Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/BSJypBcVz-V0wj8bf7O5ng9G7CU.roa
File: BSJypBcVz-V0wj8bf7O5ng9G7CU.roa (raw, json)
Hash identifier: qudQgxEok0nwzdhMlb5ijNWShhcD8Puox4EvoIA+LK0=
Subject key identifier: 05:22:72:A4:17:15:CF:E5:74:C2:3F:1B:7F:B3:B9:9E:0F:46:EC:25
Certificate issuer: /CN=1c5196ded5ba5d686e7095c6d5c638c6b8f8bada
Certificate serial: 0136E873
Authority key identifier: 1C:51:96:DE:D5:BA:5D:68:6E:70:95:C6:D5:C6:38:C6:B8:F8:BA:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HFGW3tW6XWhucJXG1cY4xrj4uto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/BSJypBcVz-V0wj8bf7O5ng9G7CU.roa
Signing time: Thu 17 Feb 2022 13:57:23 +0000
ROA not before: Thu 17 Feb 2022 13:57:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 91.207.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20375667 (0x136e873)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c5196ded5ba5d686e7095c6d5c638c6b8f8bada
Validity
Not Before: Feb 17 13:57:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=052272a41715cfe574c23f1b7fb3b99e0f46ec25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ce:e9:68:ca:60:f9:a9:bd:46:9b:b2:0a:03:
94:08:c9:05:4f:e6:19:10:12:97:1d:b2:5c:f2:0e:
07:ef:0e:27:d3:a4:35:33:c7:94:e0:82:00:f7:b7:
9a:24:21:a3:0a:57:e6:84:05:61:ac:45:39:88:a9:
cc:9e:9a:a9:d6:48:44:c5:63:6d:a3:65:5c:96:ff:
d0:d0:77:1d:25:ca:0f:82:c1:12:47:53:b9:d0:29:
5f:9b:a2:6a:2a:3c:f3:fa:19:c5:9a:db:44:3a:02:
c6:3c:b8:a5:db:24:19:68:93:e0:0c:fd:65:26:14:
32:81:cd:f0:1f:ce:78:68:d1:90:bf:fc:e8:92:7b:
e6:1f:20:b9:5d:21:0a:cb:89:1c:32:c9:a9:c9:92:
64:b2:cb:e9:f5:a1:fe:47:b4:41:a1:f5:d9:df:bb:
2f:e0:00:85:49:52:08:81:7a:aa:5a:b4:0d:5b:e2:
20:ce:98:c5:90:08:64:a8:dd:66:ca:0f:2d:b8:3c:
ad:69:33:45:dc:77:5f:a8:42:b8:b1:86:12:dd:e3:
95:e3:59:96:db:cd:3a:ce:dd:e1:bb:ed:5a:e8:e2:
4c:4c:3b:f8:db:3d:0a:b2:06:c9:13:0c:22:0d:6d:
91:c3:ba:f3:24:4a:50:49:ee:c1:b3:54:d3:b4:e1:
31:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:22:72:A4:17:15:CF:E5:74:C2:3F:1B:7F:B3:B9:9E:0F:46:EC:25
X509v3 Authority Key Identifier:
keyid:1C:51:96:DE:D5:BA:5D:68:6E:70:95:C6:D5:C6:38:C6:B8:F8:BA:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFGW3tW6XWhucJXG1cY4xrj4uto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/BSJypBcVz-V0wj8bf7O5ng9G7CU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/HFGW3tW6XWhucJXG1cY4xrj4uto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.0.0/24
Signature Algorithm: sha256WithRSAEncryption
91:fe:66:6e:de:a2:ff:06:df:19:f6:73:78:65:f6:b3:9d:6c:
10:47:78:45:28:f8:17:aa:b7:0f:d4:c5:3c:f7:c1:de:ba:a3:
c5:7c:09:d7:47:c7:a2:f5:27:55:78:c5:ba:dd:b8:6a:da:fd:
65:20:51:94:fe:5d:ce:dd:de:7f:c8:75:06:38:75:7c:12:2b:
1a:2e:9d:4d:f5:f1:f6:7d:ab:d7:32:23:50:b8:44:ed:38:c5:
ce:9c:62:34:9b:8d:bf:0d:fb:3e:33:46:16:0c:d3:0d:a7:27:
fc:f3:d4:75:c3:86:e9:7e:4a:1d:b3:30:56:19:f4:f8:06:af:
18:18:be:30:70:88:c1:82:51:d9:86:cc:dc:a5:da:a8:6f:1a:
17:57:b6:49:02:8a:cc:9b:8e:3a:c4:b9:4b:0a:f1:a3:12:c7:
46:e7:d7:56:ab:e0:21:d8:e0:72:e8:88:51:c9:5b:f6:09:d6:
ba:72:a9:6e:d4:e9:71:7a:dd:67:fc:83:9a:99:af:f6:28:40:
48:ca:9d:bb:b9:ad:20:a0:54:24:2e:0a:e5:b3:cc:57:98:a1:
50:93:f0:91:2c:02:12:3b:cc:c8:00:50:ae:1d:fa:dd:49:58:
10:ea:72:0b:ee:13:0b:48:ec:bc:a9:b3:44:43:39:dc:14:fc:
f5:87:f7:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:05 2024 by rpki-client on console-fra.rpki-client.org