Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/G9NpG9WOpvLrEbk_hmorWk5bPJM.roa
File: G9NpG9WOpvLrEbk_hmorWk5bPJM.roa (raw, json)
Hash identifier: d8VQZG8xVmc27zkXz7gunImqxJDLpCziCJH0/bV9IPc=
Subject key identifier: 1B:D3:69:1B:D5:8E:A6:F2:EB:11:B9:3F:86:6A:2B:5A:4E:5B:3C:93
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1BF5B4B1
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/G9NpG9WOpvLrEbk_hmorWk5bPJM.roa
Signing time: Mon 02 May 2022 05:35:31 +0000
ROA not before: Mon 02 May 2022 05:35:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205421
IP address blocks: 87.248.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 469087409 (0x1bf5b4b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: May 2 05:35:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bd3691bd58ea6f2eb11b93f866a2b5a4e5b3c93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:90:7c:6c:df:02:2d:42:0a:bc:33:d0:b3:9e:
4a:c3:d0:c2:01:ae:cf:9d:9c:93:04:4e:65:2b:87:
59:a5:9f:28:87:23:f3:60:3a:46:45:eb:4b:cf:98:
cd:65:0a:f8:b0:fb:7b:1e:be:5b:ca:bf:1b:db:1a:
70:88:60:ab:94:73:2a:52:33:6e:84:b9:cd:55:2f:
e8:91:19:aa:ee:41:3a:f3:75:90:02:4f:ae:bf:71:
73:ba:76:84:70:1c:ec:46:4c:62:cd:77:ac:d3:67:
c9:30:cf:26:aa:4d:6c:58:25:77:de:64:a4:8c:b2:
ac:84:9c:9f:ea:01:23:b0:27:5b:84:36:8a:0d:ad:
4c:71:78:81:a7:cc:02:a8:4e:1c:fd:f3:b0:34:c7:
9c:26:a0:c4:69:b0:f2:58:3a:08:01:51:b1:a8:0d:
9e:a3:98:e2:2e:db:91:fd:23:eb:f9:62:43:87:ff:
65:94:34:2a:67:7b:0f:bb:6a:2a:d4:26:1b:c9:1c:
88:4a:40:eb:b3:3e:85:b3:ee:94:c9:b1:33:70:44:
71:a3:ef:de:0e:e3:24:8e:b2:d4:3f:5f:65:b0:c4:
a9:75:b0:26:fa:4b:8a:06:de:66:e0:10:e4:92:c8:
8a:62:40:91:03:54:af:45:70:a4:9a:36:d2:33:d3:
1b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D3:69:1B:D5:8E:A6:F2:EB:11:B9:3F:86:6A:2B:5A:4E:5B:3C:93
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/G9NpG9WOpvLrEbk_hmorWk5bPJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.132.0/24
Signature Algorithm: sha256WithRSAEncryption
26:c6:a2:19:75:95:0c:0c:8b:7d:bb:91:41:e5:38:c8:e8:35:
7c:af:54:22:86:cc:00:3f:5c:75:5d:59:80:71:0d:e1:2b:0b:
91:4c:7c:8b:e3:f2:ec:24:0e:46:4b:b8:8c:72:c4:38:b8:d1:
65:45:32:77:a9:70:5e:47:c0:ae:ac:31:b3:24:15:29:09:04:
32:06:9d:0a:f1:94:c3:36:ed:73:fb:59:b7:5b:65:a1:2e:cb:
88:04:a5:dd:ff:aa:e3:61:10:14:b1:96:2a:b6:a6:85:15:bb:
dc:05:cd:1d:bb:ae:06:31:87:ef:22:21:2e:54:c0:8d:e9:e1:
90:c6:95:f7:cf:c3:ab:05:49:3a:4b:a6:af:87:13:41:82:54:
70:95:6d:b3:5e:01:38:07:91:c2:ad:57:55:2d:ca:00:35:c9:
4c:b2:5b:4f:43:d8:29:74:45:69:94:21:83:2d:3f:03:68:41:
ea:db:c2:27:f2:fa:e0:a0:37:8d:30:a6:11:b0:a4:e5:7f:8c:
76:94:6e:7f:db:3f:68:63:e5:78:f2:cc:38:c0:cb:22:98:da:
2f:a9:bc:2f:62:b6:7b:a3:26:5b:35:82:3e:b6:e4:ef:58:6f:
0f:75:f4:b7:9f:67:5c:67:3f:24:c9:fb:50:c2:e8:4f:dc:8b:
fe:81:d1:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:21 2023 by rpki-client on console-fra.rpki-client.org