Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/e3c854-2262-4895-b92a-f2c65a7013ef/1/bpBIhzN6_jcsLynIJwoeN7YmjYc.roa
File: bpBIhzN6_jcsLynIJwoeN7YmjYc.roa (raw, json)
Hash identifier: /pIo5l52nBI31yG3ihoa9e0Fh467xGhrD8O7Uqlgruk=
Subject key identifier: 6E:90:48:87:33:7A:FE:37:2C:2F:29:C8:27:0A:1E:37:B6:26:8D:87
Certificate issuer: /CN=111f4b0a73ac1b633d24ed5a094fde3a2ef51b94
Certificate serial: 06CEDC16
Authority key identifier: 11:1F:4B:0A:73:AC:1B:63:3D:24:ED:5A:09:4F:DE:3A:2E:F5:1B:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER9LCnOsG2M9JO1aCU_eOi71G5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/e3c854-2262-4895-b92a-f2c65a7013ef/1/bpBIhzN6_jcsLynIJwoeN7YmjYc.roa
Signing time: Sat 01 Jan 2022 14:07:12 +0000
ROA not before: Sat 01 Jan 2022 14:07:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44780
IP address blocks: 185.148.168.0/22 maxlen: 24
2a07:60c0::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114220054 (0x6cedc16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=111f4b0a73ac1b633d24ed5a094fde3a2ef51b94
Validity
Not Before: Jan 1 14:07:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e904887337afe372c2f29c8270a1e37b6268d87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4e:b5:a0:76:cc:2a:fa:ed:d5:94:92:b5:80:
fe:0f:af:f3:0e:83:4c:fd:25:65:3b:1d:f1:bc:a5:
b4:d1:ea:97:21:58:04:a5:4f:9f:1f:6a:08:4b:d3:
e6:28:64:1e:35:58:a9:8b:fc:3e:d1:29:33:64:94:
f4:5d:d7:f8:7e:fa:9c:2c:d0:b2:14:08:27:9b:43:
5a:42:bc:ab:07:00:66:09:89:6c:59:54:fc:43:44:
d8:3f:9f:16:25:3f:5d:b6:55:4f:38:6e:46:cd:93:
db:5f:00:10:1c:bd:3d:d2:1a:d6:06:77:e1:ce:5c:
a3:02:be:d5:10:c0:4d:fa:8c:92:af:93:8b:8c:7e:
01:df:8d:06:6c:73:6e:3c:17:c3:ee:df:bc:05:77:
97:24:1a:10:6f:a5:16:bd:8c:80:e5:ea:d2:9b:ed:
f4:55:6c:30:7d:ef:4f:34:aa:dd:e5:77:59:41:04:
b5:a9:04:fc:55:43:b0:a9:c7:1a:76:37:d3:7d:3b:
47:77:5f:20:52:17:d2:3d:4d:b1:4c:0f:5e:10:59:
23:60:1b:3c:8d:fd:04:6d:ec:53:3a:45:55:a6:df:
89:88:22:5c:ba:f5:8f:47:f5:5e:1c:0b:2e:20:0b:
2c:af:d2:64:79:24:21:5d:af:6c:ba:d7:57:26:84:
b2:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:90:48:87:33:7A:FE:37:2C:2F:29:C8:27:0A:1E:37:B6:26:8D:87
X509v3 Authority Key Identifier:
keyid:11:1F:4B:0A:73:AC:1B:63:3D:24:ED:5A:09:4F:DE:3A:2E:F5:1B:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER9LCnOsG2M9JO1aCU_eOi71G5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/e3c854-2262-4895-b92a-f2c65a7013ef/1/bpBIhzN6_jcsLynIJwoeN7YmjYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/e3c854-2262-4895-b92a-f2c65a7013ef/1/ER9LCnOsG2M9JO1aCU_eOi71G5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.168.0/22
IPv6:
2a07:60c0::/29
Signature Algorithm: sha256WithRSAEncryption
44:c9:e4:fe:20:f0:a4:92:b2:0a:df:e0:0d:e3:69:a0:65:c9:
19:14:4f:04:7b:c3:ad:71:1a:be:08:04:36:4b:6a:7e:67:f6:
e3:04:ac:f8:ac:c6:4d:25:3f:4c:25:0f:85:9d:f9:cf:24:83:
06:ba:ee:5b:9c:8b:6b:81:e9:dc:d8:79:3e:50:8f:2a:6f:cb:
15:cc:2d:4c:b7:9b:5b:fc:95:70:ca:08:01:35:9f:f4:33:07:
49:2d:9d:6e:d1:9a:20:43:00:62:ab:a0:d0:40:19:77:37:43:
52:88:2f:1f:61:07:99:c2:44:af:4a:e2:3e:aa:8d:8b:e6:1a:
a5:be:e9:eb:f5:59:56:c1:e7:b6:22:e5:48:99:b6:09:52:86:
0f:2e:08:58:67:2f:83:18:66:e2:58:97:8f:c1:fa:72:4a:a0:
1c:83:3f:c9:0b:35:4e:73:dc:41:5e:8b:95:e8:65:04:5a:c7:
31:ba:b1:2e:a1:1f:23:be:96:7e:7c:bc:c6:da:b7:24:b8:a9:
8d:c0:d4:cb:79:05:6a:2c:8a:b8:05:ac:4d:d7:c2:41:8f:cf:
a9:a0:07:e6:c9:f5:02:52:53:a0:6c:e4:41:fd:f9:89:33:e9:
71:a3:3e:7c:4e:e8:ea:fa:2d:43:ec:d3:78:eb:78:b8:ac:21:
67:26:53:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:21 2023 by rpki-client on console-ams.rpki-client.org