Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/414ef4-4c1f-4256-88c9-f4d5e84ac1dd/1/BfHZpFm4a6GAuoE8vMZ4f8PMtMQ.roa
File: BfHZpFm4a6GAuoE8vMZ4f8PMtMQ.roa (raw, json)
Hash identifier: Oa0J2M5QH3BwSXUB08aWMcqrBsy1XhtgQBi0+QF9XLg=
Subject key identifier: 05:F1:D9:A4:59:B8:6B:A1:80:BA:81:3C:BC:C6:78:7F:C3:CC:B4:C4
Certificate issuer: /CN=dbcc2bbaf3e0d4342a014f8b70f873cee9a8cac5
Certificate serial: 0D681A89
Authority key identifier: DB:CC:2B:BA:F3:E0:D4:34:2A:01:4F:8B:70:F8:73:CE:E9:A8:CA:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28wruvPg1DQqAU-LcPhzzumoysU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/414ef4-4c1f-4256-88c9-f4d5e84ac1dd/1/BfHZpFm4a6GAuoE8vMZ4f8PMtMQ.roa
Signing time: Mon 11 Apr 2022 10:44:47 +0000
ROA not before: Mon 11 Apr 2022 10:44:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204922
IP address blocks: 193.16.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 224926345 (0xd681a89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbcc2bbaf3e0d4342a014f8b70f873cee9a8cac5
Validity
Not Before: Apr 11 10:44:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05f1d9a459b86ba180ba813cbcc6787fc3ccb4c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:cd:a2:ab:3c:e6:db:c5:9d:4a:c0:c3:9b:7a:
e0:75:b2:7a:bb:90:db:c7:84:d9:e0:22:f5:60:3a:
45:f8:0a:f9:02:0e:79:31:0d:12:64:e8:a3:a6:45:
95:fe:eb:0f:8d:bf:48:61:23:bc:e5:26:63:ee:c9:
51:73:15:42:85:8b:a0:3d:18:46:2d:47:dc:5e:1e:
17:ad:8c:54:d4:6c:f9:36:4a:a3:f1:4b:b9:5f:ab:
93:5f:a6:52:30:cc:ad:9b:90:eb:7e:f4:d7:2b:a3:
ad:4c:19:de:ea:1b:70:4e:4f:65:d3:45:6c:26:c3:
8f:1f:52:a5:ab:ca:0f:c8:48:e5:70:bb:7a:fd:ed:
83:03:7f:de:2d:84:4d:21:4d:6c:03:79:36:c6:9a:
b3:d3:2b:90:db:7c:79:cf:d9:48:7c:ca:85:9d:47:
a0:0f:83:61:3c:fc:af:65:64:8c:26:af:b8:b1:9a:
46:f1:1b:8b:e4:54:3c:28:15:5d:95:20:e2:73:1a:
13:4d:35:45:a5:f5:37:77:45:a9:87:a2:ec:67:13:
91:d1:39:e2:46:70:2a:af:cc:ac:cd:74:67:33:b7:
80:7f:6f:94:7d:fc:c0:3e:9f:40:67:72:55:d8:a0:
4d:d2:83:11:45:a0:4b:0f:34:4c:de:8a:17:aa:60:
ea:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F1:D9:A4:59:B8:6B:A1:80:BA:81:3C:BC:C6:78:7F:C3:CC:B4:C4
X509v3 Authority Key Identifier:
keyid:DB:CC:2B:BA:F3:E0:D4:34:2A:01:4F:8B:70:F8:73:CE:E9:A8:CA:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28wruvPg1DQqAU-LcPhzzumoysU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/414ef4-4c1f-4256-88c9-f4d5e84ac1dd/1/BfHZpFm4a6GAuoE8vMZ4f8PMtMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/414ef4-4c1f-4256-88c9-f4d5e84ac1dd/1/28wruvPg1DQqAU-LcPhzzumoysU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.234.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:2e:be:4d:32:7a:3e:f0:83:14:15:d7:eb:74:35:c8:7c:54:
41:07:d5:0d:57:a2:b9:e9:f3:33:df:5b:c0:dc:50:5c:f5:ee:
28:62:7e:fb:5d:7e:27:a7:e7:f1:37:76:e4:1c:f5:ff:56:76:
3e:a9:59:7f:5d:5f:bf:ac:bd:18:cb:55:a6:4a:cd:1b:02:77:
e5:41:9b:25:15:5f:eb:33:2d:cd:a0:80:53:01:7c:19:bc:27:
8e:3f:bd:70:8c:b2:1c:13:54:df:e2:53:4a:3e:0c:57:13:14:
86:57:e9:2b:e1:5f:d5:bf:58:d4:26:a7:6d:af:09:2c:2b:eb:
44:bc:93:9c:b7:16:c1:23:88:f6:32:05:06:54:68:4b:99:58:
d0:36:2d:c2:a9:3c:60:44:41:29:23:9c:a3:ae:33:10:5c:6a:
ee:fa:98:69:ee:2d:0e:e9:72:44:9f:10:69:ec:ca:27:13:63:
86:96:3b:f8:a6:5d:8c:bf:1c:61:cf:3a:bd:9a:41:17:a3:2a:
a3:60:02:0b:25:85:8d:88:04:79:e0:a6:aa:e1:42:16:7c:e8:
10:be:fd:db:50:72:b4:29:c1:9c:0a:93:03:86:18:9f:1a:00:
f3:4e:64:fa:ee:6b:af:35:d9:c9:ec:47:76:4c:a7:40:62:b9:
8b:79:1a:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:19 2024 by rpki-client on console-ams.rpki-client.org