Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bHWCzyMn2EpgWn_yjFhZ5rSUcxE.roa
File: bHWCzyMn2EpgWn_yjFhZ5rSUcxE.roa (raw, json)
Hash identifier: sidjBZI1sny8rjnswTucOzy1DGd/FJAVvQr5g7Is8gY=
Subject key identifier: 6C:75:82:CF:23:27:D8:4A:60:5A:7F:F2:8C:58:59:E6:B4:94:73:11
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 185EFD39
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bHWCzyMn2EpgWn_yjFhZ5rSUcxE.roa
Signing time: Thu 20 Jan 2022 13:46:38 +0000
ROA not before: Thu 20 Jan 2022 13:46:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12859
IP address blocks: 195.85.49.0/24 maxlen: 32
185.226.74.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 408878393 (0x185efd39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 20 13:46:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c7582cf2327d84a605a7ff28c5859e6b4947311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f1:86:b2:7d:da:f7:5f:26:47:c9:b3:92:b0:
5a:d8:35:d7:c4:91:42:8a:2a:cb:23:34:bb:96:9e:
26:92:ae:ee:0f:3a:18:54:aa:28:c3:a3:c1:2f:40:
c0:c0:33:66:21:66:d9:b9:d7:93:ce:02:fd:a3:dd:
25:27:84:0f:72:a3:17:08:e8:5e:6a:fc:8b:4c:a1:
95:21:96:2b:81:cb:b5:2a:e7:b1:c0:82:db:5e:cc:
f4:01:65:8c:f0:45:ab:3a:f4:89:e5:1b:7d:15:70:
7b:13:f8:b1:09:94:01:a4:54:56:7a:12:2e:1e:ee:
39:97:d7:92:87:b6:b6:af:24:0f:63:fb:45:04:c7:
73:00:8f:ed:be:59:0e:22:43:9c:bd:a4:68:84:8f:
6e:36:91:c8:bd:9b:e0:61:44:18:cf:b9:29:15:ff:
c0:77:ae:c2:30:22:de:d7:16:df:2c:49:5a:c8:89:
f5:13:83:bf:00:23:6b:14:86:75:dc:77:3e:11:9a:
0b:0d:67:64:13:71:c5:23:f3:6a:ed:3d:43:b3:97:
98:ed:90:20:71:e3:5d:13:d0:3d:a7:e1:c3:f5:0f:
af:3a:4b:13:42:67:68:74:ab:13:ed:78:e7:f8:d1:
e1:87:6c:0f:fa:6a:1e:f9:97:4b:93:02:dc:9c:a3:
aa:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:75:82:CF:23:27:D8:4A:60:5A:7F:F2:8C:58:59:E6:B4:94:73:11
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bHWCzyMn2EpgWn_yjFhZ5rSUcxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.74.0/24
195.85.49.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:04:63:63:ec:29:5c:78:1c:a6:66:06:fe:fd:3a:b2:4d:f1:
a4:60:f8:6e:98:f6:25:6a:7e:c3:84:4e:e9:d3:bb:c8:0d:3f:
41:84:48:72:f2:c2:fe:a3:f6:28:34:5c:52:ef:d3:63:54:e6:
8e:32:89:54:12:1d:0b:e3:52:3f:83:b5:21:be:8b:23:1c:65:
e6:d1:11:df:56:28:18:02:bc:cd:0d:79:82:cf:cd:bd:2e:ea:
86:ff:5c:b1:dc:25:62:fd:26:42:8b:4a:fa:b1:cf:d1:ca:4f:
3d:e0:41:a4:f2:be:0e:35:ef:07:2b:ca:eb:2c:43:61:06:54:
f4:6f:b7:93:cc:29:8f:b8:6b:28:ef:5b:d0:00:5f:1a:b8:49:
36:7d:61:5a:5c:78:8f:fa:cb:62:05:ce:1a:da:c9:24:7e:c4:
e5:d9:dd:f9:6c:e4:37:d4:8e:00:7d:9f:1c:5f:c0:fd:4f:50:
0d:f2:d9:0d:df:a7:8c:f1:e2:9e:ce:e6:44:a6:6e:0c:05:07:
37:4c:83:14:0e:5f:6b:a8:57:c8:02:03:15:3c:e6:94:c0:dd:
05:f3:bb:f8:47:58:d0:f0:00:84:d2:c8:98:c0:a1:fc:fa:ca:
d2:8b:73:37:3f:74:da:98:42:49:3e:ce:54:e7:63:fa:0f:eb:
25:5a:1e:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org