Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/2pIHHzJ-yxBI_fvbZYRIaJ0iz-o.roa
File: 2pIHHzJ-yxBI_fvbZYRIaJ0iz-o.roa (raw, json)
Hash identifier: 8GrQTNHJEM9eVPIxhCPEH5ECCB7+dQNxp4xcEtADfkU=
Subject key identifier: DA:92:07:1F:32:7E:CB:10:48:FD:FB:DB:65:84:48:68:9D:22:CF:EA
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1BF13709
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/2pIHHzJ-yxBI_fvbZYRIaJ0iz-o.roa
Signing time: Sun 01 May 2022 14:15:00 +0000
ROA not before: Sun 01 May 2022 14:15:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 87.248.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 468793097 (0x1bf13709)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: May 1 14:15:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da92071f327ecb1048fdfbdb658448689d22cfea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a6:9e:f0:d2:d0:86:d9:0a:a9:09:42:05:02:
89:f3:a8:98:32:60:40:d5:82:3c:16:77:f7:dd:04:
9e:00:19:bb:77:86:6c:d7:06:e5:21:95:8d:48:62:
13:76:f5:44:17:2e:8c:dc:91:21:c0:5e:cd:80:a6:
1a:47:32:bf:b5:8d:82:7b:e2:29:a6:51:92:58:0b:
cc:1c:cc:3b:0a:7a:1e:a1:96:18:c9:f0:82:a4:ba:
d6:1b:09:7b:bf:35:45:a5:85:87:01:9b:af:86:cc:
dc:22:dd:cf:55:c2:96:3a:97:d1:5a:26:fa:e8:fb:
e5:8d:1a:eb:1f:e1:55:09:31:6a:ac:3e:c4:5b:a6:
89:4a:6f:0e:68:b1:5d:a5:d1:64:ec:79:0e:25:45:
b1:eb:12:2b:a8:80:fa:9e:fc:b8:c6:b5:ad:54:ee:
df:89:5f:24:03:dd:c6:b2:9c:49:19:ae:40:89:aa:
b3:5e:25:f0:41:0f:af:0f:1a:e1:c5:31:15:da:12:
dc:a8:8f:91:2c:a3:6b:ff:89:1f:c0:63:ab:4f:d1:
4f:d4:bd:ab:4e:77:49:87:a6:7c:8a:76:a1:65:a2:
3f:47:07:f1:1f:4c:1a:6e:a7:20:d2:94:f2:02:f1:
41:06:75:f7:2c:87:28:05:82:02:59:99:f4:5a:91:
a2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:92:07:1F:32:7E:CB:10:48:FD:FB:DB:65:84:48:68:9D:22:CF:EA
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/2pIHHzJ-yxBI_fvbZYRIaJ0iz-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.134.0/24
Signature Algorithm: sha256WithRSAEncryption
71:33:e8:77:20:cb:f6:72:e1:8a:85:a1:55:db:f2:d8:8e:22:
09:e8:a3:f6:17:4a:0a:10:f8:c7:32:60:45:79:e1:00:2d:67:
c0:7f:4a:da:69:4b:29:c1:ae:5e:53:86:40:63:bb:ca:39:c7:
6b:6b:c0:c4:86:be:a5:e2:7b:3b:d1:62:43:02:1c:41:91:1c:
8f:83:4b:90:3d:41:0a:d9:09:38:3f:62:bb:1c:90:89:84:19:
ca:7d:e4:d5:db:2c:98:ae:bc:27:4f:44:d6:d6:93:45:c2:fe:
24:a2:07:09:60:c3:77:cc:eb:d6:01:00:3a:67:f0:17:f6:b6:
fd:30:b1:30:b1:5d:fa:f5:c3:0e:af:ba:b8:0d:fa:d8:91:54:
20:0c:22:ad:c0:cc:de:a9:d6:d8:af:58:fc:59:b1:1c:75:0c:
f6:8c:7f:a8:5a:77:85:1a:88:6d:b9:80:a5:ac:6c:ac:00:72:
0e:54:73:f0:2a:fe:52:bf:f3:d1:20:4d:01:0c:45:4d:31:07:
4c:b3:a3:b6:56:45:0c:94:e2:81:59:67:d6:18:84:82:f2:19:
aa:f3:3d:07:a0:64:5d:16:b2:90:b8:fe:60:c9:22:4d:6a:dd:
21:65:ff:27:73:55:29:c9:08:e8:aa:a2:94:80:72:0d:4c:24:
a9:cb:c4:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:35 2024 by rpki-client on console-fra.rpki-client.org