Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/Bvnvg-_3sISyIRdjMldBEYAhI-4.roa
File: Bvnvg-_3sISyIRdjMldBEYAhI-4.roa (raw, json)
Hash identifier: MyySnoi70dTnKKwuGpnJIoID90ou5vNrCuluP2Zrnoo=
Subject key identifier: 06:F9:EF:83:EF:F7:B0:84:B2:21:17:63:32:57:41:11:80:21:23:EE
Certificate issuer: /CN=85c3f6a9e8550c090bc3b257f72b8f65b69a9f61
Certificate serial: 0104B02F
Authority key identifier: 85:C3:F6:A9:E8:55:0C:09:0B:C3:B2:57:F7:2B:8F:65:B6:9A:9F:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hcP2qehVDAkLw7JX9yuPZbaan2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/Bvnvg-_3sISyIRdjMldBEYAhI-4.roa
Signing time: Sat 01 Jan 2022 01:01:29 +0000
ROA not before: Sat 01 Jan 2022 01:01:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.212.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17084463 (0x104b02f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85c3f6a9e8550c090bc3b257f72b8f65b69a9f61
Validity
Not Before: Jan 1 01:01:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06f9ef83eff7b084b221176332574111802123ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2b:b5:fe:f1:76:44:91:b0:ea:d0:d0:d7:31:
c0:20:7d:0a:38:55:f0:58:b0:3c:23:a6:e0:41:f5:
a4:da:30:1f:ba:00:72:4a:1b:fc:78:b6:93:5e:f4:
a8:72:f4:79:29:fb:83:f1:a3:ed:bc:a0:5d:07:e7:
17:2d:68:49:49:3c:87:86:91:7f:84:5e:c7:c6:19:
b7:b7:17:a6:13:34:02:00:1f:bf:90:a6:01:e0:07:
4a:ea:7a:c7:20:fc:b5:42:6b:4b:3e:50:04:5b:60:
10:a5:a2:52:21:03:4c:72:f9:d8:f2:cc:a7:77:b7:
dd:07:de:a2:2b:b4:4e:7c:6f:a5:1a:be:cc:a4:c8:
7d:4e:e6:9d:36:79:2b:04:45:09:93:2d:c2:78:40:
7f:b4:31:dd:41:68:b9:c0:d7:54:12:cf:94:cf:62:
e2:49:66:7a:b0:14:5e:86:94:8a:cf:71:2f:b8:0b:
b7:ff:b4:22:b6:56:4c:b7:d4:ae:78:f5:31:cd:da:
3c:60:8e:35:43:82:4c:48:9f:03:50:37:9e:57:ce:
0e:08:05:99:d7:5e:8c:b8:e1:3e:b0:de:26:c9:4a:
d6:ac:19:1e:78:a4:cc:51:8d:38:1f:07:76:83:9d:
a4:9f:15:af:10:aa:b1:ac:77:c5:a7:a9:e9:6b:6d:
d4:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:F9:EF:83:EF:F7:B0:84:B2:21:17:63:32:57:41:11:80:21:23:EE
X509v3 Authority Key Identifier:
keyid:85:C3:F6:A9:E8:55:0C:09:0B:C3:B2:57:F7:2B:8F:65:B6:9A:9F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hcP2qehVDAkLw7JX9yuPZbaan2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/Bvnvg-_3sISyIRdjMldBEYAhI-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/hcP2qehVDAkLw7JX9yuPZbaan2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.119.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:db:65:5f:fc:f5:8a:31:77:8b:b5:a7:86:c8:f7:ec:bc:cb:
d7:9e:9c:df:d9:89:29:fb:5e:a2:ac:d4:56:1e:d7:da:49:fd:
1d:61:98:eb:e3:e1:7b:65:4e:38:53:80:87:ca:1f:41:ae:24:
93:04:f8:87:27:ac:5b:3f:95:df:5b:1d:8d:e1:2f:71:7d:51:
d3:0b:a0:12:78:cd:a5:c3:64:cd:85:dc:10:f6:a0:e2:ec:91:
c7:c9:ed:fa:b3:64:39:4c:aa:b5:eb:c6:2b:47:9c:8b:df:3a:
75:2d:d5:23:cb:46:c8:ce:ac:58:ec:c1:8d:fd:95:ff:79:74:
5a:25:80:c7:9f:e4:a4:81:64:35:86:9f:3f:3e:8c:c6:22:6c:
03:55:ce:e1:ef:0c:69:df:7d:44:41:dd:e5:ff:07:12:6c:c1:
10:5d:85:b6:bb:d3:7b:b6:97:c5:ed:d5:b1:b9:0e:1a:b6:d7:
11:7a:e5:0e:5c:87:db:b0:c4:41:ba:75:88:92:6d:4b:19:a7:
97:dd:5e:ab:57:3e:2b:5a:c3:6b:9b:e8:2b:8c:85:25:76:1a:
0d:c6:be:80:07:53:77:51:98:80:8e:24:77:76:3d:98:07:43:
b3:0a:a4:0a:ca:98:1b:fb:1c:6f:3b:9a:67:ce:40:17:2a:02:
b5:e4:1c:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:42 2023 by rpki-client on console-ams.rpki-client.org