Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/BG9fTHMBpkdvjcVp2PPiyq_HJRI.roa
File: BG9fTHMBpkdvjcVp2PPiyq_HJRI.roa (raw, json)
Hash identifier: n5o17MEvg+xxePbkzfJq7zzISnve2jiIaOdvcQj9KPI=
Subject key identifier: 04:6F:5F:4C:73:01:A6:47:6F:8D:C5:69:D8:F3:E2:CA:AF:C7:25:12
Certificate issuer: /CN=e760126dce78bc16e66c2e6e7635848ac46846af
Certificate serial: 01852FAB301B1282359403B63DE412AE3B3A
Authority key identifier: E7:60:12:6D:CE:78:BC:16:E6:6C:2E:6E:76:35:84:8A:C4:68:46:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/52ASbc54vBbmbC5udjWEisRoRq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/BG9fTHMBpkdvjcVp2PPiyq_HJRI.roa
Signing time: Tue 20 Dec 2022 13:13:46 +0000
ROA not before: Tue 20 Dec 2022 13:13:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211432
IP address blocks: 146.247.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2f:ab:30:1b:12:82:35:94:03:b6:3d:e4:12:ae:3b:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e760126dce78bc16e66c2e6e7635848ac46846af
Validity
Not Before: Dec 20 13:13:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=046f5f4c7301a6476f8dc569d8f3e2caafc72512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:40:f7:07:f8:91:89:dc:7f:a6:83:37:b8:7d:
a1:01:56:7c:c8:7a:10:4f:92:08:87:33:f0:70:0d:
00:19:e0:e2:6c:7a:18:79:c4:e3:cb:4a:6f:49:bb:
e5:c7:c4:51:72:ac:cf:61:ff:b9:76:39:5a:37:28:
54:13:db:28:f3:93:3c:c9:c5:e2:71:1e:c6:e0:d3:
32:ec:84:77:10:3c:4d:64:ba:4d:66:61:bf:54:96:
15:4a:20:88:ae:60:8f:5a:bd:70:19:52:37:1f:5f:
88:56:84:9c:2b:ca:3c:15:16:e2:70:a8:da:00:78:
ee:7c:a8:02:36:72:76:0c:25:3e:b4:a0:46:c9:82:
a6:ab:ce:ec:1f:e6:19:31:f2:78:c0:e1:1d:25:03:
61:5c:7f:f6:9f:84:ac:65:11:c0:56:90:74:b9:26:
7d:c2:0d:a2:43:e1:d3:50:9c:84:06:f2:7d:8f:ee:
83:28:9d:2e:4f:f2:bf:87:60:a1:31:e7:b8:46:1f:
64:48:1b:28:17:94:7a:9b:97:0e:0e:77:77:bc:c8:
7a:0f:e9:ba:54:d6:89:79:42:86:e1:4e:d7:04:2d:
82:8f:27:84:b8:5e:94:ca:4a:d1:d2:25:71:4c:4c:
f6:7a:b1:96:cf:e5:33:47:58:3b:a1:f5:d0:9f:34:
13:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:6F:5F:4C:73:01:A6:47:6F:8D:C5:69:D8:F3:E2:CA:AF:C7:25:12
X509v3 Authority Key Identifier:
keyid:E7:60:12:6D:CE:78:BC:16:E6:6C:2E:6E:76:35:84:8A:C4:68:46:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/52ASbc54vBbmbC5udjWEisRoRq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/BG9fTHMBpkdvjcVp2PPiyq_HJRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/52ASbc54vBbmbC5udjWEisRoRq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.247.121.0/24
Signature Algorithm: sha256WithRSAEncryption
