Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/bc6892-1779-457c-9214-0aa9d97c8c98/1/bvUB3-BmnQStbLZQVCndxM9kanI.roa
File: bvUB3-BmnQStbLZQVCndxM9kanI.roa (raw, json)
Hash identifier: e87L85mA87asJbbgPajqdn8rg+QQaobCUPtK7CLorn0=
Subject key identifier: 6E:F5:01:DF:E0:66:9D:04:AD:6C:B6:50:54:29:DD:C4:CF:64:6A:72
Certificate issuer: /CN=429196310a7f7dd9999ec43e938fd906985a3f87
Certificate serial: 01831CBFEA4EC88EE1515A49E25E1A563B3C
Authority key identifier: 42:91:96:31:0A:7F:7D:D9:99:9E:C4:3E:93:8F:D9:06:98:5A:3F:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpGWMQp_fdmZnsQ-k4_ZBphaP4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc6892-1779-457c-9214-0aa9d97c8c98/1/bvUB3-BmnQStbLZQVCndxM9kanI.roa
Signing time: Thu 08 Sep 2022 10:58:02 +0000
ROA not before: Thu 08 Sep 2022 10:58:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16171
IP address blocks: 185.144.124.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1c:bf:ea:4e:c8:8e:e1:51:5a:49:e2:5e:1a:56:3b:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429196310a7f7dd9999ec43e938fd906985a3f87
Validity
Not Before: Sep 8 10:58:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ef501dfe0669d04ad6cb6505429ddc4cf646a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:86:83:30:73:e0:a8:54:5f:4d:5a:5c:5e:fb:
3c:d3:6b:f2:ae:05:f4:81:78:06:ce:0c:f6:62:15:
ce:a7:50:f5:31:be:0c:94:93:1c:89:4b:cf:e2:ca:
cf:5b:22:55:73:40:4b:23:54:f2:1a:ae:47:20:89:
5f:4c:df:32:de:13:96:d7:2f:30:2b:18:ad:a0:5c:
8a:7f:86:6e:19:5e:e1:02:19:ee:c6:a1:65:f7:9f:
9a:fd:ee:d5:60:d7:5f:19:60:47:98:b9:83:d7:7f:
a4:d8:23:b2:b8:6c:3d:e3:ad:63:a8:6c:73:02:e1:
cf:e5:7e:12:34:6d:c9:91:1a:31:9a:1d:3f:26:f2:
0c:9a:3f:fe:7d:f8:75:e0:4a:3c:d2:49:97:37:c5:
25:a6:bc:04:f6:5b:41:78:5b:ec:fd:ef:f9:43:d8:
89:36:4c:33:59:bc:e3:de:cb:f6:79:8d:59:4b:2a:
be:17:3b:db:6b:0b:d2:b7:38:74:fc:37:46:5e:0c:
0c:2e:d3:8b:9e:e6:ac:85:84:42:60:d2:f4:b8:c8:
63:6d:6d:a0:ca:6c:05:cb:b5:b1:02:07:9b:22:86:
a1:c6:c6:57:54:db:fe:07:45:08:45:83:a3:e7:f9:
35:0e:7f:9d:16:88:ed:b5:6d:4d:7d:39:c5:56:90:
50:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:F5:01:DF:E0:66:9D:04:AD:6C:B6:50:54:29:DD:C4:CF:64:6A:72
X509v3 Authority Key Identifier:
keyid:42:91:96:31:0A:7F:7D:D9:99:9E:C4:3E:93:8F:D9:06:98:5A:3F:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpGWMQp_fdmZnsQ-k4_ZBphaP4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc6892-1779-457c-9214-0aa9d97c8c98/1/bvUB3-BmnQStbLZQVCndxM9kanI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc6892-1779-457c-9214-0aa9d97c8c98/1/QpGWMQp_fdmZnsQ-k4_ZBphaP4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.124.0/23
