Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/1RNhk7yNtba62iO9srwN3YMDJqs.roa
File: 1RNhk7yNtba62iO9srwN3YMDJqs.roa (raw, json)
Hash identifier: R/I7JUqD/sFu711s6xiC8XwrvR3ei9kiH4Rh08a656w=
Subject key identifier: D5:13:61:93:BC:8D:B5:B6:BA:DA:23:BD:B2:BC:0D:DD:83:03:26:AB
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1C74AB55
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/1RNhk7yNtba62iO9srwN3YMDJqs.roa
Signing time: Fri 10 Jun 2022 21:11:02 +0000
ROA not before: Fri 10 Jun 2022 21:11:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46573
IP address blocks: 87.248.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 477408085 (0x1c74ab55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Jun 10 21:11:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5136193bc8db5b6bada23bdb2bc0ddd830326ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:dc:12:e8:a5:bf:39:84:d8:d7:d6:b8:a3:8a:
40:6d:6a:db:86:a2:c9:0b:e5:71:63:39:32:70:46:
56:c6:b6:64:52:3e:2a:0a:74:f6:95:60:39:5a:19:
57:42:b6:df:9b:e3:e2:2a:52:63:6a:1f:3a:27:e1:
df:f7:5f:0f:7d:6c:b7:9a:98:a6:e8:cf:78:50:7f:
0b:0c:6e:a6:99:b2:62:35:fa:42:44:b4:28:97:ba:
75:e3:e0:36:c8:c6:29:0a:f0:dc:bc:45:05:47:19:
a9:06:af:c8:26:ec:23:7b:04:46:57:04:a0:2c:18:
bc:18:43:ba:33:2a:a1:a7:26:b1:7d:db:16:23:74:
27:b3:3d:a7:02:63:97:41:35:0f:50:fe:72:81:e9:
dd:c2:bf:c2:8c:42:4b:f7:c4:41:9d:2e:4f:ee:39:
db:d4:bd:2f:98:de:8f:c2:cf:e6:9b:a7:96:aa:c0:
f2:c7:6a:56:58:8e:91:29:29:82:a3:75:dc:58:0e:
8c:e0:a5:db:22:00:fd:03:29:60:1b:68:55:b0:fa:
09:1f:dc:7b:11:45:76:15:7b:cb:0f:03:29:a7:ff:
28:d3:3b:87:b7:1d:16:fd:55:c8:7c:7d:49:22:63:
80:df:dd:d1:05:30:2c:71:3c:ad:f0:30:ee:85:6a:
ba:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:13:61:93:BC:8D:B5:B6:BA:DA:23:BD:B2:BC:0D:DD:83:03:26:AB
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/1RNhk7yNtba62iO9srwN3YMDJqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.129.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:21:18:8a:20:81:67:b9:ac:69:05:74:8f:88:c0:c7:75:ed:
ec:70:03:d2:9a:12:c5:10:ea:e1:47:27:0b:bf:af:1c:13:77:
56:5a:53:1a:45:3d:63:b8:dd:c1:38:05:0c:19:63:b1:a5:30:
94:13:a6:8e:82:67:f6:99:00:86:03:c1:77:07:fc:f8:4c:79:
23:4e:f1:19:38:e5:f8:eb:35:b2:27:41:e6:5e:c1:d8:ef:c2:
b1:1e:36:ee:25:82:27:6e:56:22:02:28:7c:c5:47:43:d4:f8:
71:7f:e3:ad:85:63:b5:0b:b0:c7:4f:ed:34:59:cf:da:b1:ee:
39:50:ec:7e:2b:f9:b4:25:27:44:d8:91:68:3a:fe:b7:e4:c9:
e8:1e:00:f4:08:41:01:36:c8:d6:f7:41:5b:00:ea:07:a6:bc:
92:c1:31:b1:41:7b:be:57:03:a5:49:9e:70:16:c9:2c:ba:39:
85:48:74:d3:9f:5f:cc:96:21:b9:88:37:3f:96:24:8e:6a:17:
fd:6a:c1:3d:ff:70:9d:b3:7f:a2:30:7b:e1:e4:29:7d:56:22:
50:d8:0d:23:41:e8:54:b0:0e:66:c4:16:16:37:69:fb:79:e2:
0a:26:16:32:ac:05:be:a7:05:1c:ed:02:81:bf:0f:9d:d0:80:
f2:ec:e5:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:09 2023 by rpki-client on console-ams.rpki-client.org