Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/bBOn_UQ4J-9-3kjBr7rvx1srvAo.roa
File: bBOn_UQ4J-9-3kjBr7rvx1srvAo.roa (raw, json)
Hash identifier: uRioonR0rdMeTJDTq3t40pbSryixRe9OHoRnY/l/W6s=
Subject key identifier: 6C:13:A7:FD:44:38:27:EF:7E:DE:48:C1:AF:BA:EF:C7:5B:2B:BC:0A
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 0184EADF67966B36D8C9F7429055A9C507F9
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/bBOn_UQ4J-9-3kjBr7rvx1srvAo.roa
Signing time: Wed 07 Dec 2022 04:37:00 +0000
ROA not before: Wed 07 Dec 2022 04:37:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56913
IP address blocks: 188.240.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ea:df:67:96:6b:36:d8:c9:f7:42:90:55:a9:c5:07:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Dec 7 04:37:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c13a7fd443827ef7ede48c1afbaefc75b2bbc0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:11:b4:f2:08:47:99:55:ab:50:4d:41:e6:c6:
67:a7:72:67:35:0b:6c:b8:9a:9e:95:9b:3d:1b:6f:
4e:88:1a:85:0b:6d:9f:f6:4b:3c:78:56:31:9c:c0:
ab:63:6e:66:50:a3:98:8e:bf:03:50:3b:57:1f:99:
c1:ec:50:9c:c3:31:0e:08:1f:1a:88:90:d5:a2:ce:
94:a1:e6:6d:f5:8c:ad:67:eb:68:0b:1b:ae:fb:34:
65:f1:12:82:d6:65:b2:e4:08:b6:65:fc:3e:a3:0d:
ab:b7:fb:f1:b8:7f:d1:2b:ee:59:4e:47:6a:63:73:
94:b4:12:9d:e4:3e:64:2d:ce:47:25:cc:1d:ef:aa:
59:ec:d5:92:5a:80:5b:79:48:b8:f0:cb:f2:86:52:
af:22:27:df:79:86:2d:e5:88:f1:d2:cc:45:ad:32:
88:c9:2b:d0:f6:d1:1f:70:dc:54:22:ac:86:3c:39:
46:5d:ac:bf:0c:ee:a2:2c:59:bf:9d:82:b3:e2:b4:
81:ad:b3:30:7d:0d:ce:52:0a:78:85:69:b2:e5:22:
42:63:8a:a4:71:5b:c1:b9:3a:ab:5d:04:c9:90:68:
ce:18:69:64:c8:5f:d9:74:d6:46:11:00:e6:b1:e5:
76:f1:b7:1d:ce:7d:9a:af:6b:31:5f:4f:92:f2:50:
6d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:13:A7:FD:44:38:27:EF:7E:DE:48:C1:AF:BA:EF:C7:5B:2B:BC:0A
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/bBOn_UQ4J-9-3kjBr7rvx1srvAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.240.83.0/24
Signature Algorithm: sha256WithRSAEncryption
72:a5:51:35:5b:72:ac:3f:fa:ee:0d:fb:18:e5:32:4d:a8:32:
12:3b:8b:4b:a5:a8:ab:ef:dc:41:cc:08:c6:f2:b6:1a:01:e6:
e0:e9:5c:37:a8:98:ad:f5:bc:9e:30:bc:96:ef:62:4a:1c:c1:
0f:cd:c0:24:c0:ab:30:60:96:26:07:ac:66:2f:c2:50:3c:0e:
48:1d:0f:38:84:52:59:21:c1:a7:02:37:20:a6:d6:d2:f9:00:
15:cc:52:10:3d:26:9c:d1:da:a9:76:9f:10:a3:f9:b5:c6:b4:
a4:1e:81:69:a9:f6:92:ed:94:4a:ff:71:37:fc:89:eb:5c:8a:
19:bd:2e:53:e4:70:93:be:c5:e7:44:67:8a:f8:11:02:0b:e1:
f5:ab:64:6f:3c:64:88:dd:12:4f:80:ef:1d:c1:93:63:28:2c:
d4:45:a5:5d:df:73:f8:c0:82:fb:d5:b1:6e:68:7d:e9:15:ee:
a7:69:4d:ac:5e:63:b8:d0:26:a7:1c:91:98:04:82:a7:74:17:
14:75:54:bd:42:5a:48:f2:f7:be:07:29:06:2b:3b:26:df:24:
d7:c6:c3:ae:f5:af:2b:98:5d:3b:ce:5c:aa:39:95:f5:10:e7:
f1:53:3e:c3:89:d2:69:67:a2:44:54:e2:60:38:82:43:38:b8:
db:0c:9e:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:05 2023 by rpki-client on console-fra.rpki-client.org