Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/bva3DLhr_wlkH_0aNor0tl-IMho.roa
File: bva3DLhr_wlkH_0aNor0tl-IMho.roa (raw, json)
Hash identifier: OVDQIVyIUFbD0Z1qYcWBji5+6Q5s0HUs+xO3FRjM4ec=
Subject key identifier: 6E:F6:B7:0C:B8:6B:FF:09:64:1F:FD:1A:36:8A:F4:B6:5F:88:32:1A
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018249BC4DC27E7EAEC2FB2947BCEB861C6D
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/bva3DLhr_wlkH_0aNor0tl-IMho.roa
Signing time: Fri 29 Jul 2022 11:34:13 +0000
ROA not before: Fri 29 Jul 2022 11:34:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212200
IP address blocks: 83.137.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:49:bc:4d:c2:7e:7e:ae:c2:fb:29:47:bc:eb:86:1c:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 29 11:34:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ef6b70cb86bff09641ffd1a368af4b65f88321a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:b9:73:ed:e0:21:0a:59:d7:c4:2c:57:65:3a:
68:62:5b:51:d4:a3:ac:8f:67:a9:1a:c3:9b:66:29:
cf:77:c3:c6:91:f5:b6:28:9d:b1:4c:80:fc:b9:39:
a8:78:47:ee:3b:1b:6e:f3:f7:3a:3c:42:a8:82:a6:
53:c4:bc:7d:1e:07:08:ae:59:df:bf:70:94:d7:f1:
c3:73:85:47:37:bf:59:77:03:9a:65:1b:1b:96:e8:
e3:d5:fb:25:b0:7c:5d:61:68:0a:cb:13:b4:b4:89:
26:b3:32:e9:21:50:62:86:13:a8:86:11:93:f7:ab:
38:45:8a:b7:bb:cd:4e:50:9a:58:ae:27:83:f2:00:
0c:71:7e:c2:69:85:95:db:2e:b2:f9:e6:17:a8:ef:
b7:f7:cf:a7:26:f4:de:1c:04:9a:9b:b4:ae:73:62:
31:99:47:55:f4:ab:af:5c:2b:8d:72:e9:32:3a:bb:
40:cc:52:13:82:21:97:7c:c4:c9:75:93:e2:17:f7:
07:43:de:3a:e1:ef:9e:4b:05:64:74:b5:7e:f3:23:
a5:10:6f:02:51:12:b3:af:06:50:65:7d:d4:7a:bd:
87:fe:44:37:68:a3:f6:f1:4d:bf:47:3f:55:cc:07:
47:a3:8e:63:e4:84:25:84:eb:6e:d5:43:10:75:d4:
67:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:F6:B7:0C:B8:6B:FF:09:64:1F:FD:1A:36:8A:F4:B6:5F:88:32:1A
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/bva3DLhr_wlkH_0aNor0tl-IMho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.137.158.0/24
Signature Algorithm: sha256WithRSAEncryption
56:62:58:4a:43:a8:31:4c:86:87:e7:fb:af:18:3e:25:57:e9:
ef:99:b9:d3:cc:41:c3:f5:36:22:e9:3e:39:a2:76:ab:62:bb:
dd:73:41:83:19:31:79:0b:74:4b:61:a9:e7:e1:53:5a:cd:ca:
72:63:ac:ee:d6:c7:a6:e2:10:eb:f9:43:a6:07:52:34:ad:24:
af:18:9c:40:5f:bf:83:82:1d:b7:90:db:98:e3:eb:a6:47:bc:
e3:56:c1:ff:72:61:9a:bb:64:ef:f4:72:c8:6a:ca:64:c1:04:
6b:2c:5c:f9:6e:9b:08:0e:d2:a0:49:80:d5:41:61:2b:11:0f:
d7:93:4f:e5:87:6d:c2:61:6c:1f:6d:8a:e8:a5:fa:35:24:ed:
5f:27:6b:29:13:dd:7a:1e:00:17:d8:f0:9f:68:5f:a2:c2:f7:
98:95:ca:a3:93:8a:36:c0:c7:32:78:90:f3:67:5d:68:85:39:
85:d2:53:ab:04:95:4d:54:a7:40:78:d1:aa:2d:35:d9:5f:69:
a5:0e:99:b8:95:44:1a:dc:44:9a:32:00:b3:b8:d2:18:10:cc:
cf:17:e3:7f:af:e7:ec:1c:03:22:8f:21:e3:68:d4:b7:b3:1a:
d9:7d:88:13:d1:bd:76:f9:41:42:38:66:11:8b:a5:69:a8:71:
0c:8e:9f:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:51 2023 by rpki-client on console-ams.rpki-client.org