Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/Xq1fACqkXnac6OWEdnKebMXv6W0.roa
File: Xq1fACqkXnac6OWEdnKebMXv6W0.roa (raw, json)
Hash identifier: ezqSYzfRXfM0+PID4i7bMgrh6eL1hTt7BnTaeCpFW7Q=
Subject key identifier: 5E:AD:5F:00:2A:A4:5E:76:9C:E8:E5:84:76:72:9E:6C:C5:EF:E9:6D
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1AC73C50
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/Xq1fACqkXnac6OWEdnKebMXv6W0.roa
Signing time: Sat 01 Jan 2022 14:59:30 +0000
ROA not before: Sat 01 Jan 2022 14:59:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201690
IP address blocks: 87.248.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 449264720 (0x1ac73c50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Jan 1 14:59:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ead5f002aa45e769ce8e58476729e6cc5efe96d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ab:5e:c6:3b:00:b0:98:ce:46:2b:05:3d:27:
b6:94:bc:d4:14:35:fb:4b:b5:08:b3:de:c4:45:d4:
71:5f:c0:a1:81:06:61:8a:30:7f:77:49:28:9b:87:
84:a2:d6:0f:83:4d:3e:ff:d4:85:a3:b3:98:96:73:
51:46:b8:78:5a:40:4a:55:f8:3f:47:ac:6d:c3:20:
c1:cd:b6:ef:5b:c6:e4:51:b8:6b:20:47:26:7a:53:
4c:7e:78:00:66:bc:5a:f0:af:12:26:57:4e:fd:dc:
75:93:97:f0:51:e8:1e:67:03:6b:29:49:2b:5b:67:
31:2c:cb:3b:90:53:b3:43:dd:a2:70:ca:8f:1e:bf:
6a:0b:74:63:80:3d:42:fd:0d:8a:54:20:40:74:19:
10:e6:d6:99:f3:ea:65:40:71:b2:8c:e5:ae:fe:45:
18:b8:35:63:5c:b0:0b:63:7a:a5:5d:b2:be:78:dc:
7a:ea:8a:07:7e:73:c8:50:0d:0a:8e:b8:a7:a0:ce:
d1:a1:b9:55:3a:50:c9:6c:d1:48:ef:3e:5d:7a:96:
74:5f:47:3a:89:75:38:03:3a:3d:7a:a1:8f:1a:39:
9c:b5:3d:92:ed:c8:ee:29:2d:dd:e4:c1:a6:6e:bc:
3e:c3:bd:58:6a:d3:29:3b:89:fa:ef:8a:d6:2d:81:
e2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:AD:5F:00:2A:A4:5E:76:9C:E8:E5:84:76:72:9E:6C:C5:EF:E9:6D
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/Xq1fACqkXnac6OWEdnKebMXv6W0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.144.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:30:78:fd:95:09:9b:53:cd:57:e7:a0:e8:f3:6d:f2:35:68:
9b:b8:6a:a8:7a:f1:d6:83:80:0a:44:1d:fa:7a:20:11:6b:f8:
7b:26:4d:94:a4:68:44:4f:11:b7:aa:58:fb:1e:ec:d1:64:9e:
f4:b3:09:4a:da:f1:5d:92:93:b6:f1:d8:9b:dd:36:a8:3a:ec:
ad:7e:ef:45:17:05:b5:eb:16:9d:5a:2b:11:6b:8f:ed:93:f3:
8a:6b:21:71:79:e3:27:a9:57:91:cc:f8:7a:3a:bf:2b:53:fd:
e7:84:3e:96:38:85:69:c2:ef:0a:95:7b:eb:f1:d3:f5:2a:c3:
54:77:7c:4a:2f:00:74:a6:49:3f:c7:da:a7:ff:8b:fb:f3:7a:
b4:44:1e:80:c8:4a:6d:c6:20:b6:10:08:de:01:b5:83:4f:88:
a7:b8:81:83:d8:d1:ff:62:17:fb:2f:bf:52:6b:26:9c:2e:18:
8c:6a:d8:d4:a7:f6:dc:2d:ed:31:a1:7e:92:66:48:9a:23:48:
e0:94:9f:42:a5:47:dd:b0:de:ee:8c:5f:33:b9:29:e1:49:51:
0a:6e:5e:91:7b:c0:ad:72:1e:d8:6a:72:d9:cd:2f:d1:13:1e:
37:ef:d6:c5:2c:55:3a:e4:77:38:34:12:ef:3e:19:19:68:5f:
14:55:9e:a4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGsc8UDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
N2Y2MWZjN2MwYWI0MWNlMTU0ZTdiY2IwOGVmOTYyMzUxYTQ2Nzg0MB4XDTIyMDEw
MTE0NTkzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWVhZDVmMDAyYWE0
NWU3NjljZThlNTg0NzY3MjllNmNjNWVmZTk2ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM6rXsY7ALCYzkYrBT0ntpS81BQ1+0u1CLPexEXUcV/AoYEG
YYowf3dJKJuHhKLWD4NNPv/UhaOzmJZzUUa4eFpASlX4P0esbcMgwc2271vG5FG4
ayBHJnpTTH54AGa8WvCvEiZXTv3cdZOX8FHoHmcDaylJK1tnMSzLO5BTs0PdonDK
jx6/agt0Y4A9Qv0NilQgQHQZEObWmfPqZUBxsozlrv5FGLg1Y1ywC2N6pV2yvnjc
euqKB35zyFANCo64p6DO0aG5VTpQyWzRSO8+XXqWdF9HOol1OAM6PXqhjxo5nLU9
ku3I7ikt3eTBpm68PsO9WGrTKTuJ+u+K1i2B4pMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRerV8AKqRedpzo5YR2cp5sxe/pbTAfBgNVHSMEGDAWgBR39h/HwKtBzhVO
e8sI75YjUaRnhDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RfWWZ4OENyUWM0VlRudkxDTy1XSTFHa1o0US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvOTIxM2VjLTg1YTktNDhkNi1hYTY5LWVkYzlkMDJmYWY1NC8x
L1hxMWZBQ3FrWG5hYzZPV0VkbktlYk1YdjZXMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
OTIxM2VjLTg1YTktNDhkNi1hYTY5LWVkYzlkMDJmYWY1NC8xL2RfWWZ4OENyUWM0
VlRudkxDTy1XSTFHa1o0US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFf4kDANBgkqhkiG9w0BAQsFAAOC
AQEATDB4/ZUJm1PNV+eg6PNt8jVom7hqqHrx1oOACkQd+nogEWv4eyZNlKRoRE8R
t6pY+x7s0WSe9LMJStrxXZKTtvHYm902qDrsrX7vRRcFtesWnVorEWuP7ZPzimsh
cXnjJ6lXkcz4ejq/K1P954Q+ljiFacLvCpV76/HT9SrDVHd8Si8AdKZJP8fap/+L
+/N6tEQegMhKbcYgthAI3gG1g0+Ip7iBg9jR/2IX+y+/UmsmnC4YjGrY1Kf23C3t
MaF+kmZImiNI4JSfQqVH3bDe7oxfM7kp4UlRCm5ekXvArXIe2Gpy2c0v0RMeN+/W
xSxVOuR3ODQS7z4ZGWhfFFWepA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:26 2024 by rpki-client on console-ams.rpki-client.org