Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/7b03d1-0e68-444f-9188-76e5ceb03fd9/1/BGnAwZh2GQHwbveNsxeY0ERxzpA.roa
File: BGnAwZh2GQHwbveNsxeY0ERxzpA.roa (raw, json)
Hash identifier: P2/EtI1dDAirTPrbdHPneHnfUd7glBii/myqdCoa/AY=
Subject key identifier: 04:69:C0:C1:98:76:19:01:F0:6E:F7:8D:B3:17:98:D0:44:71:CE:90
Certificate issuer: /CN=1b3554498f3c8dd539c25a9d85348fab817eda23
Certificate serial: 0183D155FA637B7CF5E42AAF032E00BF44E6
Authority key identifier: 1B:35:54:49:8F:3C:8D:D5:39:C2:5A:9D:85:34:8F:AB:81:7E:DA:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GzVUSY88jdU5wlqdhTSPq4F-2iM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/7b03d1-0e68-444f-9188-76e5ceb03fd9/1/BGnAwZh2GQHwbveNsxeY0ERxzpA.roa
Signing time: Thu 13 Oct 2022 12:33:36 +0000
ROA not before: Thu 13 Oct 2022 12:33:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60305
IP address blocks: 194.113.252.0/24 maxlen: 24
194.113.253.0/24 maxlen: 24
194.113.254.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d1:55:fa:63:7b:7c:f5:e4:2a:af:03:2e:00:bf:44:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b3554498f3c8dd539c25a9d85348fab817eda23
Validity
Not Before: Oct 13 12:33:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0469c0c198761901f06ef78db31798d04471ce90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:64:00:48:cc:ca:7d:e2:08:70:69:9e:8a:f5:
6e:93:55:45:8e:3d:df:d7:2f:7e:d3:46:25:f1:2d:
b8:6e:dc:e6:c8:7a:f2:d7:30:2d:8f:3c:8e:00:d3:
da:3e:6d:27:dd:2c:b0:bb:c1:ac:9d:0c:9a:b6:94:
cc:29:28:3c:81:e1:6f:4c:de:0a:1f:86:bc:3a:da:
1e:86:1f:c6:ff:21:df:c4:59:5d:10:c2:8b:59:7a:
5e:d9:a9:39:b3:77:78:c6:88:a8:f2:63:34:d7:c7:
0e:da:9b:0e:37:49:58:3b:e4:ec:74:36:6e:f3:48:
f6:77:16:40:05:7d:90:74:b9:67:d2:65:34:e2:06:
8e:09:27:ad:5f:1b:a9:2f:c4:a8:11:a5:ff:ee:ac:
9f:c6:b2:16:77:f9:e2:2a:c2:f8:01:c3:fd:ca:ae:
3a:eb:23:ba:ab:a9:15:41:d0:4f:60:db:12:b2:2e:
af:db:7d:80:87:59:4a:a5:42:b8:2e:e8:fc:f4:68:
1c:b1:98:19:fc:1e:8f:a1:40:d9:20:a5:ca:6c:1b:
1c:07:56:76:68:7f:96:1b:92:15:68:39:53:c3:de:
3e:5c:b6:a8:79:8c:16:44:55:fd:62:55:ac:7c:f1:
d9:35:4b:1a:f2:b4:1e:2b:0a:4e:47:ae:aa:73:02:
78:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:69:C0:C1:98:76:19:01:F0:6E:F7:8D:B3:17:98:D0:44:71:CE:90
X509v3 Authority Key Identifier:
keyid:1B:35:54:49:8F:3C:8D:D5:39:C2:5A:9D:85:34:8F:AB:81:7E:DA:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GzVUSY88jdU5wlqdhTSPq4F-2iM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/7b03d1-0e68-444f-9188-76e5ceb03fd9/1/BGnAwZh2GQHwbveNsxeY0ERxzpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/7b03d1-0e68-444f-9188-76e5ceb03fd9/1/GzVUSY88jdU5wlqdhTSPq4F-2iM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.252.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:49:dd:1d:a0:27:f9:7c:f2:73:df:b3:c4:3c:17:5c:64:2f:
25:92:b0:01:68:c4:02:b8:72:a8:cb:24:fd:9c:fd:41:c2:da:
55:bf:09:ed:9a:fc:c2:08:08:29:c0:bd:d6:0d:76:eb:b2:0e:
58:ef:36:51:ef:0c:4c:e1:5b:94:14:d7:bb:6e:6e:ec:73:0a:
ba:42:b2:09:24:45:ca:83:f4:70:4a:8e:21:85:a8:17:5e:64:
b1:31:4e:45:34:5d:35:0a:2e:61:e9:9e:59:a7:aa:c2:f3:7b:
5b:bf:20:16:77:93:41:c2:e2:9c:a5:4e:c7:44:87:7d:9f:07:
c9:38:9b:55:34:18:49:ad:a0:89:18:3c:62:4d:37:ae:39:d7:
bc:04:c6:8c:b3:8e:23:b0:f4:51:42:eb:66:99:90:c0:41:5e:
b5:78:e1:6a:b4:db:91:45:de:6d:7c:aa:1f:02:4d:4d:16:98:
72:36:36:01:46:05:3b:0d:83:32:03:2c:06:c3:97:aa:3e:12:
f2:f0:64:ae:9f:ef:dc:54:6c:ce:b9:6f:4f:e2:54:89:c4:9d:
9a:9c:24:d1:9e:ee:a3:a6:58:67:cf:37:40:9a:5b:b4:9e:b1:
30:24:ce:e0:93:94:56:cc:40:6a:1a:69:53:d4:4c:a3:11:50:
ae:ef:b3:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:48 2023 by rpki-client on console.sobornost.net