Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/Lpk-9KYn0VaaiOOFlaEOGM9ofh0.roa
File: Lpk-9KYn0VaaiOOFlaEOGM9ofh0.roa (raw, json)
Hash identifier: W7yGvKKXjzTiBFIvudjQR4nRd3chA0QlfPzmorzBVFM=
Subject key identifier: 2E:99:3E:F4:A6:27:D1:56:9A:88:E3:85:95:A1:0E:18:CF:68:7E:1D
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 01840F415B24485496B3DE95757197E9825E
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/Lpk-9KYn0VaaiOOFlaEOGM9ofh0.roa
Signing time: Tue 25 Oct 2022 13:07:32 +0000
ROA not before: Tue 25 Oct 2022 13:07:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43350
IP address blocks: 87.248.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0f:41:5b:24:48:54:96:b3:de:95:75:71:97:e9:82:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Oct 25 13:07:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e993ef4a627d1569a88e38595a10e18cf687e1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:53:b6:1e:b3:7a:64:cd:49:90:c2:83:bd:4b:
94:9c:f0:1f:61:33:f1:1b:ed:d9:5c:2c:e7:a2:b6:
2f:5c:cb:8c:cd:ce:21:02:6b:5e:f5:94:ec:67:9b:
03:b3:f2:84:cb:c1:86:6a:07:f6:cd:1d:16:f4:69:
2e:ac:21:b4:86:17:8d:2d:5e:bc:75:4e:60:62:68:
e4:88:6d:47:11:b5:0b:e4:d7:05:e4:41:ef:63:27:
d8:24:08:31:e9:3c:3c:c0:6e:2f:88:3d:de:9e:9d:
ab:6d:b3:a6:70:02:79:90:3f:db:46:84:d1:ca:62:
97:5d:ce:6c:58:c7:03:66:1b:ee:06:f0:c1:4b:62:
6c:23:2b:a5:db:79:b3:e5:01:b7:1c:a6:ba:24:16:
b4:76:1e:4a:b7:fe:0e:02:f4:61:b3:6c:95:6c:07:
dc:5a:59:d7:8c:35:2a:40:3b:54:12:0f:86:d7:ed:
ce:2a:51:2f:57:61:4c:b3:36:e4:fd:4c:a2:b3:1f:
ae:e0:59:cf:d0:cd:ae:e6:e7:c6:07:77:42:2a:a7:
9f:5e:f4:54:66:84:5f:61:22:fe:05:5e:a3:ca:fa:
fb:b8:27:3e:db:ab:66:3e:5a:8d:f5:a2:b6:9c:ff:
bd:cd:5f:7d:c2:0f:04:b6:e5:c5:1d:5b:8d:99:04:
53:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:99:3E:F4:A6:27:D1:56:9A:88:E3:85:95:A1:0E:18:CF:68:7E:1D
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/Lpk-9KYn0VaaiOOFlaEOGM9ofh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.129.0/24
Signature Algorithm: sha256WithRSAEncryption
82:64:16:b2:4d:90:28:2d:2e:46:1e:18:03:dc:f6:59:f1:0a:
97:0a:7e:13:a3:d7:ac:17:34:5d:cd:b6:1f:c3:58:6f:cf:8d:
ec:78:d0:69:66:da:25:c1:c4:35:96:10:4c:e8:0e:83:ca:83:
a1:fa:4b:41:02:df:1a:2d:d5:d7:93:d7:6e:ef:a4:5c:e0:41:
c8:2c:aa:cc:8b:2c:15:e4:63:40:d0:51:54:f4:b9:45:99:c8:
b0:4d:d2:ca:e5:38:26:27:bc:ab:4f:cd:a9:0f:51:d7:43:fb:
78:b9:73:7c:f4:95:58:dd:7a:13:cd:24:02:b0:f8:cc:18:f5:
ae:ae:2f:63:83:97:9d:95:9d:98:a6:c0:22:20:3a:3f:a3:34:
fb:1d:a8:4e:b3:e2:ca:8f:1e:b7:97:37:60:ae:2b:72:9d:38:
b7:d1:e1:c5:ae:f3:da:0b:aa:88:be:fc:b7:6d:ad:3a:85:cb:
d4:6c:bf:a3:18:75:cc:d0:cc:d1:34:c4:15:db:f6:74:c7:f6:
66:d8:8a:9a:d6:2e:29:8a:5f:a7:9e:cb:ad:09:6a:39:0b:eb:
22:36:84:bd:05:0d:42:ef:53:69:a8:cf:fe:94:af:5a:3e:12:
67:9e:b6:54:3b:2d:21:b2:c8:85:31:74:1f:b8:18:85:7c:74:
53:c4:98:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:09 2023 by rpki-client on console-ams.rpki-client.org