Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/6tEkFcscrNpoS4qnAE_wiCZ8Zfo.roa
File: 6tEkFcscrNpoS4qnAE_wiCZ8Zfo.roa (raw, json)
Hash identifier: IEpt27vQbGsNfMxiL1PB3xeO2JrU5eSnIK5zvt4WUpU=
Subject key identifier: EA:D1:24:15:CB:1C:AC:DA:68:4B:8A:A7:00:4F:F0:88:26:7C:65:FA
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1C38DB46
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/6tEkFcscrNpoS4qnAE_wiCZ8Zfo.roa
Signing time: Thu 19 May 2022 15:02:30 +0000
ROA not before: Thu 19 May 2022 15:02:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 87.248.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 473488198 (0x1c38db46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: May 19 15:02:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ead12415cb1cacda684b8aa7004ff088267c65fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:2e:19:d3:9b:0c:7b:b4:d7:d0:af:37:83:44:
23:02:7b:64:3d:97:d8:c5:eb:91:e5:ae:9b:20:07:
02:b8:b7:69:bb:33:8f:7d:5d:3e:3f:5a:08:ac:20:
1f:96:48:4b:22:55:b6:a3:92:39:ee:a3:9b:99:8e:
7a:6f:2b:d1:25:3d:e6:4d:d2:b8:df:09:53:f8:b0:
b8:7a:38:09:9a:c4:2e:b5:f9:0a:88:34:5a:4e:3f:
ac:e5:0a:a8:17:17:8c:b1:00:2f:b4:6e:1c:ca:f4:
bf:d5:70:9a:35:ee:dd:99:ea:8f:4a:63:21:ea:31:
7e:e8:53:a2:89:cc:c7:0e:6c:bf:07:bf:f7:6b:c0:
b4:21:3f:73:10:c4:a4:87:ce:04:b8:25:e0:23:c5:
43:8a:78:8b:b8:b0:14:8b:6f:e7:64:40:20:24:1f:
5e:7e:c9:22:06:b6:14:43:60:7f:26:33:c9:46:04:
f6:4b:e5:9d:ee:06:35:f1:df:9b:9d:75:d2:91:5c:
00:73:cd:c9:7f:80:14:71:74:f8:c5:9a:b4:cd:b4:
0e:17:f8:8d:9f:69:e4:ec:0d:71:39:54:eb:9f:8a:
c1:69:78:55:3d:57:f8:97:56:6d:fe:47:bd:3f:35:
55:f2:19:82:b7:d9:cc:6f:1f:09:05:e5:de:32:07:
e8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D1:24:15:CB:1C:AC:DA:68:4B:8A:A7:00:4F:F0:88:26:7C:65:FA
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/6tEkFcscrNpoS4qnAE_wiCZ8Zfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.137.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:f9:c0:df:ff:bf:91:80:e5:59:af:fb:dd:7d:28:1f:5c:19:
b7:08:73:b0:d9:9f:51:64:3e:97:b5:78:74:3b:30:f2:d9:8b:
67:ad:a4:20:10:d2:79:30:de:66:5b:2a:fa:44:ab:04:5b:1d:
89:34:f3:93:81:93:85:bd:a0:1b:93:3a:e9:44:34:ad:c3:30:
33:5a:4e:9b:c2:46:e2:c6:47:fc:29:3a:23:95:f2:bd:78:6e:
01:c7:ad:51:aa:67:6d:bd:54:0f:4d:f8:67:a8:8e:7b:22:a5:
ee:59:63:64:a6:74:c1:c7:9c:76:6d:87:32:98:14:cb:28:3b:
fd:7e:e8:bd:7d:03:9b:98:a3:87:c5:44:95:22:2c:8e:34:9a:
0a:2e:52:c0:b2:2c:e1:65:19:f3:dd:08:16:2b:9b:00:28:56:
cb:1a:99:95:02:bb:1e:86:b1:1a:7e:35:6b:8a:01:ac:0b:72:
19:e3:6d:2c:0a:9e:c4:1d:3b:0e:78:41:26:cf:aa:dc:cb:5a:
80:16:16:b1:d2:49:06:d5:26:0b:86:f3:b8:a5:0c:c2:57:e2:
67:46:d0:29:6a:30:ba:d7:47:af:c2:ef:cf:94:8d:a7:d5:b3:
c0:91:d6:07:ba:09:e7:8b:61:2e:3c:7a:5a:68:01:1b:aa:88:
f9:89:22:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:09 2023 by rpki-client on console-ams.rpki-client.org