Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/BRn_5cKbUsUZPvPx7Wcn8vJNzmM.roa
File: BRn_5cKbUsUZPvPx7Wcn8vJNzmM.roa (raw, json)
Hash identifier: ejtBGeSJKjkL3EnuH+GC5kkjroVXPjAghS/66dT06W8=
Subject key identifier: 05:19:FF:E5:C2:9B:52:C5:19:3E:F3:F1:ED:67:27:F2:F2:4D:CE:63
Certificate issuer: /CN=b32c9c26df7ccd8ad38d89bd5d49380b93b1e009
Certificate serial: 0184579AA76AA8A426B7AC7030BCE7D710BA
Authority key identifier: B3:2C:9C:26:DF:7C:CD:8A:D3:8D:89:BD:5D:49:38:0B:93:B1:E0:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syycJt98zYrTjYm9XUk4C5Ox4Ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/BRn_5cKbUsUZPvPx7Wcn8vJNzmM.roa
Signing time: Tue 08 Nov 2022 14:17:43 +0000
ROA not before: Tue 08 Nov 2022 14:17:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43641
IP address blocks: 195.26.86.0/23 maxlen: 24
45.11.56.0/24 maxlen: 24
91.222.172.0/22 maxlen: 24
45.134.174.0/24 maxlen: 24
45.134.175.0/24 maxlen: 24
2a09:2dc1::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:57:9a:a7:6a:a8:a4:26:b7:ac:70:30:bc:e7:d7:10:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b32c9c26df7ccd8ad38d89bd5d49380b93b1e009
Validity
Not Before: Nov 8 14:17:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0519ffe5c29b52c5193ef3f1ed6727f2f24dce63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c5:04:0d:fb:6d:e0:1e:e6:c5:ae:7d:51:bd:
36:1f:3b:79:2f:87:3f:f2:af:8c:57:c9:51:64:3d:
83:c3:bc:49:65:e2:48:db:59:c8:b9:11:4e:78:50:
bb:e2:be:41:1b:64:52:1c:d8:8a:9b:ed:7a:05:35:
4d:a4:e1:0c:92:4e:3d:ca:ca:4b:04:13:9d:0e:58:
86:d4:75:5e:8f:c3:11:37:2a:fc:21:5c:29:af:4c:
91:64:60:bf:2d:3f:06:77:d6:59:a3:04:f3:61:85:
af:a8:a2:fd:5b:d2:55:61:7a:f0:96:7a:55:5a:b7:
d7:e3:68:56:4e:91:3e:29:ff:91:df:a5:fb:63:13:
5b:35:56:52:3d:83:d5:99:05:35:a2:9d:56:6b:fa:
36:4d:02:79:54:60:27:7f:1c:d1:03:ba:c0:53:52:
db:91:77:6d:c7:e6:d0:49:c5:e5:f3:53:f9:b6:2d:
10:59:f1:93:33:70:92:21:4b:42:3a:92:fd:d5:f8:
81:8e:c1:ab:8a:2f:76:e7:98:3a:2b:a7:ce:ec:76:
2b:ef:72:16:97:f6:55:48:3f:c0:de:90:04:20:06:
a2:73:ac:47:39:83:e1:ca:37:51:98:50:10:5c:85:
03:46:5e:70:fc:8f:74:b0:cb:a8:49:97:a0:01:50:
ad:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:19:FF:E5:C2:9B:52:C5:19:3E:F3:F1:ED:67:27:F2:F2:4D:CE:63
X509v3 Authority Key Identifier:
keyid:B3:2C:9C:26:DF:7C:CD:8A:D3:8D:89:BD:5D:49:38:0B:93:B1:E0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syycJt98zYrTjYm9XUk4C5Ox4Ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/BRn_5cKbUsUZPvPx7Wcn8vJNzmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/syycJt98zYrTjYm9XUk4C5Ox4Ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.56.0/24
45.134.174.0/23
91.222.172.0/22
195.26.86.0/23
IPv6:
2a09:2dc1::/32
Signature Algorithm: sha256WithRSAEncryption
0a:30:2b:96:8b:39:00:61:cd:9b:a9:66:62:c7:93:d6:03:c8:
07:83:1b:49:87:1f:f7:bf:39:ce:fd:d6:e1:96:ae:11:e5:fa:
bd:83:2e:c1:f7:fe:cd:f4:83:39:83:0f:2d:b8:9f:a1:b5:d4:
12:eb:72:1c:b6:c6:40:d8:21:a1:92:0b:a6:48:bb:c5:84:19:
f5:84:30:ac:de:71:5a:b4:b8:1e:74:92:0b:c0:97:3d:76:e1:
c1:58:ac:e2:df:7a:47:7a:dc:40:11:d6:a3:e7:b5:ed:41:c0:
c8:c6:e9:2b:f3:5c:c5:c1:52:65:ff:0a:c9:db:1a:ab:f4:19:
62:91:2b:ed:03:a7:55:dd:23:5f:53:c8:ff:be:40:95:dc:3e:
97:96:70:15:b3:e6:11:6e:e6:ef:09:d9:58:69:4f:41:3a:a2:
15:c6:9d:7b:00:de:29:20:eb:0f:df:34:72:2f:b6:06:5a:a7:
85:6b:cb:b4:51:c4:9c:21:fa:60:61:22:4b:37:ce:65:a6:f9:
04:d4:85:59:1c:dd:40:e6:18:40:aa:78:3e:78:f8:91:19:17:
f4:fa:f5:58:0d:5a:8a:e9:41:b6:32:d8:1e:79:23:1b:79:f6:
a8:98:4e:ca:95:eb:b5:42:7d:3c:48:bf:d1:b7:cc:9d:ad:b0:
6e:4f:6a:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:53 2024 by rpki-client on console-ams.rpki-client.org