Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/S_8DQnK_vLVwtJKed3Q6P4aSaBY.roa
File: S_8DQnK_vLVwtJKed3Q6P4aSaBY.roa (raw, json)
Hash identifier: tzJvXLISsCSVnRTVR5JH2ORXhljZcjs3j7Re5rdvmy4=
Subject key identifier: 4B:FF:03:42:72:BF:BC:B5:70:B4:92:9E:77:74:3A:3F:86:92:68:16
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 0181D3BE89F1B39194F4A54184B7919D3D81
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/S_8DQnK_vLVwtJKed3Q6P4aSaBY.roa
Signing time: Wed 06 Jul 2022 13:41:28 +0000
ROA not before: Wed 06 Jul 2022 13:41:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 87.248.132.0/24 maxlen: 24
87.248.158.0/24 maxlen: 24
87.248.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d3:be:89:f1:b3:91:94:f4:a5:41:84:b7:91:9d:3d:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Jul 6 13:41:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bff034272bfbcb570b4929e77743a3f86926816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:1b:94:ab:2c:73:f0:08:c1:08:12:06:7e:26:
c6:f3:06:04:d5:53:72:c9:c0:48:59:c0:fb:52:7f:
5d:99:fc:20:09:2a:56:28:b1:ec:9d:a8:d5:02:37:
ef:19:50:6c:31:4b:83:28:ef:e4:4c:f8:11:75:9a:
59:44:7a:cb:77:fb:2d:cd:85:2a:84:6c:8c:c2:92:
66:92:a2:20:77:7d:e4:05:3e:9e:3e:cb:3c:54:15:
05:93:b3:83:5f:89:aa:cc:17:8f:a8:36:30:51:79:
00:2b:71:f4:05:f5:18:23:b9:c5:7a:7f:cc:5f:6f:
b5:11:53:65:30:64:c9:f0:f0:77:85:b8:d3:b8:14:
20:7f:e4:e1:43:e8:bc:4f:85:c2:2b:2b:63:9d:40:
7b:c5:5c:f6:83:3c:1a:0e:d8:b7:17:b0:c9:83:75:
3f:0b:70:5a:11:fc:30:2a:52:4e:93:c9:1f:28:7d:
5c:c8:18:cf:80:0c:b5:3f:4d:16:85:27:ec:96:74:
f0:b3:10:02:8f:9a:c3:fc:6a:53:14:20:95:04:08:
7c:9e:1a:e8:02:a8:5c:93:64:1e:ab:c0:bd:e8:ae:
bd:b9:a2:1b:60:5e:c0:3f:6e:55:c1:a4:55:48:ef:
bb:cd:27:45:dc:ab:5d:5e:05:2b:18:e1:18:48:db:
e7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:FF:03:42:72:BF:BC:B5:70:B4:92:9E:77:74:3A:3F:86:92:68:16
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/S_8DQnK_vLVwtJKed3Q6P4aSaBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.132.0/24
87.248.156.0/24
87.248.158.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:21:58:b9:9b:90:84:ba:5b:6f:88:e9:c5:e8:94:3f:56:66:
d7:12:08:f2:8f:1c:8f:03:d4:7a:3a:d8:85:32:f5:98:84:7c:
46:d2:f2:ce:62:24:23:42:75:77:35:3f:4d:08:8d:f5:21:bc:
ff:10:5e:f6:b8:0e:d4:69:d7:65:d7:a7:61:b0:78:5d:2f:ab:
67:9c:b3:bf:71:a2:97:0a:5f:81:ca:fb:96:41:99:d0:83:f9:
d3:3a:28:59:cf:16:a7:89:75:4b:f6:c0:68:ae:74:6c:47:d1:
dc:4d:12:9d:00:26:26:da:ec:cf:06:f9:57:73:5f:dd:d7:d0:
04:6a:e4:89:c4:1b:4d:72:60:55:db:a4:3d:89:e7:d9:3b:eb:
d8:b8:6c:18:dc:8c:3d:e0:1f:61:7c:fd:8b:bd:87:33:35:dd:
ab:93:a0:96:54:35:da:c5:eb:a1:6f:bc:da:b8:2b:54:67:f9:
09:08:40:ce:fb:43:b1:62:76:85:c6:52:16:0d:ec:81:ff:d1:
4a:e1:0d:a3:a5:e4:4e:ff:ba:0e:e6:11:33:d6:15:21:47:71:
fb:67:ac:a9:60:97:d3:bd:ae:72:f5:4e:b5:09:a0:df:8e:3c:
7f:d1:96:f3:11:ea:9c:01:c7:76:f0:6d:96:38:1f:dc:87:91:
82:3b:2a:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:26 2024 by rpki-client on console-ams.rpki-client.org