Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/BJlcG55V3mXfzFQ8dWzOrIWlH6s.roa
File: BJlcG55V3mXfzFQ8dWzOrIWlH6s.roa (raw, json)
Hash identifier: Z9+ykabBYS1J2ZlqwdMBcM8h1uPxfXwz8GcHQvgZwe4=
Subject key identifier: 04:99:5C:1B:9E:55:DE:65:DF:CC:54:3C:75:6C:CE:AC:85:A5:1F:AB
Certificate issuer: /CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Certificate serial: 03B478F9
Authority key identifier: 68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/BJlcG55V3mXfzFQ8dWzOrIWlH6s.roa
Signing time: Sat 01 Jan 2022 07:01:57 +0000
ROA not before: Sat 01 Jan 2022 07:01:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212865
IP address blocks: 5.183.0.0/22 maxlen: 24
185.71.139.0/24 maxlen: 24
2a0d:d00::/29 maxlen: 29
2a0e:2400::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62159097 (0x3b478f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Validity
Not Before: Jan 1 07:01:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04995c1b9e55de65dfcc543c756cceac85a51fab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b8:4c:bb:9b:d2:03:44:42:75:77:6b:c9:34:
2d:99:aa:ab:86:53:91:b5:c5:04:6d:8c:62:e2:70:
3c:26:9f:9d:7f:69:00:f8:9c:c8:d3:01:c9:4c:a7:
fb:7e:6a:6d:f0:34:2d:6e:40:d2:4a:53:1a:95:91:
6b:9f:3c:c7:f7:88:4b:e0:17:6c:8b:c0:47:c5:87:
b7:0d:cf:a7:d0:72:18:21:68:53:29:90:3d:2e:30:
f9:d6:42:27:6c:28:83:65:4c:d3:d3:69:ec:a6:e0:
5c:b9:ad:b8:86:cd:9b:d1:20:75:f6:a5:ea:07:93:
c1:a9:6e:50:af:f2:28:04:75:25:14:e7:24:8d:1d:
0d:11:e3:ed:97:3d:28:0b:e2:2d:41:8a:99:9a:2a:
16:82:9f:80:e1:aa:5f:38:98:e0:3e:09:69:78:61:
82:09:b6:9a:c6:7b:d5:41:d4:ad:af:25:cc:d5:cb:
91:99:09:95:90:8f:04:8b:57:96:ad:8c:3c:9a:ed:
b2:a6:31:6d:46:73:d4:77:53:24:df:28:3e:48:a3:
71:69:f4:3f:ca:f1:3e:10:ae:74:49:15:eb:e5:f7:
f2:13:3e:ef:23:62:93:01:24:8d:9b:de:42:ed:b1:
95:3f:96:30:c7:3f:e0:ed:4d:8a:10:56:a4:94:20:
ea:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:99:5C:1B:9E:55:DE:65:DF:CC:54:3C:75:6C:CE:AC:85:A5:1F:AB
X509v3 Authority Key Identifier:
keyid:68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/BJlcG55V3mXfzFQ8dWzOrIWlH6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.0.0/22
185.71.139.0/24
IPv6:
2a0d:d00::/29
2a0e:2400::/29
Signature Algorithm: sha256WithRSAEncryption
a0:af:32:4d:4f:d4:46:cd:cc:e0:b2:d1:63:6b:5f:d8:0c:6d:
d2:56:dc:da:a2:93:aa:16:99:f2:c2:de:e0:af:de:d9:7e:96:
21:45:40:2a:ac:65:25:0e:d4:af:2b:f0:b2:8e:fb:92:71:ad:
50:6c:10:f2:ac:54:32:f0:b3:1f:7b:36:8d:95:70:fd:ca:ae:
d0:80:d0:2c:ad:e3:4a:f9:85:a0:40:12:ba:bd:ca:6c:68:4f:
03:03:a9:b6:d1:29:5d:19:8c:f8:d9:14:63:0c:a4:b6:34:c7:
45:d9:5b:2f:b9:9a:3f:0f:dc:f0:00:5a:61:60:ed:19:8b:8d:
cf:9b:62:94:ed:7d:84:47:72:3e:cf:a2:fe:d2:1b:6a:e3:fd:
81:ac:83:17:41:a9:e0:a9:24:41:6a:15:53:91:3a:ae:9b:4a:
51:5b:8c:19:ab:1a:18:25:fc:70:b0:eb:31:85:aa:b0:01:55:
cd:3c:b5:8f:f9:58:d0:79:b7:51:0b:54:df:e5:92:73:e3:23:
a5:5a:94:88:23:ea:48:50:23:f4:9c:b9:91:b5:eb:00:6c:74:
26:92:e0:e6:f1:4e:7e:06:8a:9e:4c:f3:33:80:12:c6:24:e1:
8a:d9:b5:89:04:49:30:25:49:93:3a:5a:ca:7e:50:1c:29:cb:
c4:a8:d0:a3
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:13 2024 by rpki-client on console-fra.rpki-client.org