Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/2309cc-fa79-44d1-8986-4d537cf01809/1/Bvam3mqAva6y_xTqPFtJTPYtUH4.roa
File: Bvam3mqAva6y_xTqPFtJTPYtUH4.roa (raw, json)
Hash identifier: BZh3ZdzGTM92oyCVEEx5MPStNy18PXEA6OeajQcc/YM=
Subject key identifier: 06:F6:A6:DE:6A:80:BD:AE:B2:FF:14:EA:3C:5B:49:4C:F6:2D:50:7E
Certificate issuer: /CN=68417da8aa4fe0b8cff188412eedda63cbdcf996
Certificate serial: 01779295
Authority key identifier: 68:41:7D:A8:AA:4F:E0:B8:CF:F1:88:41:2E:ED:DA:63:CB:DC:F9:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aEF9qKpP4LjP8YhBLu3aY8vc-ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/2309cc-fa79-44d1-8986-4d537cf01809/1/Bvam3mqAva6y_xTqPFtJTPYtUH4.roa
Signing time: Sat 01 Jan 2022 11:57:45 +0000
ROA not before: Sat 01 Jan 2022 11:57:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211274
IP address blocks: 193.56.11.0/24 maxlen: 24
2a0b:4740::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24613525 (0x1779295)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68417da8aa4fe0b8cff188412eedda63cbdcf996
Validity
Not Before: Jan 1 11:57:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06f6a6de6a80bdaeb2ff14ea3c5b494cf62d507e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:21:35:23:4c:4d:30:b1:b9:42:e3:b3:2d:55:
68:65:b8:52:34:46:ac:85:cb:7d:7d:ef:7e:b6:d9:
54:ad:12:f0:1c:80:f4:23:04:50:cf:e2:69:86:44:
70:14:47:c7:75:27:4a:15:bc:4e:ba:1d:3c:01:a2:
31:11:14:21:de:67:57:be:f5:32:52:f9:ae:c3:7f:
34:11:52:4f:bd:a3:06:a5:90:ec:ec:cb:2c:87:54:
9b:4c:cf:8d:05:96:45:25:77:cd:23:30:27:b3:df:
6e:83:8b:af:7f:30:23:96:9f:a5:4a:98:f0:17:d3:
f7:46:70:b9:65:36:44:64:14:c6:20:66:11:7b:3b:
d1:18:b8:99:2c:c9:f1:df:13:67:55:46:77:2d:de:
0e:30:c1:6e:1e:d3:68:53:44:b2:cc:21:72:9d:b9:
ef:a0:0e:7b:38:82:ff:1e:6e:2c:9c:a5:49:46:2a:
1c:ea:fd:c2:b2:a7:15:47:d5:c9:7d:d2:79:5f:da:
24:d1:be:77:74:73:94:5e:3a:da:ad:8b:92:1a:47:
8c:28:4e:f4:b5:31:de:e3:b9:42:27:2f:bf:1c:81:
bf:bc:43:36:b2:28:28:17:cc:ab:56:f2:7b:b4:c8:
4a:41:2c:9c:90:7a:98:dd:72:75:6f:14:72:49:fd:
fe:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:F6:A6:DE:6A:80:BD:AE:B2:FF:14:EA:3C:5B:49:4C:F6:2D:50:7E
X509v3 Authority Key Identifier:
keyid:68:41:7D:A8:AA:4F:E0:B8:CF:F1:88:41:2E:ED:DA:63:CB:DC:F9:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aEF9qKpP4LjP8YhBLu3aY8vc-ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2309cc-fa79-44d1-8986-4d537cf01809/1/Bvam3mqAva6y_xTqPFtJTPYtUH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2309cc-fa79-44d1-8986-4d537cf01809/1/aEF9qKpP4LjP8YhBLu3aY8vc-ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.11.0/24
IPv6:
2a0b:4740::/29
Signature Algorithm: sha256WithRSAEncryption
a0:bc:dc:a9:ca:e0:d1:b5:32:0b:41:6f:04:21:99:65:88:4e:
47:ae:e4:af:aa:7b:61:d8:52:07:c2:56:bf:0d:17:34:a3:3e:
89:d1:b5:96:31:fb:8a:47:e4:96:32:b2:73:c3:23:94:b9:ac:
98:87:88:97:0c:1b:9e:12:ef:2d:1c:76:d0:1b:cd:e5:de:4c:
de:c7:78:a3:25:27:c6:61:ad:8c:2f:da:5b:cd:d0:fa:6c:c6:
32:75:21:2e:35:5a:eb:eb:91:2c:2c:ca:0e:f2:49:c6:ac:e3:
70:10:7c:6b:0f:17:9c:9b:e9:b0:8b:2b:ca:3a:13:fa:df:f6:
70:91:45:3e:a1:78:c5:d3:0f:72:74:6b:b8:c1:c9:d9:14:a7:
71:55:b9:78:a6:3f:ab:8f:ad:6f:69:f4:db:90:30:52:7d:4c:
8f:f4:86:56:1c:5a:47:ff:91:76:68:9b:43:d6:34:71:e6:66:
30:e0:dc:a3:02:cd:af:95:a8:db:d4:68:24:b9:96:8b:3c:c9:
40:96:dc:48:7b:c1:98:21:18:f9:3a:02:15:03:6b:fb:54:56:
0f:bd:40:6b:8a:bd:69:ac:6c:68:6f:7d:ae:36:8e:16:d3:77:
e8:52:f2:7e:53:66:dc:92:2c:11:a7:1d:24:ce:e3:d4:8d:c9:
5d:5c:64:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:55 2025 by rpki-client