Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/MP_x5wnbCS_eTu2OUD_BAVldx6A.roa
File: MP_x5wnbCS_eTu2OUD_BAVldx6A.roa (raw, json)
Hash identifier: bAS37zN2Lz1CdDR8l/gpJyeez36AnKKchraC87wNZpw=
Subject key identifier: 30:FF:F1:E7:09:DB:09:2F:DE:4E:ED:8E:50:3F:C1:01:59:5D:C7:A0
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1C55778A
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/MP_x5wnbCS_eTu2OUD_BAVldx6A.roa
Signing time: Mon 30 May 2022 06:46:13 +0000
ROA not before: Mon 30 May 2022 06:46:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 87.248.137.0/24 maxlen: 24
87.248.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 475363210 (0x1c55778a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: May 30 06:46:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30fff1e709db092fde4eed8e503fc101595dc7a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:56:61:e3:24:f0:d6:de:c3:ed:7a:21:eb:e9:
b5:a4:67:15:b8:14:7b:f5:3e:86:7d:88:f1:db:16:
77:5d:05:c3:94:fa:ff:ef:53:95:2a:27:18:fe:1a:
bc:fa:5b:2e:60:f1:7e:e5:a3:7f:15:d3:ce:53:9c:
c1:84:2c:d1:28:fe:9c:54:8d:4f:ce:2a:64:0c:79:
42:69:0a:b0:53:c9:f2:3a:6b:ad:43:33:d4:fc:c7:
64:80:59:1e:7c:23:52:3e:35:32:0c:71:60:3a:75:
94:19:f7:3f:0b:d2:8d:f5:de:7f:d1:d6:1e:2b:86:
4c:43:c1:b5:7b:ee:16:ae:be:23:91:2b:f4:53:2c:
3f:a8:d8:77:f5:d4:74:86:c5:43:ed:3d:82:2d:77:
85:94:5f:4e:5c:fe:19:22:79:13:ee:73:4f:f9:29:
54:6d:bf:7e:65:b7:26:3b:11:68:3a:4e:c7:a4:27:
76:00:b4:d1:fb:87:32:2e:aa:b1:bb:10:92:58:9a:
c6:4c:66:7b:89:e5:37:be:a7:a3:27:8c:9f:e5:60:
4d:e8:e4:60:14:a8:82:cc:7c:37:8f:f2:2d:e6:8e:
43:de:11:24:c5:5c:42:8a:de:d2:27:db:89:1f:3c:
07:d3:3d:56:8b:dc:e7:db:11:10:9e:1b:33:df:f0:
e4:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:FF:F1:E7:09:DB:09:2F:DE:4E:ED:8E:50:3F:C1:01:59:5D:C7:A0
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/MP_x5wnbCS_eTu2OUD_BAVldx6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.137.0/24
87.248.155.0/24
Signature Algorithm: sha256WithRSAEncryption
61:50:d2:f3:23:c4:41:9e:06:30:a9:cf:ef:a1:87:61:52:33:
45:0d:dc:75:92:2c:49:dd:01:ef:1b:60:a0:34:18:ca:9a:71:
c9:26:ce:9c:de:0b:9a:ba:db:60:a6:e6:00:07:00:c2:37:26:
4a:b2:94:67:63:e6:6f:75:f6:44:5f:cb:d2:a2:37:7f:60:79:
c6:cd:7f:80:e5:3e:6c:ff:86:c0:29:00:a4:d8:bd:54:05:66:
75:c4:e4:31:04:e9:8b:fb:1d:f3:cb:c3:f3:93:24:96:13:ab:
e6:82:64:ae:8d:c6:56:0c:21:40:e7:d7:bc:03:ab:0e:a1:ca:
50:5f:19:ef:bc:3f:d6:95:b8:1c:99:6b:ae:13:a2:23:4a:00:
54:2b:bb:1d:da:47:9b:c9:b2:08:2b:9b:12:9d:24:d8:c4:6c:
43:67:5e:1d:fe:f6:d2:b6:51:83:8c:85:32:94:f0:88:b9:c3:
11:75:43:9a:b3:a4:a4:d1:49:df:a4:53:b2:f0:d0:8f:c2:34:
c4:27:e7:45:6a:8e:71:46:97:1d:41:a9:43:aa:2e:4c:2d:f5:
8e:39:7a:7f:8e:09:76:06:c4:70:6d:9b:06:77:41:f4:1e:a9:
6f:99:13:80:2f:b5:49:ca:be:ee:39:cb:02:30:01:30:c0:d0:
4e:b5:07:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:09 2023 by rpki-client on console-ams.rpki-client.org