Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/bd0d7d-f425-408a-b07d-07711ed02b75/1/bmTZTXeplA0-tYHc5mM_9nTwNdg.roa
File: bmTZTXeplA0-tYHc5mM_9nTwNdg.roa (raw, json)
Hash identifier: aaOCptfX0cI1WW8+9tRU9ARI/dGrGThRMsnEDvFVmqE=
Subject key identifier: 6E:64:D9:4D:77:A9:94:0D:3E:B5:81:DC:E6:63:3F:F6:74:F0:35:D8
Certificate issuer: /CN=d6e535ef216ebe6f7fc55cfbdc31532b912d8e63
Certificate serial: 01853944E5F6A658C3D1228426DEC0733252
Authority key identifier: D6:E5:35:EF:21:6E:BE:6F:7F:C5:5C:FB:DC:31:53:2B:91:2D:8E:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1uU17yFuvm9_xVz73DFTK5EtjmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/bd0d7d-f425-408a-b07d-07711ed02b75/1/bmTZTXeplA0-tYHc5mM_9nTwNdg.roa
Signing time: Thu 22 Dec 2022 09:58:14 +0000
ROA not before: Thu 22 Dec 2022 09:58:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47692
IP address blocks: 81.173.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:39:44:e5:f6:a6:58:c3:d1:22:84:26:de:c0:73:32:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6e535ef216ebe6f7fc55cfbdc31532b912d8e63
Validity
Not Before: Dec 22 09:58:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e64d94d77a9940d3eb581dce6633ff674f035d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:85:4e:d8:38:c9:f0:e9:d2:b5:7e:0e:40:e9:
58:6a:e9:f4:30:47:cd:76:1a:e1:9f:f6:bb:64:8e:
c3:ac:21:69:c7:29:c9:ce:96:23:63:48:31:34:38:
ee:3c:9b:25:7c:24:4a:64:39:01:f8:b3:f3:fa:f5:
3d:00:53:65:a1:42:5d:cd:f7:43:ea:6a:10:1b:73:
9b:b5:da:8b:d3:54:e0:31:91:6a:40:56:07:68:6b:
cf:83:5a:d0:19:0e:70:1f:0d:61:e2:ba:1f:19:96:
8c:85:b9:17:bf:c8:d7:9a:3b:fc:59:93:c3:9e:01:
22:ae:57:44:2d:66:c6:67:4e:54:c9:ea:5c:fa:3d:
a9:1d:c3:1a:99:3c:71:85:61:82:4e:7f:37:9e:37:
7f:7c:92:e6:22:bb:d9:a1:cb:3f:2e:a5:14:84:a0:
86:e7:96:74:4f:82:9b:ef:d8:25:6e:b6:95:5e:9d:
2c:fb:48:be:09:53:28:43:43:07:3c:cd:e1:c7:9a:
40:08:92:4c:c9:59:c4:c1:6d:d5:4a:39:66:df:ea:
6b:d3:9b:39:47:07:29:29:2b:12:23:5b:a8:3c:a6:
3f:05:ae:99:d7:0d:f2:af:14:fb:45:eb:ca:ba:db:
8d:a5:ee:79:46:a5:57:67:8c:85:11:bc:f2:f0:bb:
29:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:64:D9:4D:77:A9:94:0D:3E:B5:81:DC:E6:63:3F:F6:74:F0:35:D8
X509v3 Authority Key Identifier:
keyid:D6:E5:35:EF:21:6E:BE:6F:7F:C5:5C:FB:DC:31:53:2B:91:2D:8E:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1uU17yFuvm9_xVz73DFTK5EtjmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bd0d7d-f425-408a-b07d-07711ed02b75/1/bmTZTXeplA0-tYHc5mM_9nTwNdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bd0d7d-f425-408a-b07d-07711ed02b75/1/1uU17yFuvm9_xVz73DFTK5EtjmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.173.84.0/22
Signature Algorithm: sha256WithRSAEncryption
28:53:b9:ad:2e:7d:30:e3:df:41:b8:3c:1c:00:69:53:f8:b5:
a1:23:79:69:17:6d:e5:14:5f:96:5c:02:dc:5c:30:86:f8:0e:
41:ae:c4:21:ed:8c:bd:c6:a1:54:28:2d:26:9e:d6:1c:96:0e:
ff:84:e7:df:c1:df:2c:7c:33:a0:5f:7c:72:44:41:5f:58:83:
66:2b:23:ca:32:04:58:df:bb:7d:29:5f:aa:00:35:7e:18:a8:
33:c8:80:92:95:e2:66:cd:2b:a7:19:1f:be:5d:77:dc:b4:97:
59:97:b2:43:7a:57:94:68:58:03:45:26:2c:32:38:33:d8:df:
c7:d7:93:9e:4f:77:30:b1:22:ff:50:81:b7:a3:7e:5b:8a:93:
2b:30:92:45:c9:21:c1:06:2b:82:48:e2:3f:1a:fd:fe:9a:fa:
25:22:45:3a:48:3e:f1:2a:e8:c5:58:8a:98:5e:d7:32:51:cf:
08:6f:50:2f:75:8c:d0:86:20:dc:28:87:ad:f0:21:ab:3d:3a:
54:05:6d:3a:3c:33:0a:cc:d4:66:1f:06:28:85:08:9b:27:64:
18:58:5b:8c:dc:ad:1a:59:23:9f:77:1f:79:c4:ef:51:41:80:
40:85:75:4d:3c:c8:32:92:70:9b:8d:9e:d0:be:2b:8f:86:b8:
5d:40:dd:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:21 2024 by rpki-client on console-fra.rpki-client.org