Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/bgimz0pogiQECnMd9258Iol8C_0.roa
File: bgimz0pogiQECnMd9258Iol8C_0.roa (raw, json)
Hash identifier: +sN6hhCXLvP1868aRgtHSRjCkf4Hsv7uTomVnmQOBdQ=
Subject key identifier: 6E:08:A6:CF:4A:68:82:24:04:0A:73:1D:F7:6E:7C:22:89:7C:0B:FD
Certificate issuer: /CN=c1bf8f3e609072889e74dd0fb4e27f9bac47b3b0
Certificate serial: 193BD3B9
Authority key identifier: C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/bgimz0pogiQECnMd9258Iol8C_0.roa
Signing time: Thu 02 Jun 2022 09:18:22 +0000
ROA not before: Thu 02 Jun 2022 09:18:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34187
IP address blocks: 195.245.118.0/23 maxlen: 23
195.245.118.0/24 maxlen: 24
78.26.128.0/19 maxlen: 19
78.26.128.0/24 maxlen: 24
78.26.128.0/18 maxlen: 18
78.26.192.0/19 maxlen: 19
78.26.192.0/18 maxlen: 18
78.26.224.0/19 maxlen: 19
195.245.119.0/24 maxlen: 24
185.70.110.0/23 maxlen: 23
185.70.108.0/23 maxlen: 23
185.70.108.0/22 maxlen: 22
78.26.160.0/19 maxlen: 19
2a03:1240::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 423351225 (0x193bd3b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1bf8f3e609072889e74dd0fb4e27f9bac47b3b0
Validity
Not Before: Jun 2 09:18:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e08a6cf4a688224040a731df76e7c22897c0bfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0d:6c:ed:57:c4:c4:c7:b8:a9:5d:26:6b:5e:
c3:26:6e:23:c6:da:3a:90:1a:ae:84:2b:9f:49:99:
80:d8:ab:c0:63:7b:fc:c2:72:de:7c:16:d5:06:ba:
cf:e7:6a:14:ec:94:c2:5e:19:2a:5c:45:a6:f9:08:
be:f6:33:84:54:6d:8d:2e:3a:55:2f:25:01:0d:a9:
68:19:2d:7d:ad:b5:de:b7:f7:17:73:f6:c1:91:2b:
0a:7e:3f:e2:15:86:f0:37:a6:49:4f:d2:fd:e9:3d:
04:36:ea:c7:97:a1:0c:c5:9f:86:19:9e:7a:d4:72:
56:82:dd:0e:0f:08:ff:85:35:14:05:35:dc:8f:17:
d6:d5:bc:1e:af:1a:a2:5f:7b:05:db:63:3c:de:2d:
b6:2e:7b:27:b8:97:f0:0a:36:a3:2f:76:10:ab:61:
28:78:4c:8b:20:9f:c8:68:1a:7c:a2:d7:cc:94:1f:
26:dd:e0:28:79:ca:a2:d9:06:a8:b0:5c:b0:7d:37:
82:2c:b7:8f:48:cb:55:5a:d5:41:90:15:c9:22:9e:
84:a6:4c:86:3e:71:46:29:34:d2:9c:7e:89:8e:9b:
8b:7a:c0:29:4c:a7:e7:ad:1a:75:74:10:31:39:12:
e1:8f:be:5b:02:74:77:27:07:e0:b1:71:45:61:eb:
9b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:08:A6:CF:4A:68:82:24:04:0A:73:1D:F7:6E:7C:22:89:7C:0B:FD
X509v3 Authority Key Identifier:
keyid:C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/bgimz0pogiQECnMd9258Iol8C_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/wb-PPmCQcoiedN0PtOJ_m6xHs7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.26.128.0/17
185.70.108.0/22
195.245.118.0/23
IPv6:
2a03:1240::/48
Signature Algorithm: sha256WithRSAEncryption
a6:27:79:ad:93:be:25:02:7f:9e:c7:ef:c2:23:2e:f2:a7:f9:
08:8a:82:c8:e5:5c:5e:52:e9:a0:eb:e9:90:63:f5:df:2d:2f:
5d:44:e7:13:9f:a8:c3:49:7d:38:03:fc:a7:46:98:e8:b3:f9:
e2:19:19:66:f0:10:a2:e4:01:cd:cd:40:81:00:af:8a:29:e8:
67:75:03:fe:99:7e:e1:64:d3:c6:8f:1d:e5:3a:42:e0:4c:f0:
97:7b:02:8c:78:24:6e:de:e6:a6:76:91:ee:70:e5:71:b4:b4:
4d:25:27:64:8d:63:e2:f9:19:b7:df:51:ee:eb:af:18:74:16:
c4:79:fd:47:af:10:de:d1:50:33:94:3a:e5:ba:fd:64:9d:f7:
63:3a:67:1f:65:5a:28:10:64:11:ef:a8:21:4e:e4:57:a9:dc:
3d:54:3b:8a:2e:8a:7e:44:7c:43:e7:25:71:1a:0f:65:56:11:
cc:9f:36:6c:17:09:4a:95:93:79:69:66:f4:47:4b:69:ff:02:
c6:c2:af:bf:11:a0:56:1c:68:8e:93:42:0c:c2:93:36:3b:4c:
90:f9:2b:67:cd:fa:9d:9a:05:76:be:09:fa:01:73:bb:66:5a:
b7:46:e4:41:0d:91:6d:76:65:86:77:11:8d:2e:cc:62:45:0f:
ba:78:16:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:28 2023 by rpki-client on console.sobornost.net