Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/649aeb-78dd-422f-89c6-5538dc0bb099/1/Bd0pBDB4GpWMdF9LzABMeWPHYeU.roa
File: Bd0pBDB4GpWMdF9LzABMeWPHYeU.roa (raw, json)
Hash identifier: /CgYXogrv+qZBJiXwzEq2QZ8cur3d+DaLA8SB1LYWqY=
Subject key identifier: 05:DD:29:04:30:78:1A:95:8C:74:5F:4B:CC:00:4C:79:63:C7:61:E5
Certificate issuer: /CN=edc22138c0af81c5cbf43a4f8ddd7c8de13c7230
Certificate serial: 3916BF74
Authority key identifier: ED:C2:21:38:C0:AF:81:C5:CB:F4:3A:4F:8D:DD:7C:8D:E1:3C:72:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7cIhOMCvgcXL9DpPjd18jeE8cjA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/649aeb-78dd-422f-89c6-5538dc0bb099/1/Bd0pBDB4GpWMdF9LzABMeWPHYeU.roa
Signing time: Tue 12 Apr 2022 22:57:00 +0000
ROA not before: Tue 12 Apr 2022 22:57:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20704
IP address blocks: 81.92.240.0/22 maxlen: 24
217.196.64.0/19 maxlen: 20
2001:1408::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 957792116 (0x3916bf74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edc22138c0af81c5cbf43a4f8ddd7c8de13c7230
Validity
Not Before: Apr 12 22:57:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05dd290430781a958c745f4bcc004c7963c761e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:cf:00:9d:3f:b6:35:17:0a:cd:c2:32:45:6c:
c0:45:38:53:dc:e7:52:02:13:d6:35:7d:72:69:1d:
2e:94:41:d6:35:7d:cd:fb:54:1f:5a:11:63:22:1d:
da:85:9f:3e:2b:a1:86:01:24:5c:c4:bd:51:31:30:
8a:55:bc:92:e9:89:c9:99:22:6b:88:f4:37:77:ea:
77:54:b4:16:a6:9d:ae:a6:a6:ef:f8:0d:4d:62:03:
9a:1f:f6:70:c4:7e:22:87:99:32:e9:b1:47:ac:a6:
71:ce:23:d5:bb:2e:54:04:55:89:f3:dc:af:85:1d:
3e:a1:c5:2e:70:e1:32:d4:12:3d:fd:0c:9f:3f:01:
2c:a1:c4:39:fd:64:6c:7b:59:c5:04:ac:be:6c:a0:
34:6c:b8:12:18:5b:8b:e2:b0:7e:4a:23:18:6c:06:
82:e5:54:12:3d:ca:83:cd:6c:9f:bc:5a:d9:47:0b:
7f:ca:bd:f6:5e:85:dc:80:46:84:79:b0:5d:d5:19:
1c:cf:49:3f:fd:c4:b4:38:b0:86:80:96:92:05:92:
21:0b:a9:a6:32:3d:f9:43:de:20:cb:0e:2d:7f:eb:
b8:9c:89:2d:03:40:f9:a2:c1:12:e1:19:e4:8e:83:
3e:5e:5a:65:7b:bf:4e:de:f8:da:00:e4:d9:ea:22:
a2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:DD:29:04:30:78:1A:95:8C:74:5F:4B:CC:00:4C:79:63:C7:61:E5
X509v3 Authority Key Identifier:
keyid:ED:C2:21:38:C0:AF:81:C5:CB:F4:3A:4F:8D:DD:7C:8D:E1:3C:72:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7cIhOMCvgcXL9DpPjd18jeE8cjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/649aeb-78dd-422f-89c6-5538dc0bb099/1/Bd0pBDB4GpWMdF9LzABMeWPHYeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/649aeb-78dd-422f-89c6-5538dc0bb099/1/7cIhOMCvgcXL9DpPjd18jeE8cjA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.92.240.0/22
217.196.64.0/19
IPv6:
2001:1408::/32
Signature Algorithm: sha256WithRSAEncryption
7f:27:fc:45:ef:20:5e:81:dc:b1:d2:a8:bc:7e:cf:5d:71:84:
ad:b2:3f:79:29:47:87:9c:e5:84:21:14:91:e0:fe:22:e9:1a:
ae:ce:75:cf:f9:25:00:96:3a:bb:a7:73:bd:71:32:cd:be:09:
b9:ad:20:97:5d:6d:9c:73:e1:0a:70:de:de:a5:c3:05:7c:ad:
e1:4f:43:7b:12:38:64:0d:1b:98:ed:61:c8:76:bb:08:19:8d:
27:58:dc:bf:cf:39:17:21:95:a8:2b:ba:e5:2b:cc:2a:85:71:
de:13:a5:74:19:e3:e6:60:06:9e:d1:19:31:a2:c3:6c:4f:be:
48:ef:02:d1:fa:91:1d:71:0b:06:4a:63:ad:c2:f8:03:19:ef:
2e:c2:99:cd:0b:ac:cc:c6:15:e1:07:73:f3:c8:e9:e2:56:43:
5f:03:85:46:e9:0d:1f:3d:73:5a:f1:7b:17:29:56:25:2e:af:
77:48:11:e8:f8:f2:72:5c:2a:46:d6:62:88:7b:3e:19:02:fa:
2e:c8:54:52:91:f9:fb:7d:b3:57:7d:56:62:f2:a2:8f:21:00:
ad:c7:41:41:89:a3:8f:f0:cd:4e:1c:a3:59:08:20:b1:3b:1d:
8e:28:fd:1c:6c:43:6a:18:1c:27:bd:fe:29:43:97:27:4f:54:
ce:f4:ab:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:51 2023 by rpki-client on console-fra.rpki-client.org