Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/BVgLr1dfCyPfp2Aa2II8JxS5Pfk.roa
File: BVgLr1dfCyPfp2Aa2II8JxS5Pfk.roa (raw, json)
Hash identifier: I0Zg56rkH1SjNrt++x+CE8ziVKNKZI/IPd13bj7Eako=
Subject key identifier: 05:58:0B:AF:57:5F:0B:23:DF:A7:60:1A:D8:82:3C:27:14:B9:3D:F9
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018412F5DB1FBF1FA8BAB111A68312D5A7F7
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/BVgLr1dfCyPfp2Aa2II8JxS5Pfk.roa
Signing time: Wed 26 Oct 2022 06:23:33 +0000
ROA not before: Wed 26 Oct 2022 06:23:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198833
IP address blocks: 5.8.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:12:f5:db:1f:bf:1f:a8:ba:b1:11:a6:83:12:d5:a7:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 26 06:23:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05580baf575f0b23dfa7601ad8823c2714b93df9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:32:1c:81:b2:98:a2:4b:b8:3d:f0:9c:86:ff:
a0:6c:c4:98:0b:e9:8a:3f:e3:64:30:89:3a:34:41:
fc:b1:c8:47:8c:ab:f1:4e:e7:8b:7b:0a:3d:a9:b1:
1d:df:2f:57:61:8c:de:37:30:20:15:02:42:13:a0:
66:d0:3e:ad:80:24:75:39:4b:a9:87:c2:d5:3d:8b:
3e:ac:ff:f7:2f:43:ec:30:78:66:36:0d:33:25:ff:
3c:e1:25:2c:00:bc:a2:0f:be:ad:74:f3:2f:98:ca:
79:d6:01:37:db:78:c3:ec:bc:66:96:4a:41:60:64:
e5:1f:4c:b0:d8:3c:ed:04:77:b2:19:bf:fa:b6:71:
50:55:66:20:72:69:04:1a:2f:6d:8b:3f:60:fa:34:
fb:2c:a9:eb:26:ba:8d:0e:81:4f:8d:31:16:67:86:
53:cb:7c:fc:57:61:20:65:e8:ad:f8:dc:79:58:14:
2e:41:9b:9d:be:c6:a6:e0:82:81:5f:6c:ee:fd:5d:
3f:b3:fd:fb:e7:93:31:76:34:34:7d:5a:e2:e5:24:
57:86:6c:ca:bb:11:86:99:03:16:1d:d8:3a:bc:0c:
20:42:87:c3:cd:c5:0f:94:8c:43:99:da:d3:05:ed:
81:82:e3:47:10:07:4c:4b:9a:42:d0:e4:e1:d5:3f:
9b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:58:0B:AF:57:5F:0B:23:DF:A7:60:1A:D8:82:3C:27:14:B9:3D:F9
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/BVgLr1dfCyPfp2Aa2II8JxS5Pfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.178.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:fe:33:dd:8f:7c:82:b2:73:d8:c3:b3:e2:53:29:c9:8c:ac:
b3:f9:49:bc:55:5d:83:83:0d:0d:85:73:1c:6f:77:f4:9a:78:
4f:ca:48:90:b6:2f:e4:ab:61:f1:06:19:9b:c0:60:af:ea:ba:
6e:d1:96:26:ca:c3:79:5f:c1:12:41:a4:93:26:98:44:47:95:
0c:37:5e:ae:d2:65:58:93:06:ef:67:fb:8f:2d:e3:18:e3:44:
7a:b9:6a:f5:36:16:6e:2b:47:70:47:61:e4:c6:ee:ad:28:64:
d6:b0:08:f4:fc:06:83:bb:f1:5c:a1:10:6f:9b:d3:2d:e0:78:
66:e9:8e:34:ba:3e:7b:7c:86:be:26:94:8a:e4:8d:fa:67:91:
01:c5:19:ff:f2:54:01:e8:1d:90:65:23:92:08:47:f6:bf:61:
9d:b2:5a:44:7a:b5:06:ea:e2:dd:0a:7a:1e:22:6e:e1:4c:ab:
7a:08:35:ee:74:5e:98:0a:df:d4:4a:36:b4:87:1b:09:87:2b:
aa:a1:ce:32:b2:a6:6c:f5:a0:01:99:9a:b6:47:fe:a2:a6:bc:
bd:b8:78:43:72:ae:30:22:f5:49:91:b5:6d:fe:21:d9:06:74:
48:8d:ec:59:54:f7:93:a7:86:d7:d2:7a:db:1a:fe:a5:6a:29:
4d:19:fc:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:17 2025 by rpki-client