Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/4kaWhv9tu6y_BKJb0mdRCy16kPY.roa
File: 4kaWhv9tu6y_BKJb0mdRCy16kPY.roa (raw, json)
Hash identifier: Z+/Ioqw184hVU89tMyWWwBD4LKe9dBv88i5vYql3Luw=
Subject key identifier: E2:46:96:86:FF:6D:BB:AC:BF:04:A2:5B:D2:67:51:0B:2D:7A:90:F6
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 018400CD190908348CF28C153E485ADE3A11
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/4kaWhv9tu6y_BKJb0mdRCy16kPY.roa
Signing time: Sat 22 Oct 2022 17:45:52 +0000
ROA not before: Sat 22 Oct 2022 17:45:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 87.248.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:00:cd:19:09:08:34:8c:f2:8c:15:3e:48:5a:de:3a:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Oct 22 17:45:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2469686ff6dbbacbf04a25bd267510b2d7a90f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:73:d6:9c:ab:21:a7:90:0d:bb:85:f8:50:84:
57:24:2c:55:b9:cf:4f:e9:43:93:dc:0e:4d:c3:36:
2d:65:93:76:d7:a2:5d:7e:88:14:08:89:fa:97:71:
a0:75:ac:c4:02:58:4a:fc:77:0f:f2:2c:63:1a:33:
60:fe:9b:8a:05:58:e3:6e:46:48:72:a2:c4:2f:26:
8b:77:e5:cd:73:98:06:e1:b0:5e:70:85:7c:e0:f1:
d1:85:34:a8:d1:05:64:71:87:0b:35:28:c9:1b:34:
a6:25:36:b8:af:a8:be:6e:4b:f4:c2:b4:d4:16:10:
cc:4f:83:97:51:2d:be:c5:20:11:3b:46:29:71:ef:
5c:8e:94:38:af:85:51:4e:ac:f8:c5:4a:20:df:83:
ad:03:55:54:54:db:cf:62:75:0f:dd:e1:91:27:b5:
6f:13:a2:8d:93:d2:6f:f8:69:0a:a2:2d:52:80:b0:
4e:5d:6b:2f:51:7d:99:b5:9c:4f:6a:0a:b6:51:ee:
a5:9f:32:f8:1e:20:ea:ce:ed:af:f9:74:94:ce:3e:
fb:3d:b9:ae:9a:61:77:18:a8:22:0e:1b:ad:eb:96:
67:94:59:38:30:b3:8c:67:c6:d7:37:d8:50:81:7e:
a2:d2:ad:a3:bd:49:43:08:ff:4b:f5:89:f9:4c:5c:
2f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:46:96:86:FF:6D:BB:AC:BF:04:A2:5B:D2:67:51:0B:2D:7A:90:F6
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/4kaWhv9tu6y_BKJb0mdRCy16kPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.148.0/24
Signature Algorithm: sha256WithRSAEncryption
99:5c:49:df:4b:8e:45:65:ce:58:93:a0:46:83:a7:99:a0:cd:
55:91:da:8b:f3:6b:5e:12:37:32:87:a4:1f:5b:65:e6:83:b2:
86:bf:14:28:2d:89:54:7b:ea:68:17:e5:74:f8:56:f7:5d:45:
ca:40:92:6f:14:a2:32:f3:67:d3:93:7d:0c:83:b1:a2:d9:9e:
d5:88:98:4e:e8:7e:9e:18:00:d1:0b:86:d1:e5:e3:d1:01:51:
02:62:17:1c:b6:ee:f5:6c:d0:2e:9f:ec:9e:09:e9:29:8c:1a:
24:7f:8e:de:70:c9:68:59:56:83:7c:e8:68:5c:04:ee:bc:19:
ce:60:1a:13:e9:43:d6:9a:8d:d5:1d:61:97:4f:f7:6c:62:a7:
f7:68:84:81:a0:3b:33:72:6a:63:47:1f:32:84:68:17:43:bb:
3a:99:ae:3d:b9:13:12:97:34:19:82:6a:08:c7:3e:76:48:89:
dc:e9:36:ee:64:66:59:93:73:b0:ff:12:61:ef:74:24:9b:13:
5f:6b:aa:0f:a5:92:2c:0f:32:9f:cf:a0:e3:32:71:2b:99:74:
94:f5:05:43:ec:54:00:83:d2:f0:1c:70:59:30:45:b6:f2:d9:
0d:a0:ed:cc:3a:10:31:02:95:9d:aa:2e:22:69:41:03:75:f9:
72:7d:09:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:21 2023 by rpki-client on console-fra.rpki-client.org