Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/bb0e7b-2a81-4970-b3bd-686f0a0616cc/1/Bo3rgGB019thHW_2A7VjHyv1z1E.roa
File: Bo3rgGB019thHW_2A7VjHyv1z1E.roa (raw, json)
Hash identifier: xN6N1ImrDcT9DslYrJuL3X2WlYOhPlRFWxcKgyxZpxI=
Subject key identifier: 06:8D:EB:80:60:74:D7:DB:61:1D:6F:F6:03:B5:63:1F:2B:F5:CF:51
Certificate issuer: /CN=38e7f47bb9b91657e5726bfcb2def8aad973e268
Certificate serial: 06B05D5A
Authority key identifier: 38:E7:F4:7B:B9:B9:16:57:E5:72:6B:FC:B2:DE:F8:AA:D9:73:E2:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OOf0e7m5Flflcmv8st74qtlz4mg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/bb0e7b-2a81-4970-b3bd-686f0a0616cc/1/Bo3rgGB019thHW_2A7VjHyv1z1E.roa
Signing time: Sat 01 Jan 2022 02:59:01 +0000
ROA not before: Sat 01 Jan 2022 02:59:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59796
IP address blocks: 193.84.78.0/24 maxlen: 24
193.84.85.0/24 maxlen: 24
193.84.88.0/24 maxlen: 24
193.84.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112221530 (0x6b05d5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38e7f47bb9b91657e5726bfcb2def8aad973e268
Validity
Not Before: Jan 1 02:59:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=068deb806074d7db611d6ff603b5631f2bf5cf51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b5:cf:46:9d:7b:38:da:84:3c:ff:45:b1:44:
65:41:14:2e:8c:dc:9e:29:46:02:bf:7f:e4:28:96:
c0:1d:a4:b6:5d:1e:80:02:c5:ba:2f:0b:90:d3:1a:
fb:f2:ba:6c:ed:01:a0:87:0c:28:fc:27:c9:53:8b:
95:12:31:3b:37:3a:05:d7:ac:15:d2:a5:fe:1c:fb:
c8:02:4f:f2:16:9f:9c:b3:09:b9:73:e8:36:31:bc:
32:c4:fd:bd:92:66:a4:d3:4d:0f:16:ab:c6:62:55:
c7:ee:a1:1b:68:6b:c5:e0:ca:0e:05:50:0f:e0:de:
bf:e6:a5:2f:53:38:43:f3:5a:50:81:ca:ee:3c:63:
ce:b9:3f:47:dc:b6:5f:7a:ce:37:a1:15:42:6d:bb:
2f:b9:22:6b:90:45:1c:82:e7:d8:fb:0c:00:94:a7:
b2:61:6d:a0:05:44:7f:a9:bf:67:f3:e3:33:0f:24:
52:a7:17:7e:9e:0b:3c:b3:f5:0f:74:45:15:99:4d:
d0:de:0e:6a:ca:91:01:08:5c:4c:7d:79:94:31:c9:
58:fa:23:42:06:b6:c9:f0:f9:77:c7:62:5e:a7:15:
49:27:62:c1:2b:79:28:6b:26:14:f0:85:c1:de:13:
5b:be:1e:22:77:51:f1:86:da:c7:26:9d:f6:cb:db:
12:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:8D:EB:80:60:74:D7:DB:61:1D:6F:F6:03:B5:63:1F:2B:F5:CF:51
X509v3 Authority Key Identifier:
keyid:38:E7:F4:7B:B9:B9:16:57:E5:72:6B:FC:B2:DE:F8:AA:D9:73:E2:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OOf0e7m5Flflcmv8st74qtlz4mg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bb0e7b-2a81-4970-b3bd-686f0a0616cc/1/Bo3rgGB019thHW_2A7VjHyv1z1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bb0e7b-2a81-4970-b3bd-686f0a0616cc/1/OOf0e7m5Flflcmv8st74qtlz4mg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.78.0/24
193.84.85.0/24
193.84.88.0/24
193.84.90.0/24
Signature Algorithm: sha256WithRSAEncryption
53:1d:ba:44:a0:9f:67:98:c2:c4:b8:d2:af:24:23:c1:c9:ea:
8c:9f:3c:39:0b:ef:ef:b0:57:8b:3d:f3:67:33:26:5e:32:3a:
62:1b:9d:2c:71:67:8c:30:a1:62:e7:3e:4f:7e:c0:2a:7e:d7:
be:c1:e0:54:74:ed:34:bb:a8:20:98:0e:8a:65:aa:84:25:73:
87:8d:50:7b:03:78:ac:02:d2:e6:1b:95:a7:8e:d6:ac:f9:48:
f2:1f:1f:e6:e9:e7:1a:9c:8d:db:8d:6e:57:27:33:57:40:a5:
11:82:0b:39:12:55:0d:b0:05:90:de:3a:01:2f:cf:12:f9:ae:
5e:de:15:68:0b:09:ea:7d:1c:bf:03:1d:76:cf:24:6c:a7:f1:
87:1c:38:6f:05:5c:21:11:9f:b0:bf:80:f1:98:5f:a7:76:f1:
99:70:60:e4:02:79:0d:69:66:25:81:57:7b:97:9e:37:4d:53:
c9:b6:38:18:52:42:de:24:ab:1b:53:3f:cd:f4:ee:42:9e:a3:
b1:2e:22:19:7b:6b:d3:12:c5:31:50:ac:6b:5a:7d:26:c6:cb:
e3:41:7a:ad:e6:a3:6e:4b:a2:ca:77:db:ee:74:56:ea:e7:65:
cc:48:43:35:fa:92:be:25:af:6f:ca:50:79:73:f1:2c:0b:86:
46:35:ce:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:14 2023 by rpki-client on console-fra.rpki-client.org