Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/RTuIt6_YHqMvbXjFG9ujZPZlFB8.roa
File: RTuIt6_YHqMvbXjFG9ujZPZlFB8.roa (raw, json)
Hash identifier: YF8M7BDatOWXMETyYhqAB9ho8Hdrt0cgOI0B2BWy1iI=
Subject key identifier: 45:3B:88:B7:AF:D8:1E:A3:2F:6D:78:C5:1B:DB:A3:64:F6:65:14:1F
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 0183DFB2BD7057417D6068AE43894619EFC3
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/RTuIt6_YHqMvbXjFG9ujZPZlFB8.roa
Signing time: Sun 16 Oct 2022 07:29:36 +0000
ROA not before: Sun 16 Oct 2022 07:29:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 87.248.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:df:b2:bd:70:57:41:7d:60:68:ae:43:89:46:19:ef:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Oct 16 07:29:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=453b88b7afd81ea32f6d78c51bdba364f665141f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:77:3d:4c:ce:34:c8:21:c7:5e:73:a1:01:8e:
e9:83:dc:fd:7d:57:2b:67:3f:29:17:c5:49:48:0e:
b4:cb:27:af:7a:9e:fe:54:f5:90:d9:15:89:c5:04:
05:27:25:3b:f2:21:df:54:04:76:b3:f6:e9:bc:33:
bb:c2:21:46:e8:ae:95:ee:79:9e:ff:ae:11:64:4c:
13:d6:53:ef:0e:bc:1e:bb:f0:83:7f:af:71:db:7a:
12:b5:0c:50:12:b1:20:c1:f1:1d:ff:63:45:fb:8a:
f1:ec:44:27:4f:fb:6a:91:f6:3d:6c:b6:e2:65:0a:
92:54:53:0c:55:fc:40:75:aa:ae:a6:2d:cd:9a:c6:
5a:97:2c:15:45:64:ba:de:79:a7:81:1b:ab:2d:ff:
af:9f:b7:ed:a5:93:89:1f:8e:60:e2:d3:cd:38:b6:
3e:5b:2c:55:7d:f7:3f:50:84:ef:72:c4:e5:2d:fa:
2f:a0:f0:f1:0d:80:2c:d9:c8:93:1a:f3:29:f3:1a:
89:26:57:e1:fd:9a:44:bd:be:74:c5:de:51:43:00:
5f:5e:e1:a9:df:f2:c2:06:38:04:a8:43:9f:73:49:
60:48:21:1e:f6:08:b9:3f:03:ad:34:eb:b4:41:fd:
bf:c7:b4:b0:fe:36:5f:05:62:0d:c7:85:a8:cd:06:
f1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:3B:88:B7:AF:D8:1E:A3:2F:6D:78:C5:1B:DB:A3:64:F6:65:14:1F
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/RTuIt6_YHqMvbXjFG9ujZPZlFB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.130.0/24
Signature Algorithm: sha256WithRSAEncryption
04:c9:85:23:a4:db:81:ee:e1:d8:97:ec:40:93:c4:da:35:72:
b9:6a:8a:f2:18:95:1a:f8:c7:b7:3b:26:5d:ea:e3:96:30:c9:
b9:06:df:13:78:41:c2:a5:6e:41:af:79:28:ea:b9:8e:59:6a:
a5:00:17:d7:3c:14:89:ab:31:62:53:8e:ea:f7:80:5d:95:93:
dd:39:c8:ee:6f:f7:15:32:b1:6b:fe:4b:77:1b:79:e5:9d:ba:
3e:e9:d0:1f:18:8b:91:ff:85:0c:91:4a:d3:19:a2:94:52:8f:
4c:4b:f4:f7:97:df:0e:a0:ca:b7:ea:be:c2:3d:6d:72:5d:67:
23:b0:30:8d:5f:42:27:95:3e:b9:fc:9c:b2:08:00:8b:bf:6c:
92:6f:60:95:73:11:aa:7c:a4:4c:aa:ef:b3:1b:a8:12:55:56:
01:19:56:f3:4a:c5:04:32:b0:c4:3d:39:7b:aa:e0:3f:8b:dc:
6b:b9:d1:0b:a0:6f:f4:65:08:9c:8c:6d:f1:24:7b:14:06:48:
63:f9:4c:53:ed:66:14:5c:33:46:5e:ac:e9:56:ad:ef:68:16:
37:13:a0:ad:93:45:e7:1f:4e:1f:16:bd:e7:37:ec:69:d7:5b:
39:16:f0:81:64:65:78:c0:93:17:e4:ac:05:60:37:c5:ef:76:
17:27:33:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:21 2023 by rpki-client on console-fra.rpki-client.org