Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/5l7rEzLR--t7ZjOQ7eTtbCfNh08.roa
File: 5l7rEzLR--t7ZjOQ7eTtbCfNh08.roa (raw, json)
Hash identifier: woz/qwr5O8ZAsWI+wg/hSQ9w6OGu7jFLRbvpZzpql/A=
Subject key identifier: E6:5E:EB:13:32:D1:FB:EB:7B:66:33:90:ED:E4:ED:6C:27:CD:87:4F
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1C436486
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/5l7rEzLR--t7ZjOQ7eTtbCfNh08.roa
Signing time: Tue 24 May 2022 14:27:58 +0000
ROA not before: Tue 24 May 2022 14:27:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 87.248.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 474178694 (0x1c436486)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: May 24 14:27:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e65eeb1332d1fbeb7b663390ede4ed6c27cd874f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:47:c4:60:05:7b:36:16:fe:1d:75:d9:3a:a7:
18:b2:fd:7d:09:f8:c7:82:18:22:84:c0:d9:c8:98:
69:4f:d8:9b:ed:f2:98:57:3c:9f:45:60:9f:db:35:
74:69:ce:bd:4e:9e:f7:d3:ee:06:b6:00:d8:a6:e5:
66:16:62:28:e2:8f:1f:86:89:c5:37:3c:90:62:9d:
0c:d5:28:4a:6e:87:0f:90:50:15:6d:04:d1:47:c1:
58:12:8a:95:81:07:b6:ca:ec:7f:be:67:95:74:5b:
e7:55:63:c6:da:41:7c:8f:41:d8:05:c8:af:5a:34:
3b:be:47:f2:74:4e:56:d2:db:d5:8e:5b:58:ea:40:
94:3c:c5:b9:44:9b:42:d6:cd:f0:97:4d:c7:1f:11:
bc:93:0c:51:7d:78:a8:4b:19:e3:d8:70:22:4b:da:
44:7b:2e:06:77:c4:1c:68:07:6a:05:0f:70:2c:ad:
2c:ff:c7:21:99:7a:5e:09:63:17:30:b8:da:96:f9:
e3:2a:d2:5b:62:75:9a:24:9f:7c:30:5a:c3:59:49:
8f:28:b8:b7:74:5e:ba:e0:7e:9d:e5:76:a0:09:87:
d1:2a:0e:98:30:ec:6d:ec:c5:18:fc:7e:70:56:45:
fd:36:47:55:3f:20:c5:77:51:1d:f5:cc:84:db:70:
86:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:5E:EB:13:32:D1:FB:EB:7B:66:33:90:ED:E4:ED:6C:27:CD:87:4F
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/5l7rEzLR--t7ZjOQ7eTtbCfNh08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.138.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:41:cf:ae:6b:83:a8:70:b9:0a:e1:af:02:af:79:e7:92:ad:
e0:0c:37:a4:b5:28:da:26:86:70:ec:dd:35:02:1e:04:f7:9a:
72:8c:42:7e:10:ed:41:63:39:d0:6c:69:d4:46:5b:da:0b:6e:
ed:ef:c2:e0:9f:22:4e:48:83:50:1e:bc:01:31:ca:02:2d:b8:
e3:4c:f0:ca:52:75:75:06:b7:77:e6:4b:da:34:b8:67:ec:fa:
80:a1:4f:ab:86:04:6e:44:e3:3a:11:e5:39:6e:df:f3:24:d6:
51:c9:b8:de:1e:91:ab:77:c5:a4:77:7f:2f:6b:7b:f4:50:5a:
d4:f5:95:79:62:94:ab:f3:c2:b2:0f:e4:22:b8:98:56:e2:4f:
1e:19:65:86:e2:a6:5a:ff:4f:8e:1f:ad:cb:9c:fa:bd:1f:6a:
7b:21:66:a7:8b:f6:87:7f:68:d2:09:b8:49:db:fa:ec:6a:dc:
93:87:7e:19:4a:e2:fe:81:f4:2f:3e:92:28:cb:d6:b3:ba:69:
34:26:36:64:5b:10:19:15:95:74:76:01:39:79:82:fe:bb:34:
19:c1:d4:52:22:d1:22:14:bd:23:20:96:73:fe:80:38:60:bb:
d3:14:3c:0b:b2:19:dc:f3:ab:35:c9:71:16:0a:c7:cc:85:f8:
f6:a5:91:a1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHENkhjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
N2Y2MWZjN2MwYWI0MWNlMTU0ZTdiY2IwOGVmOTYyMzUxYTQ2Nzg0MB4XDTIyMDUy
NDE0Mjc1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTY1ZWViMTMzMmQx
ZmJlYjdiNjYzMzkwZWRlNGVkNmMyN2NkODc0ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMxHxGAFezYW/h112TqnGLL9fQn4x4IYIoTA2ciYaU/Ym+3y
mFc8n0Vgn9s1dGnOvU6e99PuBrYA2KblZhZiKOKPH4aJxTc8kGKdDNUoSm6HD5BQ
FW0E0UfBWBKKlYEHtsrsf75nlXRb51VjxtpBfI9B2AXIr1o0O75H8nROVtLb1Y5b
WOpAlDzFuUSbQtbN8JdNxx8RvJMMUX14qEsZ49hwIkvaRHsuBnfEHGgHagUPcCyt
LP/HIZl6XgljFzC42pb54yrSW2J1miSffDBaw1lJjyi4t3ReuuB+neV2oAmH0SoO
mDDsbezFGPx+cFZF/TZHVT8gxXdRHfXMhNtwhicCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTmXusTMtH763tmM5Dt5O1sJ82HTzAfBgNVHSMEGDAWgBR39h/HwKtBzhVO
e8sI75YjUaRnhDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RfWWZ4OENyUWM0VlRudkxDTy1XSTFHa1o0US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvOTIxM2VjLTg1YTktNDhkNi1hYTY5LWVkYzlkMDJmYWY1NC8x
LzVsN3JFekxSLS10N1pqT1E3ZVR0YkNmTmgwOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
OTIxM2VjLTg1YTktNDhkNi1hYTY5LWVkYzlkMDJmYWY1NC8xL2RfWWZ4OENyUWM0
VlRudkxDTy1XSTFHa1o0US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFf4ijANBgkqhkiG9w0BAQsFAAOC
AQEAjUHPrmuDqHC5CuGvAq9555Kt4Aw3pLUo2iaGcOzdNQIeBPeacoxCfhDtQWM5
0Gxp1EZb2gtu7e/C4J8iTkiDUB68ATHKAi2440zwylJ1dQa3d+ZL2jS4Z+z6gKFP
q4YEbkTjOhHlOW7f8yTWUcm43h6Rq3fFpHd/L2t79FBa1PWVeWKUq/PCsg/kIriY
VuJPHhllhuKmWv9Pjh+ty5z6vR9qeyFmp4v2h39o0gm4Sdv67Grck4d+GUri/oH0
Lz6SKMvWs7ppNCY2ZFsQGRWVdHYBOXmC/rs0GcHUUiLRIhS9IyCWc/6AOGC70xQ8
C7IZ3POrNclxFgrHzIX49qWRoQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:21 2023 by rpki-client on console-fra.rpki-client.org