Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/3bq-BGJ1DmnWHDZqJG6n6_lPkV8.roa
File: 3bq-BGJ1DmnWHDZqJG6n6_lPkV8.roa (raw, json)
Hash identifier: NyXXMPQOAVEHS+bHWd9rl7Jw86SVoGNwwAE9sXsgOHY=
Subject key identifier: DD:BA:BE:04:62:75:0E:69:D6:1C:36:6A:24:6E:A7:EB:F9:4F:91:5F
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018412F5D969835795D54DB3FD2AD9F21F59
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/3bq-BGJ1DmnWHDZqJG6n6_lPkV8.roa
Signing time: Wed 26 Oct 2022 06:23:32 +0000
ROA not before: Wed 26 Oct 2022 06:23:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59530
IP address blocks: 5.8.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:12:f5:d9:69:83:57:95:d5:4d:b3:fd:2a:d9:f2:1f:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 26 06:23:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddbabe0462750e69d61c366a246ea7ebf94f915f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:4a:24:fe:e1:4d:1f:c5:4e:6f:27:46:63:3a:
86:0e:90:e1:35:fc:26:56:fa:d3:9d:16:23:e0:e8:
f2:f5:aa:e9:56:81:7f:73:c2:80:38:d7:5b:87:1e:
07:c9:55:d1:1d:79:63:b3:76:89:c4:97:7a:7e:ff:
60:0f:e8:53:cc:54:ac:b3:21:6f:f8:1c:09:e7:ea:
84:ed:56:a0:94:a5:b3:48:17:eb:87:3f:f8:cc:e6:
a8:47:61:46:11:b5:72:aa:4c:55:18:0f:b7:e5:01:
ca:16:9f:b1:c2:74:a0:10:db:09:52:34:5a:8f:ec:
2b:e5:82:ae:6f:9b:9e:d8:e5:e1:ad:da:ab:3e:48:
37:a3:0b:01:fa:6e:ef:71:2b:bf:d0:2a:14:14:dd:
f1:e9:7c:90:fc:b5:72:c2:a6:72:85:a7:50:d9:4b:
a0:c4:97:9f:6a:67:df:ab:26:c3:41:90:97:aa:bb:
be:d6:84:70:30:d6:bf:58:7e:3d:66:21:e9:2e:b3:
fe:49:a8:1a:5a:e7:bb:15:6b:98:15:37:f7:22:0c:
33:bd:22:f2:40:ee:f5:6f:7d:3c:d7:0c:49:00:c1:
d1:b2:0d:f0:9f:87:58:42:fe:d4:6b:ce:2d:03:0c:
49:87:c8:1b:86:51:54:bb:ed:b9:67:f7:19:46:d7:
83:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:BA:BE:04:62:75:0E:69:D6:1C:36:6A:24:6E:A7:EB:F9:4F:91:5F
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/3bq-BGJ1DmnWHDZqJG6n6_lPkV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.182.0/24
Signature Algorithm: sha256WithRSAEncryption
01:a2:f5:2b:a0:10:6c:61:90:19:51:2d:f6:e2:c2:60:b7:59:
e7:64:12:ff:4b:9c:db:e6:ce:be:fd:49:43:6a:d4:1b:70:58:
7f:5f:9a:a7:f9:58:a6:5f:9b:06:a1:44:b8:e0:f4:05:39:ab:
21:d6:e3:71:fa:1d:99:33:31:b6:a5:33:43:75:47:4f:58:20:
ad:d6:d2:7c:1e:8a:46:19:4b:3d:2c:ac:29:ba:f4:cb:c4:c7:
d6:6b:81:bc:27:f8:89:e1:fc:33:eb:23:22:a3:42:d7:c9:13:
79:29:e9:09:82:6b:5d:0b:ae:19:a6:af:11:42:bc:59:af:8a:
8e:5c:f9:86:5a:46:5d:54:75:7d:1c:a6:4b:33:7a:aa:4f:b6:
52:44:f7:02:af:51:78:2b:2f:db:f4:9e:78:dc:b1:5b:a4:b8:
ed:e9:9c:50:0f:cb:c2:c1:62:93:ca:55:f9:3c:2a:70:39:55:
0a:ff:82:37:47:c1:96:cd:b3:3d:72:2c:38:ae:20:b2:c3:fe:
88:3a:f1:75:ed:11:61:12:98:77:d9:51:e1:4c:de:73:36:4c:
f0:82:f7:40:c6:54:36:11:c1:b2:45:0a:ef:83:6c:47:d3:ac:
e0:12:75:11:77:f0:4e:06:42:91:51:df:49:53:1e:47:37:c0:
d8:f5:14:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:33 2024 by rpki-client on console-ams.rpki-client.org