Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/bXQzhwpAo24amfb5UBFrrByRHtM.roa
File: bXQzhwpAo24amfb5UBFrrByRHtM.roa (raw, json)
Hash identifier: +7e6lv/m+VWnaolXaT2R+fCOUoLdBVl42ep1PzPXA88=
Subject key identifier: 6D:74:33:87:0A:40:A3:6E:1A:99:F6:F9:50:11:6B:AC:1C:91:1E:D3
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 0A202871
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/bXQzhwpAo24amfb5UBFrrByRHtM.roa
Signing time: Thu 28 Apr 2022 07:53:06 +0000
ROA not before: Thu 28 Apr 2022 07:53:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61082
IP address blocks: 82.119.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169879665 (0xa202871)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Apr 28 07:53:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d7433870a40a36e1a99f6f950116bac1c911ed3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:26:84:6a:14:c9:1b:d4:2f:30:2a:98:64:4a:
0f:c8:c3:ce:ad:b8:eb:ce:b4:3e:2c:5b:13:31:36:
e8:75:b4:da:6e:7e:e8:3e:7e:d2:2c:29:12:f6:62:
04:21:04:b1:a7:d6:8c:5c:2b:25:8a:f9:dc:00:27:
52:f5:66:76:45:cd:8d:69:4b:06:2f:60:cf:ad:6f:
fa:bf:bf:8b:b0:ac:4e:18:79:4a:c3:98:73:9a:3d:
e6:f6:6c:7d:fd:e0:a8:5a:7d:4f:57:b8:c3:82:61:
65:7a:71:23:f2:2d:9c:cc:03:ca:e6:37:52:90:65:
98:bf:10:13:fb:0b:12:17:a9:f5:a4:7d:dc:c4:98:
ae:12:8a:15:e9:f9:20:91:01:40:10:51:28:69:bd:
02:4d:e2:0f:f0:93:48:9d:4e:9e:db:ed:78:91:c7:
db:d5:4f:c4:fc:cb:6c:25:59:f6:68:60:c9:27:49:
17:db:64:50:c2:0d:1a:ca:6b:9f:99:d5:50:37:b3:
49:08:c4:50:72:f4:02:9d:ee:fc:7a:87:c3:71:fc:
d0:d2:25:97:2a:11:2e:30:08:96:2d:ff:be:4d:6e:
95:a1:3e:f1:f2:85:f3:f9:ab:c7:79:18:54:92:b0:
64:78:24:dd:8c:44:00:00:b1:81:69:06:4f:12:2c:
8d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:74:33:87:0A:40:A3:6E:1A:99:F6:F9:50:11:6B:AC:1C:91:1E:D3
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/bXQzhwpAo24amfb5UBFrrByRHtM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.119.70.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:57:3e:9e:3d:bd:e5:ab:bf:8e:54:c8:6d:20:71:d9:08:6d:
20:32:25:4a:e5:f1:37:15:fd:ed:db:8f:93:31:33:97:22:79:
32:3b:7b:64:f6:d6:b9:88:ee:de:c1:9f:13:1e:bc:3e:5f:79:
5f:04:a1:3c:50:71:ba:8e:e9:82:8a:19:c7:3f:6a:9b:b7:25:
8b:35:af:ee:9a:65:6f:b9:96:cc:3a:3b:c5:99:4f:6b:e8:06:
0b:42:aa:12:1d:ac:12:a7:15:26:61:4b:5e:90:9c:61:39:70:
6d:18:6d:24:92:35:84:d1:a0:b3:5f:91:e4:12:81:db:44:3c:
2c:42:f2:fd:45:d1:f2:c7:19:0a:f6:93:97:6b:71:d6:02:bc:
82:d1:32:36:c9:91:9a:2b:cf:5c:d2:8a:e2:0d:9f:8e:78:c9:
98:2e:66:8c:92:53:07:45:2c:8b:4e:5c:44:1c:45:ce:62:db:
d8:8b:ad:e5:72:3c:1f:50:00:c6:74:53:ba:d8:e4:6d:ab:88:
8e:21:f6:11:90:0f:0e:a0:4f:fe:d3:37:0f:02:38:39:57:49:
3f:4c:aa:77:a2:c3:ef:b4:4b:56:61:9a:fd:a5:36:10:8b:9e:
5d:ad:ce:55:08:47:eb:49:e6:c8:38:7a:bb:d5:e0:24:de:ab:
78:48:6c:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:56 2024 by rpki-client on console-fra.rpki-client.org