Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/JPcH_hB6bujpMIkGUiw6kR3oFII.roa
File: JPcH_hB6bujpMIkGUiw6kR3oFII.roa (raw, json)
Hash identifier: solVDLjaH1EU3dxqZLMPAgNtS5oEYl2bmLRGFMCP9BA=
Subject key identifier: 24:F7:07:FE:10:7A:6E:E8:E9:30:89:06:52:2C:3A:91:1D:E8:14:82
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1C528EE7
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/JPcH_hB6bujpMIkGUiw6kR3oFII.roa
Signing time: Sun 29 May 2022 10:28:05 +0000
ROA not before: Sun 29 May 2022 10:28:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134526
IP address blocks: 87.248.136.0/24 maxlen: 24
87.248.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 475172583 (0x1c528ee7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: May 29 10:28:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24f707fe107a6ee8e9308906522c3a911de81482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1d:16:73:0f:a6:6a:39:d6:ca:eb:e1:ef:03:
ba:86:64:13:ab:4b:6a:c2:aa:ba:4c:7c:fd:67:79:
2d:4b:c0:1d:43:e0:54:ef:72:8c:ff:ca:2f:cc:14:
d9:90:2b:f6:ec:7c:b1:b4:17:be:9a:4f:69:f8:8a:
72:29:84:0b:a6:a7:2c:0a:d5:2f:e6:8d:30:35:5f:
d0:31:ff:eb:58:92:51:b2:25:12:2c:45:2b:51:f3:
fc:4a:49:e1:cf:d5:f4:09:9b:5c:ab:66:42:6f:8b:
24:fe:bb:66:4b:2c:be:5b:2c:ce:b4:18:78:41:e2:
c3:26:3e:d6:ed:74:be:9b:97:38:c9:8a:52:c9:57:
ca:3a:5a:e2:d5:32:47:ba:a0:25:fe:79:46:24:cc:
48:b5:db:4b:53:cf:da:e0:2e:44:98:eb:be:4c:14:
ff:eb:30:f2:2a:5d:83:80:03:3b:60:a9:71:0c:3b:
d3:eb:b5:a8:50:6e:8f:cc:9c:58:f0:bb:fb:bb:e9:
0d:e5:cc:fe:30:f1:9a:c7:e7:2d:03:31:da:36:29:
4d:8f:f7:69:ff:06:ef:ce:22:94:e8:e2:e4:a1:a5:
7e:d8:ba:89:b6:03:9b:4f:c2:fc:a1:cc:d5:33:6c:
80:46:94:68:70:cc:6f:57:63:60:12:d4:c1:75:4b:
af:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:F7:07:FE:10:7A:6E:E8:E9:30:89:06:52:2C:3A:91:1D:E8:14:82
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/JPcH_hB6bujpMIkGUiw6kR3oFII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.136.0/24
87.248.146.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:b6:e9:ce:db:5b:c9:ba:5a:19:83:39:a4:ed:75:88:b6:fd:
49:f8:7c:44:a1:62:27:45:34:e4:b1:c4:b6:9e:8f:6e:d4:69:
dc:48:dc:ab:0d:f1:93:b6:0f:22:60:4d:7d:8a:db:29:81:52:
1d:8d:b7:a0:68:37:d0:da:aa:24:9c:f2:1e:71:4b:7c:fa:2b:
d5:12:53:5b:2c:22:e3:e7:42:4b:34:06:5b:4a:f7:48:a1:a5:
92:27:2b:5b:29:82:3d:e4:c3:fa:6c:cf:0c:c1:b9:fe:9f:60:
e1:f4:f5:61:37:1f:79:76:7e:38:31:17:a0:43:88:74:97:be:
cb:72:f4:c2:dc:c2:42:01:2c:45:c9:1c:7f:47:ac:fc:1a:18:
33:12:79:29:02:2f:d2:e8:44:1a:e6:8d:fc:af:d1:54:3f:a9:
88:03:f9:21:21:0e:c3:df:b7:d9:a7:1c:e9:64:a8:be:5a:6f:
f8:6a:46:75:86:74:a0:cb:60:6b:d8:1c:75:5a:a8:8a:d7:32:
64:67:bf:4c:4b:89:53:4c:92:27:32:4d:a1:b2:7b:d2:9d:83:
d1:0f:35:62:3a:a0:95:9b:d5:65:51:fa:15:d3:91:e2:4b:85:
82:38:7a:b2:2c:17:a9:1a:9d:7b:79:e1:53:41:4c:e1:ef:4e:
1e:a7:b8:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:35 2024 by rpki-client on console-fra.rpki-client.org