Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/d95b2c-1e02-4e4e-8438-bbcae0df1f2f/1/BmcBobjtRx8DcJnpMwpSobAY58A.roa
File: BmcBobjtRx8DcJnpMwpSobAY58A.roa (raw, json)
Hash identifier: h3tlBz/6g6KNe0aeOMHGyYyTK1Wler8tepYflh0PLEU=
Subject key identifier: 06:67:01:A1:B8:ED:47:1F:03:70:99:E9:33:0A:52:A1:B0:18:E7:C0
Certificate issuer: /CN=b60b574f03d988155f44ba2cb07bc7dfb457cf0f
Certificate serial: 169E054D
Authority key identifier: B6:0B:57:4F:03:D9:88:15:5F:44:BA:2C:B0:7B:C7:DF:B4:57:CF:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgtXTwPZiBVfRLossHvH37RXzw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/d95b2c-1e02-4e4e-8438-bbcae0df1f2f/1/BmcBobjtRx8DcJnpMwpSobAY58A.roa
Signing time: Sat 01 Jan 2022 04:55:45 +0000
ROA not before: Sat 01 Jan 2022 04:55:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44018
IP address blocks: 193.104.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 379454797 (0x169e054d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b60b574f03d988155f44ba2cb07bc7dfb457cf0f
Validity
Not Before: Jan 1 04:55:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=066701a1b8ed471f037099e9330a52a1b018e7c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:69:f2:96:36:b1:b7:cc:01:e2:f3:84:c1:74:
38:13:90:d5:ce:01:d3:66:03:e6:8e:1b:d2:72:9a:
d6:fb:51:77:10:8e:31:79:6d:21:07:00:41:eb:0a:
6e:d7:75:64:24:4b:e9:0b:4b:4b:c9:54:fd:7e:54:
87:00:0e:2f:24:2c:88:b8:00:d9:6f:03:cf:93:67:
da:a8:37:c1:55:38:f4:f6:ea:0b:fe:38:df:40:66:
23:6c:02:5b:1a:c0:69:3a:42:19:1c:48:56:d7:5b:
9f:4a:4d:84:02:e1:cb:28:2a:8c:8c:94:23:a0:42:
ca:55:70:4a:8b:21:18:06:4a:1f:a1:bc:b6:40:88:
c2:09:d9:04:38:c1:30:71:60:da:22:9f:81:c1:20:
c1:ca:c6:1b:cc:ac:3a:f4:6c:70:19:49:00:7b:f7:
27:03:ed:f3:12:43:75:75:a5:15:8d:8b:d0:e2:03:
49:f4:4e:88:89:5c:32:db:c2:27:c4:0f:36:a9:86:
20:c5:a5:2a:a9:56:3c:8f:bc:9e:c2:9c:58:8d:2c:
ea:76:57:99:db:f9:35:2f:07:b6:f7:15:27:eb:1e:
e0:cc:a2:55:40:70:77:84:d8:c3:45:26:27:90:9b:
20:6c:33:61:ab:f1:11:f1:07:5b:55:2d:45:4b:1a:
da:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:67:01:A1:B8:ED:47:1F:03:70:99:E9:33:0A:52:A1:B0:18:E7:C0
X509v3 Authority Key Identifier:
keyid:B6:0B:57:4F:03:D9:88:15:5F:44:BA:2C:B0:7B:C7:DF:B4:57:CF:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgtXTwPZiBVfRLossHvH37RXzw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d95b2c-1e02-4e4e-8438-bbcae0df1f2f/1/BmcBobjtRx8DcJnpMwpSobAY58A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d95b2c-1e02-4e4e-8438-bbcae0df1f2f/1/tgtXTwPZiBVfRLossHvH37RXzw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.146.0/24
