Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/79ff5d-6dfe-441b-a21d-135c40217b86/1/Btz6_qZ5Iw03MM-vsICb5QU0N0U.roa
File: Btz6_qZ5Iw03MM-vsICb5QU0N0U.roa (raw, json)
Hash identifier: vklW0MN9XYBEKhDJx3gM2zA5cpoSryLbVSTqrpJGmxw=
Subject key identifier: 06:DC:FA:FE:A6:79:23:0D:37:30:CF:AF:B0:80:9B:E5:05:34:37:45
Certificate issuer: /CN=bc20d41ad3570ed888c3b9a395843d28c4bde70e
Certificate serial: 380BFE07
Authority key identifier: BC:20:D4:1A:D3:57:0E:D8:88:C3:B9:A3:95:84:3D:28:C4:BD:E7:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vCDUGtNXDtiIw7mjlYQ9KMS95w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/79ff5d-6dfe-441b-a21d-135c40217b86/1/Btz6_qZ5Iw03MM-vsICb5QU0N0U.roa
Signing time: Sat 01 Jan 2022 13:00:00 +0000
ROA not before: Sat 01 Jan 2022 13:00:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48417
IP address blocks: 94.247.32.0/21 maxlen: 24
185.21.160.0/22 maxlen: 24
2a02:db8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 940310023 (0x380bfe07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc20d41ad3570ed888c3b9a395843d28c4bde70e
Validity
Not Before: Jan 1 13:00:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06dcfafea679230d3730cfafb0809be505343745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1e:e0:f2:11:c9:44:a5:a6:72:42:fd:be:78:
3f:52:34:be:66:66:ea:41:21:92:86:da:14:f4:7e:
e3:60:c7:93:21:4f:e7:54:a4:3d:75:bb:39:d1:19:
d9:fb:4b:e6:df:05:e0:78:b4:74:63:fe:17:67:37:
a5:54:3c:6e:88:bb:dd:8b:25:fb:df:d6:7c:78:0f:
ee:37:75:21:82:5b:b6:74:29:4a:0b:2e:6c:64:ad:
73:63:fa:c9:5b:9a:bf:4f:9c:35:ee:01:02:41:9f:
ff:43:f1:68:43:b7:12:2f:77:39:92:b1:7e:f0:8a:
f5:65:70:64:94:fb:28:66:54:eb:88:28:91:7d:3e:
a9:dc:c1:07:c3:26:ff:af:ba:a3:cd:fe:91:91:b2:
ba:35:dc:7c:c0:4b:92:de:16:0e:e0:9d:50:07:61:
66:f5:ef:a6:10:ba:9a:d5:bd:25:91:64:67:b9:e4:
1b:92:b5:27:a4:c7:aa:8a:ad:9e:56:8e:6d:be:aa:
3d:07:a6:b2:b7:99:e4:3e:0d:13:0d:a4:53:3d:02:
5c:36:92:4f:f2:5d:da:65:d9:b4:f1:63:4a:3e:ac:
f8:9b:b7:cb:ce:f8:c5:93:a3:69:ad:c1:e8:1e:8c:
a0:25:4d:f1:e9:7c:5e:ef:12:dc:a0:bf:62:da:e6:
79:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:DC:FA:FE:A6:79:23:0D:37:30:CF:AF:B0:80:9B:E5:05:34:37:45
X509v3 Authority Key Identifier:
keyid:BC:20:D4:1A:D3:57:0E:D8:88:C3:B9:A3:95:84:3D:28:C4:BD:E7:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vCDUGtNXDtiIw7mjlYQ9KMS95w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/79ff5d-6dfe-441b-a21d-135c40217b86/1/Btz6_qZ5Iw03MM-vsICb5QU0N0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/79ff5d-6dfe-441b-a21d-135c40217b86/1/vCDUGtNXDtiIw7mjlYQ9KMS95w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.247.32.0/21
185.21.160.0/22
IPv6:
2a02:db8::/32
Signature Algorithm: sha256WithRSAEncryption
15:84:6e:a8:35:7d:6d:0c:d6:7d:37:13:b1:62:c2:e3:3d:11:
4b:5f:0d:2c:40:20:bb:23:00:f2:24:fe:32:09:12:72:5e:83:
42:93:18:88:fb:fd:99:73:bf:56:64:55:78:fe:ea:82:0b:e5:
62:c5:8e:d7:41:fe:ac:9d:15:b0:3d:ff:24:df:08:cf:70:15:
25:ef:91:e0:1c:86:1b:ef:0b:72:6f:17:33:1d:fb:ba:3f:94:
9f:71:ac:cc:be:17:a5:5c:32:95:c6:7d:e8:f5:09:4b:62:b8:
c4:9a:57:c1:2a:72:f0:c1:c6:fd:98:66:10:21:dc:f9:b1:fe:
be:52:89:35:8a:5f:d7:9e:3f:87:ca:14:1a:d7:76:c6:23:9b:
cf:5f:1b:fa:02:23:48:c8:33:bf:a8:5b:7b:5a:d5:51:7c:09:
1b:f5:32:1b:00:20:e4:04:37:de:78:46:3a:d1:a5:39:4d:0f:
f6:48:20:99:35:3a:37:a5:fd:39:d6:1b:8d:80:ed:8e:d8:a3:
f8:4b:87:37:d1:14:60:e3:d4:55:6c:68:fb:75:84:f2:a5:60:
c2:53:c9:e2:1c:f2:cf:48:b6:2a:8f:7a:66:22:21:23:61:b6:
e5:0d:29:4d:91:02:c3:b1:8c:95:7d:9d:c5:d4:8a:bc:44:77:
2b:cb:ac:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:24 2024 by rpki-client on console-fra.rpki-client.org