Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/BV5dCmL7JuKz2RhysjHYhDyTfuM.roa
File: BV5dCmL7JuKz2RhysjHYhDyTfuM.roa (raw, json)
Hash identifier: wzRloz3TGWccWlV4L5tIwiVTYDuSQF1OaNh8ALdxLZU=
Subject key identifier: 05:5E:5D:0A:62:FB:26:E2:B3:D9:18:72:B2:31:D8:84:3C:93:7E:E3
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 08A863A7
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/BV5dCmL7JuKz2RhysjHYhDyTfuM.roa
Signing time: Sat 01 Jan 2022 11:04:13 +0000
ROA not before: Sat 01 Jan 2022 11:04:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 212.60.16.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145253287 (0x8a863a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Jan 1 11:04:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=055e5d0a62fb26e2b3d91872b231d8843c937ee3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:74:45:38:9b:62:7e:23:c2:2d:7c:07:82:ea:
2f:e6:53:e0:82:d7:88:81:72:2f:66:87:65:51:f1:
66:d9:07:cd:bb:ef:28:06:e5:40:05:ee:43:88:c6:
69:d1:23:cb:12:22:45:36:e4:68:ea:d3:19:4d:c9:
69:dd:02:16:ba:c6:36:84:31:30:c4:57:01:12:52:
40:fb:4c:4a:14:1d:a8:a9:b7:e5:8c:d1:17:95:47:
68:9c:d7:3b:e0:b4:bb:2f:17:be:a4:4d:af:f4:9e:
b6:77:7c:fc:79:f8:81:7e:59:46:d3:2e:96:b9:a9:
97:98:8a:b7:36:65:dd:6e:41:1a:fd:80:c7:06:99:
3d:74:61:d9:de:db:fd:24:23:c0:25:fe:8e:50:16:
71:6e:6f:83:c2:91:f5:15:ea:90:2a:41:74:c2:12:
aa:0e:3f:f3:0e:e5:6f:e9:fd:1a:33:2c:29:c9:02:
e3:fa:ab:e0:63:57:97:4b:a8:6f:55:6e:8c:d4:01:
53:32:d0:d6:7a:04:76:eb:73:79:af:1b:50:25:51:
0d:50:37:73:99:c4:7f:d2:a9:0a:d4:68:3f:c1:3a:
5b:e7:a7:d7:39:9b:0e:72:20:1e:75:29:16:36:6a:
9f:ec:bf:6e:ca:4c:75:45:f9:b5:e6:34:94:39:d9:
2e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:5E:5D:0A:62:FB:26:E2:B3:D9:18:72:B2:31:D8:84:3C:93:7E:E3
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/BV5dCmL7JuKz2RhysjHYhDyTfuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.60.16.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:ab:12:f9:03:79:4d:47:d3:01:90:23:38:a7:13:79:5c:a4:
b5:00:89:18:6d:df:7c:10:ce:65:10:90:12:4d:55:b5:4d:0a:
65:8e:5a:46:f5:3d:fa:1a:1c:24:e8:6a:b3:c0:b0:93:d7:1d:
58:8d:0f:8a:3c:5d:64:75:ac:f8:79:3a:73:cf:9e:14:8f:b0:
a7:81:ea:90:e4:6b:54:e0:ee:22:92:5a:05:fa:0c:1e:7a:36:
bd:4c:91:10:1f:05:cb:7e:01:36:37:2a:96:76:0e:1f:a2:bd:
61:bc:2b:6f:c9:cf:06:a0:b3:14:07:56:bf:37:e8:67:ff:13:
52:c2:ed:c3:f3:64:6f:e3:d8:0d:3f:11:2c:21:20:90:33:bb:
f9:dc:63:60:30:5b:22:7a:ce:58:b9:56:e4:63:7e:22:f9:60:
68:a5:21:02:e2:51:45:ca:f9:95:fb:7c:e6:9e:9a:44:0f:ae:
de:9b:19:72:c4:b0:b7:fc:5c:5a:68:4a:cd:8f:f3:94:a4:05:
55:9b:06:40:b5:b8:38:03:a3:37:31:9a:06:b8:9a:b9:9e:7c:
92:82:40:27:c7:68:42:fc:94:41:7e:d9:f6:81:b4:04:94:76:
18:f1:97:76:e2:1b:ae:cd:84:3b:4b:d2:30:e0:53:fc:c5:b4:
f1:a9:fb:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:49 2023 by rpki-client on console-ams.rpki-client.org