Signature Algorithm: sha256WithRSAEncryption
10:f2:93:97:d3:5b:80:78:f2:d5:b5:df:53:48:f1:e0:4f:0f:
d1:1a:02:5c:22:82:80:87:5d:79:1b:f2:aa:cf:5b:b8:49:77:
38:3e:df:0e:c8:0c:63:fb:c1:bc:bc:7c:ac:02:b0:58:ff:19:
06:21:aa:58:48:bb:ff:f4:b3:1d:ed:cc:53:ac:a8:10:5c:d4:
cf:b3:9c:85:89:9d:27:5e:19:19:56:9e:73:21:1b:10:a4:7f:
65:c0:c7:20:70:12:c2:d4:57:ff:10:51:0a:56:88:9f:50:41:
90:8d:b0:20:f1:45:96:0f:3d:a6:d9:d9:29:99:1d:43:ce:dc:
13:f6:d6:41:9d:92:bb:7d:2f:d5:04:c1:49:db:2a:22:8f:6c:
cc:f2:f8:6c:97:fd:bc:8a:97:43:7b:e6:3c:52:72:74:af:86:
c6:66:e0:6d:54:1d:1d:e1:82:c0:40:b6:2a:54:24:64:cb:68:
fc:d2:0c:0d:fe:72:b7:aa:bb:36:cc:e1:9b:6f:84:96:eb:76:
d6:7d:06:3c:0c:73:cb:0c:99:5e:63:33:96:aa:f9:5b:9d:c1:
0d:91:d2:6a:06:f4:c6:d2:16:5e:ea:e7:76:58:5a:2f:27:84:
c7:dc:29:be:b2:95:01:f4:8d:18:5e:9c:01:e8:2f:94:26:46:
30:c4:20:8b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFp4FTTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NjBiNTc0ZjAzZDk4ODE1NWY0NGJhMmNiMDdiYzdkZmI0NTdjZjBmMB4XDTIyMDEw
MTA0NTU0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDY2NzAxYTFiOGVk
NDcxZjAzNzA5OWU5MzMwYTUyYTFiMDE4ZTdjMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM9p8pY2sbfMAeLzhMF0OBOQ1c4B02YD5o4b0nKa1vtRdxCO
MXltIQcAQesKbtd1ZCRL6QtLS8lU/X5UhwAOLyQsiLgA2W8Dz5Nn2qg3wVU49Pbq
C/4430BmI2wCWxrAaTpCGRxIVtdbn0pNhALhyygqjIyUI6BCylVwSoshGAZKH6G8
tkCIwgnZBDjBMHFg2iKfgcEgwcrGG8ysOvRscBlJAHv3JwPt8xJDdXWlFY2L0OID
SfROiIlcMtvCJ8QPNqmGIMWlKqlWPI+8nsKcWI0s6nZXmdv5NS8HtvcVJ+se4Myi
VUBwd4TYw0UmJ5CbIGwzYavxEfEHW1UtRUsa2skCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQGZwGhuO1HHwNwmekzClKhsBjnwDAfBgNVHSMEGDAWgBS2C1dPA9mIFV9E
uiywe8fftFfPDzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RndFhUd1BaaUJWZlJMb3NzSHZIMzdSWHp3OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDgvZDk1YjJjLTFlMDItNGU0ZS04NDM4LWJiY2FlMGRmMWYyZi8x
L0JtY0JvYmp0Ung4RGNKbnBNd3BTb2JBWTU4QS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDgv
ZDk1YjJjLTFlMDItNGU0ZS04NDM4LWJiY2FlMGRmMWYyZi8xL3RndFhUd1BaaUJW
ZlJMb3NzSHZIMzdSWHp3OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMFokjANBgkqhkiG9w0BAQsFAAOC
AQEAEPKTl9NbgHjy1bXfU0jx4E8P0RoCXCKCgIddeRvyqs9buEl3OD7fDsgMY/vB
vLx8rAKwWP8ZBiGqWEi7//SzHe3MU6yoEFzUz7OchYmdJ14ZGVaecyEbEKR/ZcDH
IHASwtRX/xBRClaIn1BBkI2wIPFFlg89ptnZKZkdQ87cE/bWQZ2Su30v1QTBSdsq
Io9szPL4bJf9vIqXQ3vmPFJydK+GxmbgbVQdHeGCwEC2KlQkZMto/NIMDf5yt6q7
Nszhm2+Elut21n0GPAxzywyZXmMzlqr5W53BDZHSagb0xtIWXurndlhaLyeEx9wp
vrKVAfSNGF6cAegvlCZGMMQgiw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:48 2024 by rpki-client on console-fra.rpki-client.org