Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/A_sFntuA1rfmBEeN1kkxNk-QjD0.roa
File: A_sFntuA1rfmBEeN1kkxNk-QjD0.roa (raw, json)
Hash identifier: mFg7ox+tVfQvARMI7yeOqJFUuzKXagk9JQleqG3RGOU=
Subject key identifier: 03:FB:05:9E:DB:80:D6:B7:E6:04:47:8D:D6:49:31:36:4F:90:8C:3D
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1B49D1EF
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/A_sFntuA1rfmBEeN1kkxNk-QjD0.roa
Signing time: Sun 27 Feb 2022 06:59:20 +0000
ROA not before: Sun 27 Feb 2022 06:59:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34078
IP address blocks: 185.180.128.0/22 maxlen: 22
87.248.145.0/24 maxlen: 24
87.248.144.0/23 maxlen: 24
87.248.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 457822703 (0x1b49d1ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Feb 27 06:59:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03fb059edb80d6b7e604478dd64931364f908c3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:2d:5b:0f:b8:ca:f9:8a:e7:f6:38:b9:60:14:
1b:41:4f:53:23:9f:e0:32:3a:54:ff:91:f9:56:48:
3b:9c:64:66:aa:a2:e2:0d:14:3d:33:dd:82:d3:14:
78:98:ef:2b:2f:06:bb:17:ee:0a:38:62:10:3b:f3:
08:f0:b8:ce:25:2a:8a:72:f7:2c:d5:3c:38:2c:ee:
10:cf:8e:43:ae:e2:09:fb:f8:6e:18:47:f7:f6:2f:
0b:77:93:c6:b4:11:54:6c:6d:87:03:63:11:de:47:
5c:d1:af:c6:b2:5b:cc:63:23:03:8d:13:98:a7:da:
8b:89:59:62:5e:e7:a7:8a:96:07:ca:b9:eb:d8:3f:
3b:ad:75:08:6f:05:e2:e4:4f:cd:42:c6:5c:c9:b2:
b9:55:95:d8:f9:3a:c0:3d:45:d3:ac:a2:29:89:c5:
5d:12:22:08:66:81:1c:0d:c0:0f:b5:09:30:66:8e:
8e:95:2c:86:9d:49:5f:43:1e:0f:3a:05:1d:74:ef:
ad:18:c4:2e:33:b2:2b:30:03:91:e2:ec:89:cb:23:
7d:d4:5b:e7:73:c7:c4:07:32:c1:95:ba:bc:a6:ad:
c9:52:65:1f:87:6a:39:a2:41:1b:90:99:0e:7f:37:
22:03:60:c1:c1:fd:73:18:91:87:92:b3:a5:3b:23:
8d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:FB:05:9E:DB:80:D6:B7:E6:04:47:8D:D6:49:31:36:4F:90:8C:3D
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/A_sFntuA1rfmBEeN1kkxNk-QjD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.144.0-87.248.146.255
185.180.128.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:3c:19:67:32:4c:ef:da:fc:ce:38:6a:b6:6e:66:c4:6e:39:
cd:31:09:76:9a:70:e0:9e:b4:79:fe:64:26:6d:08:90:6b:d3:
06:1f:0f:a6:14:23:d9:46:ce:c8:03:ff:91:91:f3:a7:41:69:
be:2f:fe:af:94:07:06:be:8c:67:e2:55:df:3c:7a:76:bd:34:
8f:af:87:8b:e6:a3:53:85:a4:f3:00:77:61:b5:22:49:6a:eb:
db:40:8a:19:a7:73:d6:5b:40:b6:83:8b:b3:c4:66:40:c3:d0:
c7:a1:7d:5f:dd:d8:4f:fa:27:87:47:1b:61:18:6c:c6:b8:e2:
34:30:78:d9:df:db:41:07:76:f6:a7:2c:e2:49:9e:d8:d5:75:
1a:08:9d:31:9a:fc:09:78:e8:4b:be:42:36:21:10:db:04:66:
42:08:ed:c0:ab:8f:5c:f2:ca:a1:ad:7d:83:f7:75:7c:32:ab:
4e:c1:9e:71:6f:44:0f:b3:df:e4:4b:80:c4:05:21:a9:19:29:
d8:e6:e2:b3:dd:d3:cd:8b:5b:05:1e:40:a7:47:a6:24:28:5b:
05:ae:7e:f3:ee:e5:b1:6c:ab:d1:40:b5:3a:12:88:13:77:7b:
1c:ec:e8:55:fa:80:54:c0:64:de:9d:2b:2d:83:a1:4f:35:96:
41:e2:fb:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:21 2023 by rpki-client on console-fra.rpki-client.org