Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/ac689b-0e36-49fd-8f9c-ded720142744/1/BqW4QHzkUplH2VdWQKSOSb7nXvY.roa
File: BqW4QHzkUplH2VdWQKSOSb7nXvY.roa (raw, json)
Hash identifier: aE00IFhCkU5maGCSFlEKmbCE7XMOfU25IT22U5fVbPc=
Subject key identifier: 06:A5:B8:40:7C:E4:52:99:47:D9:57:56:40:A4:8E:49:BE:E7:5E:F6
Certificate issuer: /CN=826be1fb71af48d6b318510aa8bdf9a815f33db8
Certificate serial: 550A23
Authority key identifier: 82:6B:E1:FB:71:AF:48:D6:B3:18:51:0A:A8:BD:F9:A8:15:F3:3D:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmvh-3GvSNazGFEKqL35qBXzPbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/ac689b-0e36-49fd-8f9c-ded720142744/1/BqW4QHzkUplH2VdWQKSOSb7nXvY.roa
Signing time: Mon 06 Jun 2022 14:50:20 +0000
ROA not before: Mon 06 Jun 2022 14:50:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 192.166.225.0/24 maxlen: 24
192.166.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5573155 (0x550a23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826be1fb71af48d6b318510aa8bdf9a815f33db8
Validity
Not Before: Jun 6 14:50:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06a5b8407ce4529947d9575640a48e49bee75ef6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4f:6e:2d:31:91:d8:e0:ae:5f:9d:a3:ee:90:
b0:45:fa:6d:43:ea:71:1d:73:09:f7:06:36:e1:52:
e4:fe:20:7e:76:50:e7:9d:64:aa:0f:f5:f3:6a:3e:
c9:7a:a4:fc:47:33:49:de:10:6b:9e:3b:bd:31:1a:
8d:5f:0a:de:2b:00:91:d5:0f:44:bb:33:2b:42:23:
22:7d:2d:f1:84:06:3d:cf:79:fb:0b:d3:0f:eb:74:
be:d2:86:6d:9c:b4:eb:5d:41:19:5f:b8:ef:ca:56:
db:d0:2d:97:a0:ee:29:b3:9d:f1:3e:53:fd:cd:ac:
29:db:3e:6f:27:d4:12:b7:51:4f:9b:95:5b:70:3e:
5a:1f:2c:8a:b5:84:8c:b7:ea:fe:23:80:3a:2e:c8:
d6:b0:25:ca:a2:63:62:b3:08:ff:00:5e:8e:f9:7a:
7f:ab:50:f6:2f:34:20:1c:29:f8:b2:bd:01:7c:38:
4e:30:cd:61:2d:2f:18:a1:41:d1:93:21:36:ff:b6:
e8:54:c8:cb:88:73:de:a3:87:9b:c1:a0:bb:e7:d1:
89:41:f9:ff:6c:b5:5b:8b:f8:da:1a:6b:03:c4:b1:
e6:b8:60:a6:7a:91:82:a4:3b:a2:5d:a1:52:87:75:
31:d9:bb:8c:3f:72:06:75:8f:8b:6f:84:af:d8:ba:
db:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:A5:B8:40:7C:E4:52:99:47:D9:57:56:40:A4:8E:49:BE:E7:5E:F6
X509v3 Authority Key Identifier:
keyid:82:6B:E1:FB:71:AF:48:D6:B3:18:51:0A:A8:BD:F9:A8:15:F3:3D:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmvh-3GvSNazGFEKqL35qBXzPbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/ac689b-0e36-49fd-8f9c-ded720142744/1/BqW4QHzkUplH2VdWQKSOSb7nXvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/ac689b-0e36-49fd-8f9c-ded720142744/1/gmvh-3GvSNazGFEKqL35qBXzPbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.166.224.0/23
Signature Algorithm: sha256WithRSAEncryption
14:46:6e:fb:05:34:3c:4a:b7:b3:1c:de:20:a3:34:af:a4:19:
f3:5d:d5:f4:18:8e:d7:09:f6:a0:f0:f8:93:97:9c:20:a3:3c:
05:7f:7f:6d:dd:9f:2a:e8:b2:1a:56:98:03:9c:50:75:8f:32:
97:55:5e:2d:fc:0c:ff:3f:71:4f:e4:5a:ef:4d:5f:bb:b3:3d:
ec:9c:7f:1a:9d:a1:59:f8:d9:fd:ee:c6:4b:26:11:b0:5b:9e:
db:6f:76:b7:6b:11:fc:a2:69:8e:e9:93:f6:d6:1e:d4:16:51:
db:4d:00:ad:f2:70:63:5a:7b:c5:3c:c5:39:0d:31:53:7e:00:
3c:e2:b7:98:b8:6c:16:fc:f0:c3:29:4a:45:7c:6a:ad:55:a2:
4e:26:d9:a0:20:19:5e:ac:5e:d3:a9:9a:b4:47:85:91:c6:f4:
7d:9e:e5:54:98:43:3e:b4:b1:65:bf:a6:75:2c:99:85:9a:10:
03:67:ff:99:ea:41:d1:5c:cc:04:c4:5e:ef:81:33:7c:63:ea:
f5:dd:d4:73:5d:a3:64:11:00:36:a8:d8:98:0a:a2:95:58:24:
f6:3a:eb:28:20:22:c1:47:61:a6:29:86:cc:dd:a7:43:6f:b1:
9c:f9:80:7c:df:9c:34:6e:f5:62:83:c3:4d:4c:fe:68:eb:91:
a1:28:5d:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:07 2023 by rpki-client on console.sobornost.net