Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/VfhDI8BibvLyOV8E78A90L0WvdA.roa
File: VfhDI8BibvLyOV8E78A90L0WvdA.roa (raw, json)
Hash identifier: ugFBP6viTG3anbaarUPFLGY4/2pFA+GFCJDI/wdYCXc=
Subject key identifier: 55:F8:43:23:C0:62:6E:F2:F2:39:5F:04:EF:C0:3D:D0:BD:16:BD:D0
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1C710A38
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/VfhDI8BibvLyOV8E78A90L0WvdA.roa
Signing time: Thu 09 Jun 2022 13:40:02 +0000
ROA not before: Thu 09 Jun 2022 13:40:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 87.248.146.0/24 maxlen: 24
87.248.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 477170232 (0x1c710a38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Jun 9 13:40:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55f84323c0626ef2f2395f04efc03dd0bd16bdd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:27:25:c8:11:c4:79:f4:b3:2f:da:d7:de:08:
79:96:07:88:99:4e:63:a7:cd:eb:7f:0d:83:9a:14:
d7:29:5a:8a:cf:1b:4d:77:a5:c5:c7:ce:30:a5:c9:
57:ce:d2:d8:25:07:5f:40:91:86:32:04:83:70:6a:
fd:8f:68:8f:28:13:9c:67:75:c4:01:cd:37:c7:f0:
a8:7e:2b:35:0d:47:99:fe:83:77:5f:04:7a:f8:84:
b7:62:3a:ce:03:f0:ee:8b:c4:b1:aa:5d:3e:19:4a:
4d:fe:bf:ce:f1:8b:a0:ec:e1:75:6d:b3:c0:e3:34:
c0:6b:a8:89:2b:3c:3f:ad:d3:76:97:ef:05:1c:b2:
4a:a4:cd:46:db:3c:4d:5f:9e:6f:a6:bd:d7:1e:89:
1a:2c:72:71:44:61:10:e9:7e:1e:15:34:69:d4:97:
d4:9b:e7:df:f2:d3:a5:4c:c5:e6:fd:73:64:ea:7a:
16:e4:bb:ff:e6:1a:4a:1b:1f:79:46:84:b8:31:9e:
52:15:d6:4f:dd:00:5b:e0:a5:f0:0e:ba:36:2e:31:
bf:6a:62:d1:fb:69:06:5a:54:ac:ab:68:72:e4:5e:
20:a9:82:29:00:85:80:88:69:e0:92:28:63:5c:78:
06:50:ad:33:5a:ef:1f:63:7f:0d:b5:1d:a7:c3:e4:
0f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:F8:43:23:C0:62:6E:F2:F2:39:5F:04:EF:C0:3D:D0:BD:16:BD:D0
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/VfhDI8BibvLyOV8E78A90L0WvdA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.146.0/24
87.248.148.0/24
Signature Algorithm: sha256WithRSAEncryption
01:fa:34:b6:07:8a:47:6f:5b:8f:39:ce:ac:ea:78:38:7a:4c:
e7:a0:52:de:69:79:2c:4e:13:e3:91:d7:3e:8d:6c:31:45:af:
cc:fd:d1:46:d6:63:57:09:4c:ba:27:62:07:1a:58:ab:eb:7e:
6d:5f:c2:89:57:38:80:f1:07:dc:d5:dd:6a:69:bf:ad:f3:ac:
a1:22:3a:4b:4b:53:2f:c5:dd:2e:0a:b4:74:60:38:75:ac:83:
bc:76:06:33:c6:bb:d9:41:db:36:6d:08:df:ac:b5:3c:62:cd:
ff:fd:89:92:0b:88:fb:df:0b:9b:87:81:29:7f:ae:6e:57:e5:
e5:79:a9:39:a3:21:28:28:b3:30:ff:29:03:ec:8b:f7:0a:26:
a8:9c:42:58:36:0f:b6:9e:1c:f1:64:cf:23:70:05:6f:17:d1:
71:47:69:79:9c:56:d7:ef:2a:3f:7b:93:58:6a:3f:d0:43:7a:
e8:48:98:a5:e0:36:5e:6c:c9:2c:a5:c1:e7:e4:00:5d:c4:f3:
4b:f0:0e:2f:12:66:3f:01:f0:fa:c0:94:99:ef:f2:6f:b8:83:
d2:10:16:aa:66:46:0c:9b:d3:5f:57:ee:70:82:03:60:5a:50:
e2:de:10:db:01:f5:bc:0a:e7:7d:1e:35:69:60:7d:23:97:02:
f6:b5:a0:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:26 2024 by rpki-client on console-ams.rpki-client.org