Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vg5GVv_bzo4mLc7_4S2Kn30lBaU.roa
File: vg5GVv_bzo4mLc7_4S2Kn30lBaU.roa (raw, json)
Hash identifier: nISdNWwLCv7JGBAQMACIpwfO9mpgunf0gTop9AL7s+s=
Subject key identifier: BE:0E:46:56:FF:DB:CE:8E:26:2D:CE:FF:E1:2D:8A:9F:7D:25:05:A5
Certificate issuer: /CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Certificate serial: 0184AE7FA2AD56CDBD923DF9AD36157F847D
Authority key identifier: BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vg5GVv_bzo4mLc7_4S2Kn30lBaU.roa
Signing time: Fri 25 Nov 2022 11:15:11 +0000
ROA not before: Fri 25 Nov 2022 11:15:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206092
IP address blocks: 213.21.226.0/24 maxlen: 24
213.21.246.0/24 maxlen: 24
193.68.85.0/24 maxlen: 24
213.21.254.0/24 maxlen: 24
193.68.91.0/24 maxlen: 24
193.68.95.0/24 maxlen: 24
193.68.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ae:7f:a2:ad:56:cd:bd:92:3d:f9:ad:36:15:7f:84:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Validity
Not Before: Nov 25 11:15:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be0e4656ffdbce8e262dceffe12d8a9f7d2505a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:78:6c:e8:45:9a:43:b8:de:94:23:e0:4b:74:
34:a7:19:23:e2:e6:d7:32:d2:2c:fe:ba:9c:85:c8:
de:f4:f8:af:52:18:03:e7:71:7f:d5:87:a1:22:f5:
3d:0b:0c:8d:b8:3b:9d:8a:15:e2:59:b3:0d:92:9e:
dd:8b:cb:83:ec:79:0e:50:5a:0a:4b:ba:a8:22:d1:
2f:6a:ad:09:8c:c7:b9:bb:4b:7e:00:d4:5d:e2:df:
8c:44:0e:94:7f:87:f7:f5:ec:a8:06:5f:aa:28:7e:
e7:4d:43:cb:ad:1e:2e:67:f6:89:91:41:d2:46:40:
1b:05:6d:ab:bf:af:a1:65:5a:24:5c:13:e6:f1:0f:
05:00:5e:21:d4:c1:c8:8c:be:4b:3b:4b:dc:ad:ad:
36:49:fd:b2:9c:11:ff:c1:af:95:01:e2:0b:c6:4c:
06:3d:89:9b:62:4a:50:05:21:b1:36:3c:86:3e:e7:
d8:2a:d0:88:24:d7:35:29:ef:57:b9:ae:2f:48:63:
f8:eb:7e:48:0e:db:f0:b9:72:cc:d7:19:04:87:4a:
e1:64:b4:9d:1a:ae:42:df:a6:69:75:9a:3c:5c:99:
1e:9a:7b:be:ba:44:1e:fc:9b:62:6a:e2:7f:14:1f:
21:32:bc:6d:42:3d:3a:06:83:94:c1:4d:6c:20:0e:
89:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:0E:46:56:FF:DB:CE:8E:26:2D:CE:FF:E1:2D:8A:9F:7D:25:05:A5
X509v3 Authority Key Identifier:
keyid:BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vg5GVv_bzo4mLc7_4S2Kn30lBaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.68.85.0/24
193.68.91.0-193.68.92.255
193.68.95.0/24
213.21.226.0/24
213.21.246.0/24
213.21.254.0/24
Signature Algorithm: sha256WithRSAEncryption
55:c1:8a:31:9e:d9:98:5a:5b:9e:3c:27:4d:69:c5:7d:c8:e2:
cf:a2:99:62:ab:97:db:31:d4:f5:61:a4:40:f6:81:29:ad:ee:
44:d9:c5:c0:b2:9c:84:51:4c:8a:db:3c:cc:bd:2d:d1:e6:27:
89:a5:f0:87:84:7e:c6:7f:17:75:97:7e:07:e2:a0:fb:05:6f:
50:35:63:2a:65:e6:f7:72:53:7b:67:a7:00:b3:a1:13:1d:88:
60:32:46:01:5d:f9:f9:df:e1:9d:4f:3e:3b:18:ae:b4:2a:4c:
92:ea:1f:d4:aa:89:78:02:13:70:70:a6:f0:46:01:cb:2e:26:
dc:97:22:0b:08:f7:10:1a:cd:e7:fc:8a:99:49:a1:61:cb:b6:
32:aa:e3:c6:86:83:94:42:a0:ea:2e:d9:a0:7e:9e:21:c1:53:
5a:e9:68:ea:02:29:65:f2:09:90:a0:01:96:88:34:22:49:57:
16:b8:09:f1:19:a8:69:3f:ef:3e:e7:d4:5a:e3:e3:d6:fb:65:
c7:59:fe:4f:56:10:3e:bb:87:f3:44:cf:48:68:eb:d5:55:9e:
9b:24:41:42:6a:d4:66:d9:a7:3a:22:63:a9:33:e9:b0:a1:e7:
ba:9f:d4:ba:ec:81:97:bd:67:f1:9f:45:7e:49:dc:cd:5a:ea:
c7:f8:bb:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:38 2024 by rpki-client on console-ams.rpki-client.org