Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/dDRsa2obbSOxkvBPhHAcIRqRH3A.roa
File: dDRsa2obbSOxkvBPhHAcIRqRH3A.roa (raw, json)
Hash identifier: +kskl9GgrXE3InECTSRzQJ7FC5fCK/iU+nmXYWsJiss=
Subject key identifier: 74:34:6C:6B:6A:1B:6D:23:B1:92:F0:4F:84:70:1C:21:1A:91:1F:70
Certificate issuer: /CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Certificate serial: 383F93B7
Authority key identifier: E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/dDRsa2obbSOxkvBPhHAcIRqRH3A.roa
Signing time: Tue 25 Jan 2022 09:32:30 +0000
ROA not before: Tue 25 Jan 2022 09:32:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 87.251.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 943690679 (0x383f93b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Validity
Not Before: Jan 25 09:32:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74346c6b6a1b6d23b192f04f84701c211a911f70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:00:22:32:07:0c:c7:66:11:a2:1f:f0:63:83:
44:64:c7:4e:7f:79:fe:15:44:d2:47:74:39:f3:74:
75:0a:fa:f9:d5:0f:86:a7:9a:79:2b:6a:d8:a0:2c:
f5:25:0b:dd:c9:a8:81:ce:3f:7b:eb:2b:70:e3:d0:
0e:71:d0:10:d9:8e:f7:aa:71:11:ea:e9:3b:29:8c:
5a:37:9a:ab:3c:c5:a0:ff:27:f3:e7:b1:c7:23:25:
b4:4b:44:be:e8:bf:01:c1:25:b3:e4:63:2b:72:df:
ec:4b:d1:e4:eb:fa:8a:24:b6:b1:03:68:21:de:12:
0f:91:9f:50:58:76:41:96:76:44:61:56:54:78:d2:
2e:d4:b3:87:ef:a6:23:c6:7b:a6:68:9a:a3:ee:65:
be:26:1c:2a:12:a5:f3:41:5d:5c:94:e9:c1:52:b1:
9e:7d:10:ea:35:62:b3:dd:ce:d6:63:91:40:ce:5b:
50:a2:26:10:98:05:94:6a:16:2f:48:f0:95:b5:34:
a6:1c:2c:17:0a:31:df:88:10:78:40:ad:76:53:60:
14:05:31:5f:72:17:1c:ab:c1:69:24:0f:64:9d:69:
e9:91:bc:b8:ff:dc:59:81:1e:55:a1:21:5b:16:36:
9f:d0:ad:6f:65:d9:ca:fa:16:ae:8e:31:73:8c:ad:
e0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:34:6C:6B:6A:1B:6D:23:B1:92:F0:4F:84:70:1C:21:1A:91:1F:70
X509v3 Authority Key Identifier:
keyid:E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/dDRsa2obbSOxkvBPhHAcIRqRH3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/5QGBXG-Y86K2GEr-vxjqNBvoguo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.251.20.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:5c:b2:7f:91:59:13:8e:ca:b1:b8:ab:b4:bd:a8:f0:26:33:
0f:33:ae:9a:76:47:78:64:0f:b3:e5:a9:88:4b:1c:32:8a:3e:
50:6c:98:7b:c0:4b:d2:b7:02:6c:31:5b:6c:cc:f5:e3:9f:68:
34:ef:96:e9:b5:83:60:3f:ca:8f:f1:c4:c6:00:0d:09:d4:ed:
87:59:10:3a:00:f9:ea:a3:7c:ab:e3:1b:02:84:5f:00:16:7f:
39:d8:00:02:ea:16:e6:71:08:18:43:43:84:57:c2:71:9c:76:
1b:ce:2b:99:00:54:5a:c0:79:64:91:15:d1:0d:00:19:9b:75:
40:ea:f3:bf:f1:58:90:58:20:a6:1d:62:45:ee:9a:49:95:41:
1a:52:c5:7e:86:03:af:25:4a:ab:24:d7:b6:64:d4:bb:dc:05:
e7:48:5d:c8:d5:06:b9:af:55:b1:e8:bc:f0:ec:0f:d2:29:e1:
42:37:6c:bf:75:a3:5a:63:72:13:06:33:32:3d:a9:02:2d:ba:
0c:85:2e:e8:0d:36:3b:fc:8a:58:a0:52:85:24:8a:c2:06:8d:
7a:12:9a:60:16:a9:80:eb:2e:69:8b:24:e1:9a:0c:7e:13:f7:
c1:8b:76:ba:ac:b2:79:d5:fd:da:d0:8a:84:5a:04:c6:27:10:
ac:07:93:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:31 2024 by rpki-client on console-fra.rpki-client.org