Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/BHT55AUxJ9gXGRxRB076YDsD850.roa
File: BHT55AUxJ9gXGRxRB076YDsD850.roa (raw, json)
Hash identifier: iLxrNVECi5mvWn9tA7lsZfTlQNJZPiSIhs7x7PC598Y=
Subject key identifier: 04:74:F9:E4:05:31:27:D8:17:19:1C:51:07:4E:FA:60:3B:03:F3:9D
Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Certificate serial: 018499C5504EB4BADB1F9F50A24786DEB248
Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/BHT55AUxJ9gXGRxRB076YDsD850.roa
Signing time: Mon 21 Nov 2022 10:39:15 +0000
ROA not before: Mon 21 Nov 2022 10:39:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211373
IP address blocks: 46.28.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:99:c5:50:4e:b4:ba:db:1f:9f:50:a2:47:86:de:b2:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Validity
Not Before: Nov 21 10:39:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0474f9e4053127d817191c51074efa603b03f39d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:76:87:96:10:82:c6:9e:1e:9e:26:e5:75:48:
01:94:ef:6c:66:1c:d9:2d:e6:5f:27:9c:09:73:c4:
f2:8f:df:fe:08:c0:0e:83:b8:32:91:99:4c:15:1d:
67:93:8a:8a:ae:07:e6:ff:d5:fc:db:7a:31:82:b5:
02:14:71:69:d4:90:3e:19:c5:81:b4:0b:03:1b:51:
7e:87:b8:9d:e4:36:85:f7:56:c5:8a:96:5c:3b:47:
70:bc:29:b2:0b:60:90:c5:21:0a:e6:18:76:3d:09:
ef:ef:c0:08:cd:09:e7:46:45:09:d8:ca:f5:fc:76:
c2:75:d6:46:54:79:16:17:75:e6:ad:26:a4:a3:f3:
1d:0a:4e:73:41:08:71:64:13:05:78:b0:6e:f2:73:
32:02:a0:78:db:a5:76:97:12:79:bc:56:cf:80:ef:
32:23:56:a1:7f:5a:e7:e9:bd:08:7d:76:cc:34:05:
04:d9:e1:9b:21:f2:ae:7c:2e:a2:88:4e:04:4a:7f:
b8:c9:59:00:df:4e:86:ee:9e:88:cd:c6:1f:11:77:
14:9e:a5:e8:0f:f6:85:a6:e7:fc:ef:6c:4b:16:9d:
68:04:76:d6:ae:43:65:79:42:ba:37:04:43:fb:16:
78:57:85:6d:3d:13:cc:2c:50:5d:8f:9d:f8:59:cf:
c3:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:74:F9:E4:05:31:27:D8:17:19:1C:51:07:4E:FA:60:3B:03:F3:9D
X509v3 Authority Key Identifier:
keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/BHT55AUxJ9gXGRxRB076YDsD850.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.28.44.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:ff:82:a7:bd:d7:bb:7b:50:1f:be:20:37:21:62:89:18:87:
fe:54:ab:c4:a4:60:a6:33:27:66:f9:a2:79:33:88:98:01:78:
c5:cc:49:e8:96:2b:dd:18:55:78:b8:50:65:f4:68:f8:f2:c2:
58:be:c4:d6:6b:ff:16:b7:3a:cc:fc:9b:2b:9a:c6:01:12:84:
86:7c:6e:e7:b3:38:e3:39:05:27:ba:16:1a:d2:9f:ce:c1:97:
48:b4:e1:f1:da:1d:c3:ce:3d:51:8a:04:9f:c8:58:22:7a:72:
0b:a7:35:a3:b0:69:20:f2:b0:32:4f:d0:0a:1d:f9:29:23:7a:
0b:21:f7:a6:a8:4c:f2:28:59:a9:25:04:92:5e:a4:58:3d:60:
42:8e:7f:7b:36:d3:9e:ff:49:d4:99:36:33:67:d4:d4:c8:2d:
81:45:24:aa:1a:78:d8:fe:1b:81:9c:14:05:ce:26:b9:4c:29:
37:cb:fd:55:06:de:7d:26:45:57:ba:29:bc:65:1a:4f:0d:ee:
03:0a:62:fd:9d:f0:95:f8:36:2a:9a:29:09:c3:06:42:0e:d0:
eb:c4:42:cc:c1:cc:5f:ef:c7:1b:11:45:b9:1e:bf:43:4f:33:
7a:48:64:a9:10:ae:c3:2b:7e:0f:40:ef:05:a7:ee:a1:a2:04:
db:12:16:72
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSZxVBOtLrbH59QokeG3rJIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmNjM2M2Q0MjhiNzkxNWMxMDg4MjVmMDk3MDYwMDRiOGVh
M2Q0YjUwHhcNMjIxMTIxMTAzOTE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDc0ZjllNDA1MzEyN2Q4MTcxOTFjNTEwNzRlZmE2MDNiMDNmMzlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApXaHlhCCxp4enibldUgBlO9sZhzZ
LeZfJ5wJc8Tyj9/+CMAOg7gykZlMFR1nk4qKrgfm/9X823oxgrUCFHFp1JA+GcWB
tAsDG1F+h7id5DaF91bFipZcO0dwvCmyC2CQxSEK5hh2PQnv78AIzQnnRkUJ2Mr1
/HbCddZGVHkWF3XmrSako/MdCk5zQQhxZBMFeLBu8nMyAqB426V2lxJ5vFbPgO8y
I1ahf1rn6b0IfXbMNAUE2eGbIfKufC6iiE4ESn+4yVkA306G7p6IzcYfEXcUnqXo
D/aFpuf872xLFp1oBHbWrkNleUK6NwRD+xZ4V4VtPRPMLFBdj534Wc/D2QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAR0+eQFMSfYFxkcUQdO+mA7A/OdMB8GA1UdIwQY
MBaAFA9jY9Qot5FcEIgl8JcGAEuOo9S1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy82YmVjYjAtMThmZC00YWRkLWJiNDEt
MmUxYzBhZjRmYWE0LzEvQkhUNTVBVXhKOWdYR1J4UkIwNzZZRHNEODUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy82YmVjYjAtMThmZC00YWRkLWJiNDEtMmUxYzBhZjRmYWE0
LzEvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLhwsMA0G
CSqGSIb3DQEBCwUAA4IBAQCb/4Knvde7e1AfviA3IWKJGIf+VKvEpGCmMydm+aJ5
M4iYAXjFzEnolivdGFV4uFBl9Gj48sJYvsTWa/8WtzrM/JsrmsYBEoSGfG7nszjj
OQUnuhYa0p/OwZdItOHx2h3Dzj1RigSfyFgienILpzWjsGkg8rAyT9AKHfkpI3oL
IfemqEzyKFmpJQSSXqRYPWBCjn97NtOe/0nUmTYzZ9TUyC2BRSSqGnjY/huBnBQF
zia5TCk3y/1VBt59JkVXuim8ZRpPDe4DCmL9nfCV+DYqmikJwwZCDtDrxELMwcxf
78cbEUW5Hr9DTzN6SGSpEK7DK34PQO8Fp+6hogTbEhZy
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:33 2023 by rpki-client on console-ams.rpki-client.org