Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/9b8d3b-0c03-4591-bd0f-87750d6f77a8/1/BmtAm8xbYIzooTeC6BAbe4tBnJM.roa
File: BmtAm8xbYIzooTeC6BAbe4tBnJM.roa (raw, json)
Hash identifier: GLVdDHT5yR2cBHjuimuX7wCGy30HPkzIQq/MgbMBGTI=
Subject key identifier: 06:6B:40:9B:CC:5B:60:8C:E8:A1:37:82:E8:10:1B:7B:8B:41:9C:93
Certificate issuer: /CN=88775003f7d9e8e6e1ef48db06728e668ed187bc
Certificate serial: A00C
Authority key identifier: 88:77:50:03:F7:D9:E8:E6:E1:EF:48:DB:06:72:8E:66:8E:D1:87:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iHdQA_fZ6Obh70jbBnKOZo7Rh7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/9b8d3b-0c03-4591-bd0f-87750d6f77a8/1/BmtAm8xbYIzooTeC6BAbe4tBnJM.roa
Signing time: Wed 04 May 2022 09:24:18 +0000
ROA not before: Wed 04 May 2022 09:24:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57000
IP address blocks: 46.149.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40972 (0xa00c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88775003f7d9e8e6e1ef48db06728e668ed187bc
Validity
Not Before: May 4 09:24:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=066b409bcc5b608ce8a13782e8101b7b8b419c93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:30:71:72:d5:b0:a9:38:ae:5d:b0:05:07:4d:
d1:49:8b:c6:f4:61:7f:75:f6:ea:3c:bb:ab:5a:0f:
e0:65:c1:9b:82:fc:7e:a5:13:6c:d0:1e:a9:a8:2b:
ba:86:52:17:ff:6d:a1:e8:10:66:68:5a:e1:f4:54:
e3:21:a8:08:08:4e:42:04:52:f7:95:cb:da:09:6b:
60:19:f6:68:df:56:d6:07:43:c2:99:d8:fd:66:84:
fb:8c:d3:e8:90:34:6d:96:c8:bf:57:d2:93:9b:e7:
53:a8:80:80:a2:81:ca:a3:b2:a6:e6:61:3b:5f:a6:
08:96:9a:55:3b:1f:7d:02:16:eb:ba:a0:de:79:37:
d6:6d:5f:79:d9:65:fa:f7:1d:0d:d0:73:86:33:f3:
5f:c1:51:50:b1:22:f4:86:f1:b3:b5:ab:93:8b:09:
48:5a:c0:68:cb:d4:2a:cf:25:a6:db:e9:6f:87:50:
b7:6b:fe:c6:6a:e5:08:a0:84:3b:67:12:15:51:5d:
1d:ab:da:1f:85:29:98:94:8f:de:3d:49:96:db:52:
51:0f:69:5c:fb:c4:80:c7:6c:77:ad:d7:75:8f:58:
bd:0f:96:61:18:3f:0f:1c:05:10:2f:1d:09:2b:09:
3b:ef:8f:8d:cd:71:3e:75:f1:1a:19:25:35:4c:71:
5e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:6B:40:9B:CC:5B:60:8C:E8:A1:37:82:E8:10:1B:7B:8B:41:9C:93
X509v3 Authority Key Identifier:
keyid:88:77:50:03:F7:D9:E8:E6:E1:EF:48:DB:06:72:8E:66:8E:D1:87:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iHdQA_fZ6Obh70jbBnKOZo7Rh7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/9b8d3b-0c03-4591-bd0f-87750d6f77a8/1/BmtAm8xbYIzooTeC6BAbe4tBnJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/9b8d3b-0c03-4591-bd0f-87750d6f77a8/1/iHdQA_fZ6Obh70jbBnKOZo7Rh7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.149.96.0/24
Signature Algorithm: sha256WithRSAEncryption
18:4f:4c:1d:8b:39:35:77:2b:cc:90:62:03:8f:d7:33:e5:89:
72:bd:51:b2:29:da:ce:91:ae:2b:e4:87:18:51:fe:b6:5a:85:
fd:90:2f:e7:49:38:19:91:56:d8:8b:c9:51:72:5d:40:1c:f2:
75:c8:db:74:0b:e3:89:10:76:5c:70:e2:06:53:9b:20:16:52:
0f:db:17:69:3e:b8:10:2d:32:1f:6f:e3:9e:a4:05:93:27:79:
88:33:7b:00:76:52:32:13:5d:cd:23:6c:6f:43:a7:cd:af:44:
87:e3:c2:db:38:dc:a7:fc:5e:bc:00:35:d3:3c:7c:9f:54:84:
d0:a9:5e:da:b8:39:35:35:e2:d1:13:1d:0e:a3:f7:78:17:57:
80:45:d0:0d:79:90:23:db:ff:a8:24:5f:7c:86:5f:d4:05:07:
77:d3:aa:2e:7e:2b:3f:fc:00:37:22:f0:09:4d:10:af:93:be:
02:25:aa:3d:27:e5:e7:01:34:88:e9:d1:ba:d1:21:1b:02:c6:
7a:9c:f3:91:4d:79:d9:30:0a:5c:4e:fc:23:1c:5a:21:08:b3:
2a:ae:3e:17:0e:a4:f6:a5:50:a5:ef:88:82:36:51:3d:25:5d:
a0:22:5c:95:0a:f8:2a:ce:c5:de:64:63:66:a7:11:cf:ea:55:
3a:60:ea:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:55 2023 by rpki-client on console-fra.rpki-client.org