Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/Dx2FfjJAw7BU3EAP2X2LWJfTo1M.roa
File: Dx2FfjJAw7BU3EAP2X2LWJfTo1M.roa (raw, json)
Hash identifier: fxPoj5x6jrc1zR8P073eudeRmfe0wrKTTkThWoIGFSg=
Subject key identifier: 0F:1D:85:7E:32:40:C3:B0:54:DC:40:0F:D9:7D:8B:58:97:D3:A3:53
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 01847B2BE314F2D30C9D09A63CFBF3D80D76
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/Dx2FfjJAw7BU3EAP2X2LWJfTo1M.roa
Signing time: Tue 15 Nov 2022 12:03:04 +0000
ROA not before: Tue 15 Nov 2022 12:03:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212335
IP address blocks: 87.248.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7b:2b:e3:14:f2:d3:0c:9d:09:a6:3c:fb:f3:d8:0d:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Nov 15 12:03:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f1d857e3240c3b054dc400fd97d8b5897d3a353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b0:15:11:87:c8:9d:1f:1e:c4:57:14:74:59:
87:cb:01:e8:df:7e:90:8c:71:bf:c1:f3:79:5b:21:
b6:59:e5:af:5d:65:44:5b:19:78:1d:5c:10:6f:a6:
28:51:2e:55:3e:0a:ce:11:79:64:4e:a0:70:81:8c:
11:91:fa:ee:57:1b:70:02:2a:26:b6:de:b8:84:92:
77:fd:04:c8:70:77:0f:16:94:db:3e:a5:ed:dd:40:
ae:3c:56:e8:c5:6c:20:77:87:12:ae:57:77:ab:b7:
59:43:72:31:05:eb:5b:37:59:74:98:02:53:bf:c8:
1e:71:b9:1e:b5:9e:aa:7e:f1:e2:c9:b2:ec:0d:f7:
a1:39:a2:fb:cb:1e:1b:15:80:f4:82:46:d2:7e:4a:
fe:be:11:bb:5f:88:ab:db:87:66:c6:66:07:73:af:
5d:fc:f9:38:b2:69:b0:96:aa:c5:56:41:12:b2:b5:
a6:6a:3d:bc:04:c3:ca:e8:55:84:54:49:0a:e2:19:
0c:fa:d4:61:59:bf:b5:86:58:44:c0:c0:98:e1:f5:
93:62:08:9f:6e:4f:b7:35:89:db:f9:05:c0:eb:54:
52:ed:ed:44:ed:05:6d:7d:03:a1:e2:ea:95:ef:c1:
dc:9d:84:90:95:7b:98:aa:0c:b8:2a:7c:98:a4:63:
d4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:1D:85:7E:32:40:C3:B0:54:DC:40:0F:D9:7D:8B:58:97:D3:A3:53
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/Dx2FfjJAw7BU3EAP2X2LWJfTo1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.146.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:2d:6f:f5:56:36:6d:0f:d2:fc:43:5e:df:2b:7a:d1:32:b4:
d7:e9:41:74:44:3f:66:6b:7c:02:df:d7:bf:bf:54:86:68:23:
01:02:91:a2:89:e5:d5:93:39:9c:18:e4:df:d4:18:f6:d3:6e:
71:26:2c:2b:d2:bc:19:0d:40:f0:6d:10:35:ac:e3:31:1f:82:
be:fe:29:d7:02:e4:54:7b:8c:ef:a7:7e:60:8a:62:19:c5:46:
d2:36:22:44:a1:f0:dc:05:56:5b:83:a6:6f:ea:27:d5:14:84:
7a:12:5d:a3:98:23:35:e7:2f:19:ed:27:d8:17:2d:97:24:5e:
a7:57:a3:bb:9c:c5:f8:3d:00:19:a8:5d:b9:82:05:29:09:18:
77:c6:3d:98:20:c5:2e:bf:63:a3:cb:37:98:4f:b8:b1:6a:91:
b9:92:e6:d7:be:f1:e5:66:b5:05:9d:c2:5a:57:b0:f7:90:f5:
c1:b4:8a:ec:e6:c4:72:7e:ea:f1:61:39:b6:fd:fb:16:ff:55:
49:d1:63:ec:6e:68:56:6e:52:34:8c:a5:9e:80:09:fc:b0:79:
9f:4b:30:35:44:5f:0d:26:1a:f0:d8:41:c2:4f:6d:1e:6e:de:
c0:5b:c2:84:fe:64:3f:c0:fe:e1:5e:96:64:eb:de:9d:d8:d7:
6d:93:b5:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:26 2024 by rpki-client on console-ams.rpki-client.org