Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/cJEGQgFTsPiKVCAQu4ElEBzDfnc.roa
File: cJEGQgFTsPiKVCAQu4ElEBzDfnc.roa (raw, json)
Hash identifier: 3EhmwHnnJzhujH9zrMxjVb3Q93AUwVyr7M3BL74syB8=
Subject key identifier: 70:91:06:42:01:53:B0:F8:8A:54:20:10:BB:81:25:10:1C:C3:7E:77
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 37F2CB9F
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/cJEGQgFTsPiKVCAQu4ElEBzDfnc.roa
Signing time: Thu 28 Apr 2022 12:10:37 +0000
ROA not before: Thu 28 Apr 2022 12:10:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12962
IP address blocks: 87.227.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938658719 (0x37f2cb9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Apr 28 12:10:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=709106420153b0f88a542010bb8125101cc37e77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9d:92:b1:84:3f:9f:c0:ec:ff:d9:40:33:84:
e2:e8:bb:82:06:dd:ad:3c:72:5d:c3:9b:33:d6:f0:
db:c9:f3:1f:db:78:f0:4c:0d:f3:e7:98:6e:59:7c:
76:e7:ef:fb:01:95:1d:b7:10:9a:42:69:fe:61:2c:
fc:0d:5a:2b:9e:b1:e1:e7:42:7e:cc:30:db:1d:40:
b6:44:43:65:b1:85:40:48:d0:ee:80:3f:dc:d7:19:
66:90:e7:5c:89:af:c0:75:19:1c:c5:eb:a6:83:6b:
29:36:be:87:d1:7d:c3:7a:0a:8a:30:d7:b4:7e:8a:
ff:a6:ac:86:75:af:1a:28:51:b0:1f:c4:c8:22:dc:
20:f1:29:4b:6a:40:a3:5c:17:f4:c8:e7:3a:81:8c:
57:98:39:c8:28:48:2d:5f:7e:55:6e:9f:20:91:9d:
b7:56:38:85:42:a3:de:de:47:53:d4:6b:67:48:07:
f3:ab:3c:67:7f:4e:ff:09:d3:59:98:4f:60:6b:70:
78:6e:f7:c1:09:5b:2a:c7:44:6a:97:63:15:55:af:
5a:a4:04:92:92:00:cc:32:a7:01:c2:ae:4c:0e:79:
5c:5a:ee:24:82:ad:6e:4c:67:c1:8d:1a:a8:6c:c3:
e4:45:cd:fd:b3:d6:9d:72:07:a8:22:25:35:39:d5:
4a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:91:06:42:01:53:B0:F8:8A:54:20:10:BB:81:25:10:1C:C3:7E:77
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/cJEGQgFTsPiKVCAQu4ElEBzDfnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.227.206.0/24
Signature Algorithm: sha256WithRSAEncryption
80:5a:36:76:5c:82:80:0a:c9:13:be:bb:77:e7:e1:64:16:64:
0a:e8:02:bc:bd:1c:8a:56:44:84:87:16:bb:fe:b4:01:b3:73:
2f:99:1b:d5:8c:e3:76:aa:b3:d9:75:39:f1:75:90:58:de:2b:
f1:df:4b:1f:2b:06:2b:d1:9c:52:7c:1f:b4:00:b7:d8:68:71:
2c:90:b0:f0:43:cb:dd:6b:ab:13:2c:d4:87:7d:30:4f:f9:fe:
b3:27:7b:27:da:2a:0c:aa:f3:99:c4:7f:1b:1c:cc:8b:0c:d4:
27:a8:37:b4:4f:e9:56:0d:75:8e:8e:18:b6:9d:1a:eb:34:71:
f6:63:86:f0:ca:6b:79:c8:18:3a:1f:27:61:7b:9a:0f:05:e6:
e0:d5:51:90:9e:09:2b:2a:7d:07:5b:c0:34:d3:92:f5:ac:67:
49:14:8f:a5:a1:06:a3:8f:18:9a:19:b1:a8:ac:4d:36:dc:f6:
4b:1f:35:19:5a:3f:de:4f:73:8c:d5:b2:c5:97:e6:62:16:51:
aa:01:aa:33:a2:af:78:4f:a3:72:21:15:a3:a4:91:dd:0e:5e:
b7:bb:a4:d6:27:7e:fe:98:7a:1b:61:8c:bc:36:22:5f:b8:11:
18:33:cb:3a:c1:2a:6e:7d:58:28:bd:66:f4:79:85:72:e9:87:
93:e0:e0:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:12 2023 by rpki-client on console-ams.rpki-client.org