Signature Algorithm: sha256WithRSAEncryption
72:37:da:8e:9d:44:4a:88:ab:73:9d:11:6f:30:11:46:98:93:
36:c9:82:60:6d:e2:fd:6c:64:69:2f:58:69:45:c3:56:b9:b8:
aa:ef:b1:6f:d8:53:5a:ec:fd:4a:be:4d:07:db:2b:48:b3:5b:
f3:7e:c9:e6:67:cf:c7:43:8c:28:59:82:6e:90:9c:a4:5e:f4:
36:6a:bb:8a:ca:db:47:df:15:7a:a9:4d:1a:52:b9:85:71:9d:
4d:53:5e:23:e6:f1:a2:bb:e7:47:5a:b4:67:88:6c:46:79:a8:
18:e3:6e:d4:99:34:55:ac:cc:0b:c9:ea:8f:ea:95:6e:36:92:
6c:4c:a1:db:fa:65:10:8a:b4:9f:b1:5a:dd:d6:e3:4c:ed:01:
43:2c:01:66:f9:4f:11:df:8a:7f:97:0a:2d:10:b0:1b:8e:d3:
dc:06:59:4d:26:f4:3d:89:af:98:68:f4:3f:b7:8a:1f:18:98:
a9:31:16:5d:91:a5:43:1a:43:73:59:96:6c:fa:56:30:58:fb:
f2:6b:69:2f:b3:70:6e:83:6f:5b:4c:34:cf:02:63:bd:79:33:
75:b4:61:73:4e:ee:3f:af:04:c9:b1:dc:f1:d5:21:1a:e6:c5:
ba:d3:3a:f5:5d:51:9c:be:12:33:64:4a:4e:49:4d:c9:d2:4e:
ce:d0:ce:03
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYMcv+pOyI7hUVpJ4l4aVjs8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyOTE5NjMxMGE3ZjdkZDk5OTllYzQzZTkzOGZkOTA2OTg1
YTNmODcwHhcNMjIwOTA4MTA1ODAyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZWY1MDFkZmUwNjY5ZDA0YWQ2Y2I2NTA1NDI5ZGRjNGNmNjQ2YTcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAloaDMHPgqFRfTVpcXvs802vyrgX0
gXgGzgz2YhXOp1D1Mb4MlJMciUvP4srPWyJVc0BLI1TyGq5HIIlfTN8y3hOW1y8w
KxitoFyKf4ZuGV7hAhnuxqFl95+a/e7VYNdfGWBHmLmD13+k2COyuGw9461jqGxz
AuHP5X4SNG3JkRoxmh0/JvIMmj/+ffh14Eo80kmXN8UlprwE9ltBeFvs/e/5Q9iJ
NkwzWbzj3sv2eY1ZSyq+FzvbawvStzh0/DdGXgwMLtOLnuashYRCYNL0uMhjbW2g
ymwFy7WxAgebIoahxsZXVNv+B0UIRYOj5/k1Dn+dFojttW1NfTnFVpBQtwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG71Ad/gZp0ErWy2UFQp3cTPZGpyMB8GA1UdIwQY
MBaAFEKRljEKf33ZmZ7EPpOP2QaYWj+HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXBHV01RcF9mZG1abnNRLWs0X1pCcGhhUDRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9iYzY4OTItMTc3OS00NTdjLTkyMTQt
MGFhOWQ5N2M4Yzk4LzEvYnZVQjMtQm1uUVN0YkxaUVZDbmR4TTlrYW5JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS9iYzY4OTItMTc3OS00NTdjLTkyMTQtMGFhOWQ5N2M4Yzk4
LzEvUXBHV01RcF9mZG1abnNRLWs0X1pCcGhhUDRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuZB8MA0G
CSqGSIb3DQEBCwUAA4IBAQByN9qOnURKiKtznRFvMBFGmJM2yYJgbeL9bGRpL1hp
RcNWubiq77Fv2FNa7P1Kvk0H2ytIs1vzfsnmZ8/HQ4woWYJukJykXvQ2aruKyttH
3xV6qU0aUrmFcZ1NU14j5vGiu+dHWrRniGxGeagY427UmTRVrMwLyeqP6pVuNpJs
TKHb+mUQirSfsVrd1uNM7QFDLAFm+U8R34p/lwotELAbjtPcBllNJvQ9ia+YaPQ/
t4ofGJipMRZdkaVDGkNzWZZs+lYwWPvya2kvs3Bug29bTDTPAmO9eTN1tGFzTu4/
rwTJsdzx1SEa5sW60zr1XVGcvhIzZEpOSU3J0k7O0M4D
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:32 2023 by rpki-client on console-fra.rpki-client.org