Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/bjH0PF5u5J-u88gB4Co57Rq1tTI.roa
File: bjH0PF5u5J-u88gB4Co57Rq1tTI.roa (raw, json)
Hash identifier: G5XbgRQo2LquZdvmi9JzsN7IZ2P3ykrXkzvUN5B/h8M=
Subject key identifier: 6E:31:F4:3C:5E:6E:E4:9F:AE:F3:C8:01:E0:2A:39:ED:1A:B5:B5:32
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 3A02FD50
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/bjH0PF5u5J-u88gB4Co57Rq1tTI.roa
Signing time: Sat 01 Jan 2022 14:00:38 +0000
ROA not before: Sat 01 Jan 2022 14:00:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198591
IP address blocks: 78.133.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 973274448 (0x3a02fd50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 1 14:00:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e31f43c5e6ee49faef3c801e02a39ed1ab5b532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c5:c9:bc:0d:d2:86:f0:1f:71:0a:48:e7:98:
17:f7:f2:72:1e:e1:7d:02:43:26:94:fd:e6:cb:b9:
48:98:89:83:01:81:0c:1a:4e:1f:a4:13:ef:7f:5e:
56:49:c9:eb:4a:95:bb:05:9b:15:bc:eb:01:eb:29:
71:cc:ce:ce:78:c6:2f:a8:88:33:7e:ca:1f:de:bc:
01:f9:85:ab:5a:88:de:4f:56:fe:fc:e9:ea:b1:45:
ef:3e:57:16:b0:a9:33:13:35:da:86:28:dc:d7:8d:
1b:ae:e5:17:fc:d0:43:be:94:a1:e5:29:99:d8:98:
05:84:cd:c1:df:5e:e3:c9:0e:8f:c1:9e:dc:bc:15:
80:05:f9:bb:9b:4d:a1:c3:fd:67:c1:b2:1a:1d:ec:
c1:aa:02:4b:2a:89:8b:3f:9f:16:0d:95:a5:b4:c3:
26:16:1e:a9:b9:c6:63:4f:d0:60:d9:c7:81:3f:b4:
e2:16:e4:07:98:cc:7c:37:46:ae:32:71:fa:d7:2e:
b6:0b:f7:d5:72:58:ae:c6:fb:94:62:56:15:e7:ef:
ff:93:7a:a6:cd:bf:81:3d:aa:d9:2d:58:4e:7f:29:
6b:92:11:84:fc:f7:51:0e:5c:b1:78:9b:a2:3a:bb:
34:8c:55:93:db:6d:0a:29:dd:d3:14:cf:a9:09:15:
f8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:31:F4:3C:5E:6E:E4:9F:AE:F3:C8:01:E0:2A:39:ED:1A:B5:B5:32
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/bjH0PF5u5J-u88gB4Co57Rq1tTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.133.246.0/24
Signature Algorithm: sha256WithRSAEncryption
66:82:cc:7d:68:a4:ca:23:64:45:56:d4:c2:35:f2:bd:fc:52:
2f:b3:eb:cd:94:47:7b:92:72:90:33:0a:be:e6:cf:6b:37:58:
05:1c:b2:f2:a2:ea:34:c5:fc:e0:3c:36:ea:0a:4b:47:03:29:
7e:bc:ea:9e:f3:0f:99:82:e9:bb:a3:59:59:5a:5e:53:6a:dd:
70:50:d6:56:28:f0:b7:72:2d:e8:ef:ab:8c:a6:2c:cc:bb:57:
3e:63:80:cc:30:a9:7e:53:d2:bc:e1:46:18:26:53:68:57:96:
47:18:9c:a4:37:1b:26:8d:77:6a:8f:f9:9f:b2:9e:4e:94:b9:
90:41:96:f1:aa:94:62:aa:a4:6f:69:20:51:9c:3a:91:e8:ed:
ad:56:25:8f:8d:69:11:59:59:98:a3:0b:cf:95:6e:54:af:3c:
4a:39:11:0b:28:ee:8f:b9:49:fc:05:48:13:49:ac:5b:19:34:
6e:b0:c7:aa:e7:f6:0e:8d:dd:ae:a0:b5:d3:0c:cb:6d:1f:c6:
67:94:cd:89:2a:3e:eb:54:c7:d3:ce:85:0d:60:4c:7e:db:9e:
27:70:dc:0f:ac:98:76:f7:8f:51:bf:fe:4d:28:93:94:24:c7:
16:c6:b0:7c:98:43:23:4e:74:17:54:43:94:9f:66:2f:b1:d2:
4c:49:71:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:02 2023 by rpki-client on console-ams.rpki-client.org