Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/BGkQ7UkRPrjrMIV3BVJUN_zVgXs.roa
File: BGkQ7UkRPrjrMIV3BVJUN_zVgXs.roa (raw, json)
Hash identifier: zYGONGrdLMsURnnMBVdJGF5dS744H/vA8EClrCdsoY4=
Subject key identifier: 04:69:10:ED:49:11:3E:B8:EB:30:85:77:05:52:54:37:FC:D5:81:7B
Certificate issuer: /CN=b2df00f38cced92197993076cb3685bf32bc5e69
Certificate serial: 029AF3B9
Authority key identifier: B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/BGkQ7UkRPrjrMIV3BVJUN_zVgXs.roa
Signing time: Fri 28 Jan 2022 08:43:56 +0000
ROA not before: Fri 28 Jan 2022 08:43:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57111
IP address blocks: 185.103.112.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43709369 (0x29af3b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2df00f38cced92197993076cb3685bf32bc5e69
Validity
Not Before: Jan 28 08:43:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=046910ed49113eb8eb30857705525437fcd5817b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6b:c2:d8:e5:0a:ab:a8:79:cf:84:78:4e:11:
81:f4:00:f8:00:90:4f:ce:ed:8c:b4:86:c1:8b:74:
0d:6a:1e:ba:b4:91:3b:88:78:cd:58:03:a4:1c:f0:
50:c3:d8:78:f0:b5:17:03:1c:cd:b0:8e:22:4e:4f:
cb:80:52:24:9a:43:a9:aa:b4:92:8d:86:4b:0d:77:
d2:dd:1f:b0:cf:af:be:98:b7:57:77:63:24:4d:05:
64:af:bd:2e:50:27:11:ea:05:d0:02:0d:46:fb:76:
59:d4:21:d6:b9:a4:87:75:10:d1:b9:e6:09:26:43:
11:1f:b6:28:0a:7f:a5:8a:d6:98:b6:5b:e7:c0:ce:
0b:51:c9:78:b6:5f:96:4d:e2:2f:f3:c7:02:f9:7f:
9f:d8:d0:ad:d2:35:ad:be:2d:d4:4c:72:6b:2b:43:
10:dd:9e:f4:db:3f:0a:82:3b:a3:e3:07:73:a3:15:
1b:ed:1c:1f:f2:ee:94:73:46:87:4a:8e:51:7f:6e:
7d:de:1c:aa:d1:d9:4e:df:6f:d3:62:23:b0:ae:54:
67:9f:45:fc:44:64:f2:28:08:6e:28:99:6c:b7:e5:
54:4b:12:05:78:04:42:d8:92:a0:b6:45:f5:89:83:
9e:80:04:f5:0a:c9:42:54:06:b6:f1:04:46:99:ff:
95:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:69:10:ED:49:11:3E:B8:EB:30:85:77:05:52:54:37:FC:D5:81:7B
X509v3 Authority Key Identifier:
keyid:B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/BGkQ7UkRPrjrMIV3BVJUN_zVgXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.112.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:27:30:b3:f1:e8:89:5c:6f:7b:65:7a:17:bb:80:1a:78:44:
a9:76:c2:44:a8:54:b0:37:b1:8b:a7:cf:70:a0:fc:af:2d:3c:
f7:ee:81:08:ba:0d:75:d4:2c:36:61:bf:69:c6:55:85:cd:cf:
e0:ee:43:a9:fd:33:a6:de:f4:87:f1:ef:68:ff:b6:79:7e:b5:
43:65:31:63:40:99:d6:9c:e3:33:ad:b5:a5:1a:0e:08:de:2b:
60:53:b8:52:49:ca:70:4d:ac:a8:64:00:fd:72:9b:30:31:82:
64:c2:3b:18:f2:d3:ae:f8:b5:a1:0a:83:ff:10:80:ab:f9:dc:
e3:44:ec:b5:1c:b6:70:f1:58:e6:ff:31:bc:be:e5:b0:1a:c0:
9b:af:24:0f:e3:fe:d1:df:20:61:f9:e4:e6:0a:2a:d1:c3:eb:
41:4f:20:44:e9:72:2d:f6:b1:53:3a:46:36:b1:55:d5:85:d9:
3a:8b:de:37:47:35:71:d6:60:40:22:d2:1b:bc:d6:e4:96:23:
da:b0:33:5f:c9:92:39:20:9c:72:58:ac:e2:05:fa:01:40:e9:
3e:33:ef:ae:f9:79:da:56:95:ea:8a:d5:f1:8f:e7:6b:0c:ef:
76:32:77:cd:d7:2b:7f:33:90:63:26:c6:9b:93:3c:a1:55:68:
49:61:c4:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:11 2024 by rpki-client on console-fra.rpki-client.org