24:4d:3b:62:7d:c2:91:97:15:46:1c:4a:48:54:f7:94:ab:73:
52:c0:18:d9:29:95:52:52:e3:2e:0d:e6:ec:a8:1d:09:f8:02:
03:c8:7d:ac:4b:18:70:52:d6:cc:0b:a9:b6:9d:5b:d2:b9:71:
fc:62:21:c9:df:d2:b1:54:9f:c3:31:60:b4:38:22:2a:47:05:
f7:44:a8:91:f3:25:7f:a6:79:6a:fb:e5:5b:f3:fc:ef:99:6a:
c9:92:e8:e7:85:fb:fe:e4:2a:c0:76:48:0f:cf:5a:3d:75:7f:
5d:a1:9e:b7:08:ad:fe:a6:d8:7c:e7:73:f4:69:ab:45:79:9e:
3e:55:68:85:73:41:2e:dd:ad:7a:72:99:12:d3:84:b6:77:09:
d1:05:bb:2d:8a:85:ed:54:64:2e:f6:3c:57:1d:73:0e:69:6c:
f6:f6:8d:ca:a4:63:a6:c1:f9:09:bb:97:16:66:27:36:bb:57:
91:e6:f9:cc:08:09:c7:03:ad:7a:f9:52:54:26:f3:80:42:f8:
e7:7a:43:d7:4b:b6:51:38:bc:f8:0a:b1:65:27:44:8f:65:e1:
c7:ae:96:e5:31:dc:84:a4:78:1c:24:44:e3:47:0e:06:b0:0c:
bc:97:83:2a:91:af:2e:ba:8f:05:aa:17:25:99:29:13:ab:e7:
fa:1d:97:71
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUvqzAbEoI1lAO2PeQSrjs6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3NjAxMjZkY2U3OGJjMTZlNjZjMmU2ZTc2MzU4NDhhYzQ2
ODQ2YWYwHhcNMjIxMjIwMTMxMzQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDZmNWY0YzczMDFhNjQ3NmY4ZGM1NjlkOGYzZTJjYWFmYzcyNTEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg0D3B/iRidx/poM3uH2hAVZ8yHoQ
T5IIhzPwcA0AGeDibHoYecTjy0pvSbvlx8RRcqzPYf+5djlaNyhUE9so85M8ycXi
cR7G4NMy7IR3EDxNZLpNZmG/VJYVSiCIrmCPWr1wGVI3H1+IVoScK8o8FRbicKja
AHjufKgCNnJ2DCU+tKBGyYKmq87sH+YZMfJ4wOEdJQNhXH/2n4SsZRHAVpB0uSZ9
wg2iQ+HTUJyEBvJ9j+6DKJ0uT/K/h2ChMee4Rh9kSBsoF5R6m5cODnd3vMh6D+m6
VNaJeUKG4U7XBC2CjyeEuF6UykrR0iVxTEz2erGWz+UzR1g7ofXQnzQTrwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFARvX0xzAaZHb43Fadjz4sqvxyUSMB8GA1UdIwQY
MBaAFOdgEm3OeLwW5mwubnY1hIrEaEavMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTJBU2JjNTR2QmJtYkM1dWRqV0Vpc1JvUnE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS80ODhmNjEtMmYwMC00NjM5LTk3Yjgt
ZDI0ZjU2MmRlZGQyLzEvQkc5ZlRITUJwa2R2amNWcDJQUGl5cV9ISlJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS80ODhmNjEtMmYwMC00NjM5LTk3YjgtZDI0ZjU2MmRlZGQy
LzEvNTJBU2JjNTR2QmJtYkM1dWRqV0Vpc1JvUnE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkvd5MA0G
CSqGSIb3DQEBCwUAA4IBAQAkTTtifcKRlxVGHEpIVPeUq3NSwBjZKZVSUuMuDebs
qB0J+AIDyH2sSxhwUtbMC6m2nVvSuXH8YiHJ39KxVJ/DMWC0OCIqRwX3RKiR8yV/
pnlq++Vb8/zvmWrJkujnhfv+5CrAdkgPz1o9dX9doZ63CK3+pth853P0aatFeZ4+
VWiFc0Eu3a16cpkS04S2dwnRBbstioXtVGQu9jxXHXMOaWz29o3KpGOmwfkJu5cW
Zic2u1eR5vnMCAnHA616+VJUJvOAQvjnekPXS7ZROLz4CrFlJ0SPZeHHrpblMdyE
pHgcJETjRw4GsAy8l4Mqka8uuo8FqhclmSkTq+f6HZdx
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:34 2023 by rpki-client on console-ams.rpki-client.org