Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/1-3udcbytafFeAn6Ht7fs50ZBImM.roa
File: 1-3udcbytafFeAn6Ht7fs50ZBImM.roa (raw, json)
Hash identifier: xkkHJ5OkBNrE9kPn+/Y8b3LPmfbPLdr46hkJLu+99Ao=
Subject key identifier: FB:7B:9D:71:BC:AD:69:F1:5E:02:7E:87:B7:B7:EC:E7:46:41:22:63
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 018462AB9563143A7B7A1BB9FD7D762382F8
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/1-3udcbytafFeAn6Ht7fs50ZBImM.roa
Signing time: Thu 10 Nov 2022 17:52:02 +0000
ROA not before: Thu 10 Nov 2022 17:52:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 87.248.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:62:ab:95:63:14:3a:7b:7a:1b:b9:fd:7d:76:23:82:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Nov 10 17:52:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb7b9d71bcad69f15e027e87b7b7ece746412263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:43:16:f2:31:c4:17:42:f6:ad:7a:52:d2:02:
f9:9e:23:6c:da:d7:69:82:04:a5:83:4b:b4:91:66:
16:14:17:dc:0b:8a:23:d8:4e:27:02:76:e5:c4:cc:
8f:02:8e:cb:df:ce:dd:ec:c7:70:1b:44:c0:f3:1d:
ea:0b:c4:b3:5a:9c:d4:07:75:f6:14:41:76:1e:fa:
b2:08:d4:d3:81:a6:b8:02:50:4e:97:0c:44:7c:c3:
25:94:20:71:96:cd:5d:55:bc:c2:34:40:c0:79:04:
b6:c4:2f:0e:5d:4c:8f:ee:30:28:39:c0:31:39:ba:
14:ed:2d:7b:74:40:b6:75:f4:81:30:82:d2:70:65:
d6:06:de:20:87:76:72:e6:54:10:88:4c:ad:40:d4:
d2:40:b1:83:e3:c5:77:c4:8b:aa:ef:f2:11:b4:d8:
dd:e5:49:78:1b:32:14:95:19:89:d8:6f:cd:26:b7:
d2:81:56:b3:8f:e2:00:17:6d:07:cb:4c:4b:05:df:
fa:35:99:9e:77:5b:7d:70:dd:14:7f:17:d8:34:f8:
cd:f7:53:16:76:37:80:1c:96:e8:5b:2a:59:c9:02:
44:4e:d1:70:23:29:04:6f:94:75:ea:3a:63:8a:8e:
38:b4:f1:ae:14:fe:0e:75:3d:6b:d4:8f:16:9f:de:
46:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:7B:9D:71:BC:AD:69:F1:5E:02:7E:87:B7:B7:EC:E7:46:41:22:63
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/1-3udcbytafFeAn6Ht7fs50ZBImM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.151.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:55:0b:d2:be:d9:82:9d:c7:a3:2f:29:30:bf:dc:de:ca:38:
bc:43:31:9e:13:a3:fb:a8:c6:8a:25:51:17:e7:89:3e:19:40:
f5:64:ec:2b:8c:8d:ce:d3:0e:da:c2:52:c9:e5:03:47:f8:1e:
2a:74:ed:b3:8b:e6:73:0d:aa:a0:71:52:a1:55:0b:1b:0e:d8:
a3:f6:92:22:1f:04:f7:8c:fd:14:d8:ad:52:f4:e5:14:1b:47:
47:36:49:0e:3f:db:7f:0c:fb:88:3e:21:e1:47:90:68:75:09:
61:56:5c:d6:a5:c2:af:78:56:2d:d6:30:2f:35:e0:8d:8f:e6:
87:34:c4:81:76:af:39:39:e1:c6:69:08:eb:2e:17:2a:b1:fc:
e8:2d:78:60:f2:df:5f:18:ba:97:21:fb:c4:be:a4:13:d3:ec:
e1:30:06:1f:33:fc:d8:29:49:78:05:9d:ab:c0:aa:20:35:39:
d5:44:3a:fe:f2:ad:3a:40:fe:9b:bf:b3:61:ff:e5:f3:4c:9c:
3d:cf:b7:a2:e2:5c:5b:4f:e3:fe:4a:00:b3:1d:00:97:da:b1:
9c:73:29:65:93:b1:5d:96:ec:8f:6c:eb:d9:5b:82:fa:55:90:
81:d6:22:f4:cd:37:fc:6a:e3:92:1c:8f:6a:1f:71:25:07:5c:
6c:88:56:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:35 2024 by rpki-client on console-fra.rpki-client.org