Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/Li-d2dI2h4-spvtUJXwQvteRK0I.roa
File: Li-d2dI2h4-spvtUJXwQvteRK0I.roa (raw, json)
Hash identifier: WaZhjmtKwwT3PPBmrK4kmgMFUIn0yD6/ZR+KeL+4tUE=
Subject key identifier: 2E:2F:9D:D9:D2:36:87:8F:AC:A6:FB:54:25:7C:10:BE:D7:91:2B:42
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1BDA64C2
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/Li-d2dI2h4-spvtUJXwQvteRK0I.roa
Signing time: Sun 24 Apr 2022 07:05:09 +0000
ROA not before: Sun 24 Apr 2022 07:05:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60631
IP address blocks: 87.248.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 467297474 (0x1bda64c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Apr 24 07:05:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e2f9dd9d236878faca6fb54257c10bed7912b42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4a:25:9d:9a:1e:00:e9:c0:ca:2c:ef:be:f2:
d8:6e:c3:b1:52:82:79:6c:66:72:2e:9a:10:51:2b:
a8:76:22:0c:97:11:63:09:88:18:4f:da:eb:dd:ac:
d0:72:2e:86:a8:8a:44:79:04:3e:2d:a4:25:2a:9f:
25:ea:9a:a5:3f:40:8b:f8:61:48:0e:60:e8:ce:3d:
76:6b:88:c4:52:3e:90:14:9e:40:02:94:99:3e:d4:
7a:ad:34:27:b6:37:cc:77:66:ba:67:1e:75:0a:0b:
a3:eb:ce:1f:f1:46:8b:3e:af:dd:c1:22:e4:d5:e4:
f0:24:a1:cb:5c:9a:f7:e0:6d:28:2e:46:7d:43:56:
ec:ee:f8:8d:42:59:3b:f7:9e:17:f8:15:7b:b9:8e:
00:73:5c:a1:5f:1c:c1:a7:7d:73:35:81:c9:86:39:
6b:17:7f:f4:1d:73:1f:96:12:ed:50:c5:f5:77:a7:
f0:08:a9:fb:08:77:71:52:65:e9:0f:24:94:fb:24:
c1:06:a0:fa:e8:6f:d6:df:c4:d9:47:1c:7d:a6:d2:
3d:95:54:6c:34:eb:0a:32:f1:14:b9:88:7d:21:52:
e8:0c:84:26:81:8e:56:fe:0f:63:63:56:72:b3:7f:
df:1e:6f:4c:93:0c:d9:e7:13:25:96:d0:0f:11:a1:
cc:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:2F:9D:D9:D2:36:87:8F:AC:A6:FB:54:25:7C:10:BE:D7:91:2B:42
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/Li-d2dI2h4-spvtUJXwQvteRK0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.135.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:03:a0:6b:ee:86:83:71:f5:6a:2a:3f:b9:fa:48:f0:55:92:
3d:b8:4e:c8:12:b2:c8:85:27:07:73:2b:b2:99:c8:ef:df:91:
85:56:82:70:23:e0:d5:ed:7b:f8:10:9d:88:3e:69:64:32:55:
b9:18:75:dc:6f:a6:d0:17:e3:c7:e7:cf:e9:6a:cb:ed:82:68:
8f:c5:3a:0b:fd:cf:c3:fb:17:68:44:9c:86:bf:c7:51:72:fb:
d7:50:f0:88:98:8f:d1:fb:81:28:b9:ed:e5:32:f4:96:71:3c:
5e:d9:b5:75:c9:37:7a:20:02:4c:5c:64:b8:b5:9b:9a:23:f9:
a7:cf:e9:5f:42:8b:80:bf:8e:8a:77:4f:96:d1:59:f3:9e:85:
98:0e:dd:cc:30:3c:6a:24:2a:d2:71:72:10:5c:db:aa:bf:60:
c8:b9:da:b1:af:10:9f:7b:12:db:b3:71:38:e5:fd:3b:40:48:
88:a4:6a:62:8b:17:32:04:46:b5:cc:af:62:9b:b1:45:d0:59:
8e:47:fc:3a:cc:20:0a:29:fd:fe:9b:be:2a:41:86:c5:e5:40:
8a:30:5d:d1:95:09:83:f5:94:30:75:78:57:01:c0:55:f4:cf:
00:91:ac:37:84:d8:cc:c0:a5:96:b6:f0:93:e2:be:51:c7:bf:
8e:d1:9e:82
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEG9pkwjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
N2Y2MWZjN2MwYWI0MWNlMTU0ZTdiY2IwOGVmOTYyMzUxYTQ2Nzg0MB4XDTIyMDQy
NDA3MDUwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmUyZjlkZDlkMjM2
ODc4ZmFjYTZmYjU0MjU3YzEwYmVkNzkxMmI0MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMxKJZ2aHgDpwMos777y2G7DsVKCeWxmci6aEFErqHYiDJcR
YwmIGE/a692s0HIuhqiKRHkEPi2kJSqfJeqapT9Ai/hhSA5g6M49dmuIxFI+kBSe
QAKUmT7Ueq00J7Y3zHdmumcedQoLo+vOH/FGiz6v3cEi5NXk8CShy1ya9+BtKC5G
fUNW7O74jUJZO/eeF/gVe7mOAHNcoV8cwad9czWByYY5axd/9B1zH5YS7VDF9Xen
8Aip+wh3cVJl6Q8klPskwQag+uhv1t/E2UccfabSPZVUbDTrCjLxFLmIfSFS6AyE
JoGOVv4PY2NWcrN/3x5vTJMM2ecTJZbQDxGhzKcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQuL53Z0jaHj6ym+1QlfBC+15ErQjAfBgNVHSMEGDAWgBR39h/HwKtBzhVO
e8sI75YjUaRnhDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RfWWZ4OENyUWM0VlRudkxDTy1XSTFHa1o0US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvOTIxM2VjLTg1YTktNDhkNi1hYTY5LWVkYzlkMDJmYWY1NC8x
L0xpLWQyZEkyaDQtc3B2dFVKWHdRdnRlUkswSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
OTIxM2VjLTg1YTktNDhkNi1hYTY5LWVkYzlkMDJmYWY1NC8xL2RfWWZ4OENyUWM0
VlRudkxDTy1XSTFHa1o0US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFf4hzANBgkqhkiG9w0BAQsFAAOC
AQEApwOga+6Gg3H1aio/ufpI8FWSPbhOyBKyyIUnB3MrspnI79+RhVaCcCPg1e17
+BCdiD5pZDJVuRh13G+m0Bfjx+fP6WrL7YJoj8U6C/3Pw/sXaESchr/HUXL711Dw
iJiP0fuBKLnt5TL0lnE8Xtm1dck3eiACTFxkuLWbmiP5p8/pX0KLgL+OindPltFZ
856FmA7dzDA8aiQq0nFyEFzbqr9gyLnasa8Qn3sS27NxOOX9O0BIiKRqYosXMgRG
tcyvYpuxRdBZjkf8OswgCin9/pu+KkGGxeVAijBd0ZUJg/WUMHV4VwHAVfTPAJGs
N4TYzMCllrbwk+K+Uce/jtGegg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:09 2023 by rpki-client on console-ams.rpki-client.org