:b9:ef:ae:d3:41:23:a0:
09:2f:9c:c1:67:72:25:9a:d1:cd:f8:f2:c7:e2:82:
6a:5d:97:6b:bc:9d:0f:30:11:99:54:8d:45:1a:db:
e9:76:ef:88:7b:de:a0:67:26:f8:4e:fb:7a:46:ec:
00:b7:8c:30:a7:50:3a:42:62:14:92:c8:57:b4:13:
4d:83:35:1c:ee:19:21:1b:bc:bb:f5:8a:10:31:ce:
ab:c1:02:5a:2e:66:1a:bd:40:df:46:97:2c:33:3f:
60:4b:5a:6b:1e:57:a0:81:01:ab:c0:e0:9e:76:3b:
cb:e0:b5:0a:34:5b:47:fe:82:c0:15:9b:b5:9e:9b:
91:16:83:e2:35:13:63:4a:a8:6c:47:76:b6:d3:c3:
a8:17:f6:3d:a2:19:af:70:1f:b0:e1:95:e2:a2:0c:
10:2e:4d:94:d4:16:c1:04:45:59:d9:fb:c5:09:7a:
81:40:8c:76:10:09:dc:6c:af:4f:c4:df:ef:fc:46:
f9:cd:44:ae:df:8d:a9:5b:4c:6e:d3:4d:e8:0e:ad:
c8:89:51:c3:fa:90:4d:45:9c:72:e1:41:60:ea:b3:
d2:2f:5a:62:a3:df:91:9c:0b:4a:70:18:d1:7e:0c:
67:2f:f8:4a:58:f6:e0:1c:57:3f:9b:c3:e3:de:b6:
4d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:CC:32:0A:6D:D2:51:F6:6F:14:9F:74:D7:0E:A3:31:B1:20:0D:A5
X509v3 Authority Key Identifier:
keyid:AE:A8:4D:7E:64:BA:3E:85:B5:70:36:C7:31:8F:93:CC:3D:94:D1:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/BswyCm3SUfZvFJ901w6jMbEgDaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.124.0/24
Signature Algorithm: sha256WithRSAEncryption
d8:1e:29:44:0c:3a:f7:65:2d:bd:05:d0:f4:3b:e3:79:ea:da:
41:78:a1:58:bd:65:eb:1e:ac:51:aa:38:9c:d6:b2:67:50:7c:
8f:8b:e9:3b:a3:06:b5:5b:ca:af:71:e1:f7:85:ee:85:01:9f:
ab:38:77:08:63:fc:b0:20:23:9a:05:65:9e:46:a5:fe:8c:ff:
e6:e6:3c:ae:a7:6f:fc:8d:4f:06:db:14:2d:71:18:c1:ad:26:
ff:3b:c4:4a:4c:61:b6:13:58:32:16:3c:02:6d:d6:53:a8:9c:
6a:77:fe:0c:e9:b9:b4:92:61:77:9a:ca:aa:9b:4d:00:8f:ab:
ae:4f:17:e7:85:3c:ff:d2:56:16:1d:16:43:c1:3f:e7:e8:86:
20:e7:2a:59:aa:17:a7:40:09:66:42:1a:a3:b1:b7:0b:0c:59:
24:3b:9c:c9:47:41:a5:78:0f:21:05:da:96:b5:43:31:90:16:
55:93:63:14:d7:65:70:2a:4b:7d:e2:2b:2b:61:b1:92:dd:7c:
af:57:b3:78:c9:15:97:b4:d7:70:df:a4:2d:20:3c:5e:2f:70:
8c:45:e2:be:2f:cc:3e:e2:a5:ff:45:d2:7e:04:3c:9b:3e:a7:
b6:3a:ef:8d:2e:a6:a8:9a:1a:e7:f0:bb:90:85:2c:44:27:49:
08:88:ed:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:01 2024 by rpki-client on console-fra.rpki-client.org