Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/TlmMdoxazDxNmDszcuYB59QM0Ms.roa
File: TlmMdoxazDxNmDszcuYB59QM0Ms.roa (raw, json)
Hash identifier: a10G+39/qHzj/8O4FaaF8chOAsntyPsoL4nyRoLvNvQ=
Subject key identifier: 4E:59:8C:76:8C:5A:CC:3C:4D:98:3B:33:72:E6:01:E7:D4:0C:D0:CB
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 018290A5DA643C6E5415020DA47D9058FD3F
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/TlmMdoxazDxNmDszcuYB59QM0Ms.roa
Signing time: Fri 12 Aug 2022 06:02:44 +0000
ROA not before: Fri 12 Aug 2022 06:02:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 87.248.130.0/24 maxlen: 24
87.248.151.0/24 maxlen: 24
87.248.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:90:a5:da:64:3c:6e:54:15:02:0d:a4:7d:90:58:fd:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Aug 12 06:02:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e598c768c5acc3c4d983b3372e601e7d40cd0cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e9:2c:6e:e0:84:8b:3b:f7:52:6c:e7:55:35:
72:e8:0c:b9:93:53:10:f7:15:5c:cf:d7:e9:fb:77:
d4:31:9e:df:17:e3:1a:4c:f4:09:cb:3d:c8:e9:8d:
69:eb:54:ec:3b:23:29:f4:f3:27:4b:f4:62:ab:5e:
79:c9:9e:0a:50:69:9c:9c:5b:d7:54:e8:29:31:8b:
20:f1:23:24:60:79:17:8d:d6:b2:07:07:ca:83:c8:
06:79:cf:b3:3b:1f:19:9e:83:6d:1c:37:94:fb:ac:
b2:a6:f7:4e:be:14:fa:91:6d:84:d9:3b:17:47:df:
35:0e:1b:4c:49:71:32:ba:d1:a0:39:ac:63:40:90:
ad:ed:d0:e6:81:cc:3b:0b:70:49:35:a0:7f:67:5c:
b5:07:59:29:b4:2a:18:e6:a0:a0:91:c9:e0:92:27:
a5:dd:cd:7d:a5:42:56:f6:1a:85:66:54:91:cd:1b:
8e:10:29:76:58:34:48:2b:1e:d7:04:25:6b:4d:15:
96:cf:06:38:73:3a:33:87:9d:44:f6:3b:07:f0:8f:
3a:56:a9:62:55:69:c1:6b:e0:f5:59:a1:22:5b:13:
0d:9c:4a:95:18:c1:21:fc:df:ec:c3:a4:af:09:a5:
70:07:da:b3:86:e0:aa:a3:0d:55:7a:f6:8e:a0:8a:
1d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:59:8C:76:8C:5A:CC:3C:4D:98:3B:33:72:E6:01:E7:D4:0C:D0:CB
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/TlmMdoxazDxNmDszcuYB59QM0Ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.130.0/24
87.248.151.0/24
87.248.155.0/24
Signature Algorithm: sha256WithRSAEncryption
85:ef:93:5a:dc:f1:de:d5:f8:21:3e:77:32:1a:eb:5a:15:e3:
6f:ba:30:38:a0:69:51:e2:6c:b0:75:67:ef:0e:e5:60:34:65:
bc:b0:46:58:1d:01:97:bb:50:25:b9:cd:cf:67:3b:19:53:01:
4e:65:71:96:0f:d0:72:00:d3:54:61:2e:25:4c:2b:84:e6:a1:
e7:f6:ac:ef:a5:76:18:31:f6:b2:1d:f4:68:34:fd:98:0f:e1:
a9:d2:65:3b:15:d2:b8:92:a0:a3:f5:b0:40:7b:12:54:c6:5e:
91:42:8e:12:6a:ae:6d:ec:a9:09:42:9c:b8:db:85:ba:04:3f:
93:72:7b:22:bd:05:cc:14:01:56:39:d4:3a:8e:04:18:66:71:
f0:32:1f:a5:07:38:4d:c0:4a:81:29:0e:1b:9b:38:b2:7d:a8:
3e:8a:4d:c6:7d:26:65:3b:b9:c7:fe:b6:bb:35:84:d1:61:4d:
c3:0f:4c:96:6d:eb:34:8e:dd:33:3e:4f:0f:dc:68:d6:1b:f2:
6f:cc:93:c3:c6:f3:f0:b1:a5:9d:02:63:87:eb:2f:76:6d:5d:
80:1b:c0:11:52:7b:7e:2c:df:81:9a:a8:81:9e:c2:50:c4:87:
cf:11:b7:9e:c9:75:88:21:82:76:2a:b1:95:41:d9:12:66:b5:
87:20:3d:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:35 2024 by rpki-client on console-fra.rpki-client.org