Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/S383aaIv4lmKMhYLQKPhVKJGou8.roa
File: S383aaIv4lmKMhYLQKPhVKJGou8.roa (raw, json)
Hash identifier: 3kbmDEVWioYQrnmNfdhqSzWNzuaktqZRIZGVwgs6y+4=
Subject key identifier: 4B:7F:37:69:A2:2F:E2:59:8A:32:16:0B:40:A3:E1:54:A2:46:A2:EF
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 0182A31F522B9A5D0665C82ADF5A6A17C02D
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/S383aaIv4lmKMhYLQKPhVKJGou8.roa
Signing time: Mon 15 Aug 2022 20:08:35 +0000
ROA not before: Mon 15 Aug 2022 20:08:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47843
IP address blocks: 87.248.128.0/24 maxlen: 24
87.248.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a3:1f:52:2b:9a:5d:06:65:c8:2a:df:5a:6a:17:c0:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Aug 15 20:08:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b7f3769a22fe2598a32160b40a3e154a246a2ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3e:b1:06:48:30:e9:94:1a:31:01:eb:ee:0c:
3d:17:72:7a:78:77:48:8c:31:cf:5c:b0:17:d3:fa:
5f:e9:ff:73:e4:13:b8:54:16:b5:6c:b1:21:e6:95:
86:0e:04:f0:cf:96:43:77:ce:fe:a0:15:16:60:32:
77:5c:45:24:c0:3f:4b:98:0d:4d:ea:11:3c:54:a5:
63:38:d4:ee:6d:57:a7:09:5f:a7:5f:0f:e4:48:5a:
9b:65:74:cd:e9:0a:89:ed:87:7e:6d:35:17:03:14:
f2:40:ac:f7:0f:c1:71:c7:53:ed:d4:31:42:04:56:
92:4a:30:24:cc:6a:1e:9d:98:2a:5a:12:f8:5a:23:
b2:c0:cb:f9:a2:9b:c6:3d:4b:5f:ad:78:a8:df:14:
36:44:32:cc:96:e6:66:f5:1c:0b:20:76:ea:9a:20:
4f:fa:31:d1:3c:32:83:49:ca:d4:c9:18:fa:e1:13:
a4:71:0c:c7:48:c3:e0:b6:dd:4d:82:be:a2:6d:fa:
d1:11:4b:b4:88:0c:fd:17:98:19:60:4c:d8:d7:e1:
c5:07:87:be:e5:c7:2e:53:05:ac:fe:a9:cf:34:38:
9f:90:43:21:c4:37:0f:68:93:e6:f7:91:7b:94:34:
3b:99:33:f4:12:ef:a6:0a:23:8a:80:d9:2c:90:f7:
f0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:7F:37:69:A2:2F:E2:59:8A:32:16:0B:40:A3:E1:54:A2:46:A2:EF
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/S383aaIv4lmKMhYLQKPhVKJGou8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.128.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:3d:89:c9:b2:5c:f3:67:ef:12:86:fa:f0:9c:f8:80:cc:b0:
43:f9:0a:a4:be:3f:61:2c:d8:50:33:fc:8b:b5:d4:fc:9f:e3:
f4:98:03:ce:cf:2b:f7:56:72:2b:6f:ee:2d:04:19:a0:ec:fd:
3a:a3:22:fc:d1:33:74:8b:a2:b2:74:37:d4:63:f5:d1:9a:cf:
2e:3f:75:68:f7:cf:93:ed:1e:ed:c2:84:5a:e9:96:d1:45:2d:
0c:6f:e8:62:22:78:3a:13:04:97:7a:47:3a:fe:c9:87:bd:35:
78:c3:3e:18:af:ed:4d:72:db:7d:7a:e9:5c:8a:fd:af:44:8b:
ae:74:16:55:47:fd:d7:a8:12:26:86:49:b4:c7:19:cd:bf:24:
64:b2:e9:60:be:e0:30:65:7c:dd:78:f2:f0:57:67:88:91:f6:
3e:1d:06:e6:97:1a:c3:73:4c:b3:af:c6:f9:67:41:d9:19:d7:
d7:5d:75:17:6d:4c:4e:08:d2:28:a1:bb:c4:1e:64:70:62:dc:
d5:bb:45:74:3b:e4:af:1f:60:c1:02:a5:ed:49:d1:96:0a:ab:
bc:1e:56:9a:50:5f:bb:77:31:5b:a2:12:ea:c6:e9:c7:c2:4c:
3b:d2:4a:80:d9:9b:51:df:c6:4b:b8:0b:f0:ec:a8:1e:6c:f3:
a4:1c:49:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:35 2024 by rpki-client on console-fra.rpki-client.org