Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/649aeb-78dd-422f-89c6-5538dc0bb099/1/BqQmeno6s5EZbgwazXjt2ecoJ3E.roa
File: BqQmeno6s5EZbgwazXjt2ecoJ3E.roa (raw, json)
Hash identifier: N/bQFUm3VJdhL4wieN9dnH0ptnsAWNMcVVZRflTG9y8=
Subject key identifier: 06:A4:26:7A:7A:3A:B3:91:19:6E:0C:1A:CD:78:ED:D9:E7:28:27:71
Certificate issuer: /CN=edc22138c0af81c5cbf43a4f8ddd7c8de13c7230
Certificate serial: 381FB381
Authority key identifier: ED:C2:21:38:C0:AF:81:C5:CB:F4:3A:4F:8D:DD:7C:8D:E1:3C:72:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7cIhOMCvgcXL9DpPjd18jeE8cjA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/649aeb-78dd-422f-89c6-5538dc0bb099/1/BqQmeno6s5EZbgwazXjt2ecoJ3E.roa
Signing time: Sat 01 Jan 2022 02:59:01 +0000
ROA not before: Sat 01 Jan 2022 02:59:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202664
IP address blocks: 81.92.240.0/24 maxlen: 24
81.92.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 941601665 (0x381fb381)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edc22138c0af81c5cbf43a4f8ddd7c8de13c7230
Validity
Not Before: Jan 1 02:59:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06a4267a7a3ab391196e0c1acd78edd9e7282771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f8:c3:01:68:2b:c3:38:66:52:4e:02:a2:5d:
09:61:90:dc:8a:99:c5:b8:86:5c:ec:fc:dd:24:53:
16:64:ea:26:ff:78:bd:be:fa:82:4d:05:e5:ef:30:
41:55:9f:5f:37:79:9b:37:5b:5b:8b:f3:9f:8c:68:
1d:cf:05:0f:25:c9:1c:f0:5f:2d:b5:0f:7b:76:96:
5c:95:2d:eb:f2:cf:7e:5b:7e:1e:6f:fc:80:61:d5:
d0:de:99:7f:61:2a:f7:8b:3a:38:0e:12:df:10:b2:
5a:23:26:84:89:c7:31:fd:08:09:a7:aa:72:c3:0d:
55:64:eb:46:d4:32:f2:c3:b6:94:4f:c4:6e:ba:14:
a0:56:ac:09:af:a7:ab:a5:c8:36:23:ca:be:42:4a:
09:30:3e:16:0c:29:66:e8:d6:89:ee:96:32:4f:d0:
b4:36:a9:6a:65:4d:31:41:3f:db:0e:ae:da:4c:85:
60:1f:90:8f:cc:54:67:f0:08:d7:04:a3:a9:55:3b:
fa:74:e2:63:39:eb:78:1b:b8:da:c1:8e:95:57:2d:
9a:3c:54:66:0b:31:1a:b3:18:64:0e:21:7b:0e:4c:
d6:ac:37:72:a1:80:34:6b:76:0a:e7:17:7b:55:81:
8a:d1:5c:aa:a7:6b:69:ef:b5:c3:9c:af:ab:79:86:
c4:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:A4:26:7A:7A:3A:B3:91:19:6E:0C:1A:CD:78:ED:D9:E7:28:27:71
X509v3 Authority Key Identifier:
keyid:ED:C2:21:38:C0:AF:81:C5:CB:F4:3A:4F:8D:DD:7C:8D:E1:3C:72:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7cIhOMCvgcXL9DpPjd18jeE8cjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/649aeb-78dd-422f-89c6-5538dc0bb099/1/BqQmeno6s5EZbgwazXjt2ecoJ3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/649aeb-78dd-422f-89c6-5538dc0bb099/1/7cIhOMCvgcXL9DpPjd18jeE8cjA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.92.240.0/23
Signature Algorithm: sha256WithRSAEncryption
73:00:02:92:7e:27:5a:b6:33:90:11:07:52:f3:85:5e:1b:bf:
39:98:2d:c9:11:f0:af:90:46:e9:cc:23:05:9e:2b:d7:9a:b3:
36:6f:95:95:bf:0f:28:21:de:b8:54:b4:60:73:43:c1:24:1d:
c4:ca:23:0e:69:74:a0:c2:2c:3b:d1:1c:87:0c:8e:76:cb:ad:
03:c0:7a:84:62:f0:05:f7:df:b5:1f:46:f9:66:2a:b6:c6:63:
26:eb:e5:a1:8d:45:8c:15:64:33:cf:a8:be:aa:1e:3f:4c:a4:
7a:00:90:83:8f:ca:5d:a6:62:d4:b4:e9:bf:cd:7c:64:50:61:
c9:04:d0:04:2b:77:38:fe:32:dd:da:e9:fd:91:cf:20:ae:61:
71:15:6b:ae:f9:d4:6d:3d:11:91:12:d1:33:2d:c6:bb:68:96:
13:53:84:e0:2c:4d:4e:4f:e7:db:14:69:fd:35:b8:3b:79:92:
aa:65:95:c0:ed:4c:c5:f0:c1:25:23:99:02:8d:65:d0:d1:28:
b5:59:ae:3c:23:c1:72:3b:8a:9c:d9:45:f6:5e:e2:2e:e0:26:
36:36:61:87:d1:f8:3b:25:94:89:d7:6b:ba:11:14:fa:24:f9:
a0:dd:74:78:48:c3:e8:4a:2d:88:46:9d:2a:ae:e0:f0:12:c3:
45:52:18:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:42 2023 by rpki-client on console-ams.rpki-client.org