Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/PvulLFQaDhOuI-Jmt3kU5VA-Ago.roa
File: PvulLFQaDhOuI-Jmt3kU5VA-Ago.roa (raw, json)
Hash identifier: OyOgSC0vsIQZQdNZEtyVUznPXElvjyROG84ScBozg0k=
Subject key identifier: 3E:FB:A5:2C:54:1A:0E:13:AE:23:E2:66:B7:79:14:E5:50:3E:02:0A
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1AC461ED
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/PvulLFQaDhOuI-Jmt3kU5VA-Ago.roa
Signing time: Sat 01 Jan 2022 14:59:29 +0000
ROA not before: Sat 01 Jan 2022 14:59:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59962
IP address blocks: 87.248.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 449077741 (0x1ac461ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Jan 1 14:59:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3efba52c541a0e13ae23e266b77914e5503e020a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ff:01:29:16:af:2e:2f:15:4d:d7:ad:ca:21:
56:6e:90:b2:19:98:50:d6:b5:a1:e0:51:5a:12:c6:
d4:34:10:22:4d:d2:4d:98:f3:ad:55:f6:14:b0:da:
f6:cb:9b:34:81:d8:4f:e3:e9:4e:ef:6a:8f:eb:44:
36:86:aa:a5:a2:79:76:82:80:48:49:9d:d9:7a:19:
50:b9:4c:68:f2:1e:5c:fb:ce:58:b1:71:ba:98:51:
bf:21:4d:56:c3:7b:ce:6c:89:a4:a1:2a:1c:25:4f:
02:d6:7f:a0:38:1e:3c:0a:1d:0b:a9:d9:3b:94:3a:
84:8c:f9:a2:5f:34:6a:02:90:67:5e:13:9d:f0:15:
bb:ce:88:6c:d3:80:09:69:9d:d8:5d:64:fb:69:72:
bf:4e:f3:d9:66:16:f3:e0:5f:88:7f:06:7e:55:ff:
d7:89:2a:71:f1:8c:15:3b:b4:6f:9a:23:2e:f2:71:
7f:26:d4:25:fb:e5:3e:e9:af:da:27:92:68:e5:e5:
18:f9:8b:b1:da:9b:09:a7:01:66:3d:7f:60:cf:65:
f0:da:f5:1b:a5:84:80:37:0b:48:c0:18:4c:79:a5:
09:ad:27:8b:e5:fd:ea:c5:e8:ef:fa:e4:96:12:ac:
12:0a:69:85:71:cd:3b:56:e8:90:55:3e:45:af:b0:
3f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:FB:A5:2C:54:1A:0E:13:AE:23:E2:66:B7:79:14:E5:50:3E:02:0A
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/PvulLFQaDhOuI-Jmt3kU5VA-Ago.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.154.0/24
Signature Algorithm: sha256WithRSAEncryption
05:53:a2:ba:74:55:db:e4:95:60:0e:37:88:48:d2:fc:74:f3:
c0:3a:f1:ce:97:7e:6e:ae:14:fd:04:9e:81:97:ad:50:6a:6f:
fa:46:51:6b:f6:65:ee:bd:97:94:ee:cf:ed:23:8b:aa:9c:10:
80:17:22:d3:ae:14:50:6e:d6:62:0d:ba:43:b6:9e:57:77:c8:
db:3f:a6:16:43:ab:a5:12:bc:f9:f7:3a:6b:93:83:97:6a:f4:
de:be:b1:56:e1:41:c8:d7:c6:99:26:60:78:32:89:5b:56:7b:
89:86:85:04:9f:a8:9e:c9:a3:92:aa:7c:8a:0d:19:28:fd:c9:
42:97:fa:60:4d:0b:2c:9d:48:10:3f:f9:45:22:d0:9e:ea:1c:
a8:c1:73:39:4e:11:b3:51:4f:e3:e5:c5:92:18:b2:24:3b:c0:
be:b0:21:32:d2:98:ae:6b:6d:4e:dc:24:4d:b4:07:db:d6:a6:
60:f3:2c:6c:3f:cf:4e:ca:42:a4:3c:22:2e:0d:3c:ef:e0:15:
04:81:dc:dc:52:ee:ff:8a:43:dd:6a:4c:b3:32:db:8d:38:ce:
bb:fd:48:3f:e5:9f:cb:3e:fe:e6:6e:93:21:58:50:5d:d0:68:
ea:8a:f8:23:76:07:7f:29:10:84:fe:32:12:d8:43:59:ec:70:
02:f8:01:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:26 2024 by rpki-client on console-ams.rpki-client.org