Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/BCHwzJyA3KHC2USejQptLl-TE7I.roa
File: BCHwzJyA3KHC2USejQptLl-TE7I.roa (raw, json)
Hash identifier: jwJHHxNe1d1a5wtuvlL9EOi0Wttt7s+sOGPO+fS1GI8=
Subject key identifier: 04:21:F0:CC:9C:80:DC:A1:C2:D9:44:9E:8D:0A:6D:2E:5F:93:13:B2
Certificate issuer: /CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Certificate serial: 06D63615
Authority key identifier: C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/BCHwzJyA3KHC2USejQptLl-TE7I.roa
Signing time: Sat 01 Jan 2022 14:07:46 +0000
ROA not before: Sat 01 Jan 2022 14:07:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62380
IP address blocks: 185.232.64.0/24 maxlen: 24
185.232.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114701845 (0x6d63615)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Validity
Not Before: Jan 1 14:07:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0421f0cc9c80dca1c2d9449e8d0a6d2e5f9313b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:03:7e:73:ef:10:17:be:7a:97:2c:43:50:bf:
48:4c:b0:96:d7:60:19:12:24:84:cf:57:95:61:d0:
e6:c3:23:07:4d:06:98:c0:a6:78:48:61:8f:5f:51:
0c:cc:57:7a:bb:b4:c9:66:c1:d1:61:0f:10:f8:d0:
66:32:57:f0:7c:cb:64:70:0a:17:27:3e:32:ae:b3:
b8:18:73:2b:4e:0f:88:0d:16:5e:b7:05:75:34:be:
be:5d:0a:a2:11:78:aa:a0:b3:89:50:f5:8c:6b:62:
6c:49:c7:5e:59:01:1a:9f:e3:6e:b6:9b:3c:3e:56:
65:e2:9e:29:fa:72:39:f9:37:0d:2a:2b:53:55:87:
2a:11:44:ad:7d:6c:e3:b4:15:6e:7e:08:60:8d:77:
96:28:6f:7d:3d:e5:85:48:bd:5d:bb:09:e2:d9:32:
1e:85:46:5d:19:d3:b3:8e:9a:20:c2:3f:08:06:75:
cf:b5:c0:8c:b7:95:ce:37:02:08:7a:de:e2:26:d7:
ed:5b:9c:cc:5f:80:a3:60:bf:97:60:50:fc:5e:e0:
d3:3b:0f:c5:52:c5:46:1e:9e:eb:25:c6:c7:5b:44:
6e:44:9b:f9:b5:67:76:b8:aa:75:a2:f3:71:80:31:
19:60:76:09:3a:6e:99:0c:b3:ce:e7:0d:a5:57:7e:
95:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:21:F0:CC:9C:80:DC:A1:C2:D9:44:9E:8D:0A:6D:2E:5F:93:13:B2
X509v3 Authority Key Identifier:
keyid:C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/BCHwzJyA3KHC2USejQptLl-TE7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/wsErUnpdH4uLzyMOthH1LxHVK78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.64.0/24
185.232.66.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:96:9a:ce:d4:0d:4d:34:a5:57:4f:8f:22:0c:a7:fc:76:85:
ba:47:7a:18:fb:2b:3e:d5:f4:b3:c6:07:54:d7:de:44:b3:41:
9f:57:87:a4:2c:90:a8:71:b6:c8:91:a9:71:9f:95:e9:9a:d4:
96:a0:b4:13:1f:b8:bc:ea:54:d1:d9:4f:f0:38:0b:0d:b4:b4:
8a:b2:1f:15:e2:86:e9:35:2e:65:e7:f2:cd:b4:31:ef:58:2e:
0a:73:75:ae:cb:b4:2b:f7:47:3d:a6:cd:1d:e2:55:22:b9:a0:
24:c3:c0:43:34:0b:5f:27:40:12:f0:09:70:b8:19:bc:55:d0:
8f:4e:5f:0e:57:25:bb:3e:f5:db:e7:82:3c:e7:a4:15:90:5a:
c6:51:1d:86:cf:ee:53:1c:80:4c:f8:23:b6:78:44:9e:24:e1:
8f:53:69:d3:2b:6d:ce:d1:b9:75:c4:13:d0:18:a7:46:2e:b8:
c8:3b:39:0e:c7:50:ec:80:94:01:54:76:08:b7:f1:0b:4d:25:
ee:2d:d8:e6:b1:b3:50:45:bd:69:d1:7b:65:12:0a:c7:82:80:
04:87:b0:c0:c7:3f:93:80:50:5d:7b:e2:23:10:cd:d1:f8:1b:
5f:1a:3e:1d:23:87:97:60:ce:39:33:82:8b:c9:6a:d2:79:10:
01:6a:8b:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:25 2023 by rpki-client on console.sobornost.net