Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/e-Yw2AHWLCmj-FvukPA00hkz6SE.roa
File: e-Yw2AHWLCmj-FvukPA00hkz6SE.roa (raw, json)
Hash identifier: AKIB8/0W9YJvm5wRNG+AFYm93bfxitYAGYNj4C4APIg=
Subject key identifier: 7B:E6:30:D8:01:D6:2C:29:A3:F8:5B:EE:90:F0:34:D2:19:33:E9:21
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1BE54661
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/e-Yw2AHWLCmj-FvukPA00hkz6SE.roa
Signing time: Wed 27 Apr 2022 07:30:22 +0000
ROA not before: Wed 27 Apr 2022 07:30:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44486
IP address blocks: 87.248.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 468010593 (0x1be54661)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Apr 27 07:30:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7be630d801d62c29a3f85bee90f034d21933e921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6d:03:e5:ca:b0:a9:61:f9:46:dd:d7:e7:8c:
d8:e0:f2:4c:74:c4:7c:15:92:52:bf:84:d9:0b:c7:
83:e7:98:ca:fe:de:96:61:fa:c6:a8:19:81:a0:72:
51:44:b4:b5:a3:ac:58:61:ea:81:0e:3e:97:ec:71:
3d:c2:dd:d5:89:68:c0:54:38:5d:c0:d9:c0:89:71:
ee:db:a4:6e:57:10:4e:4f:39:39:5d:c1:fb:ea:40:
de:00:41:67:34:d6:94:ab:b5:05:7d:09:94:ba:c5:
9f:7d:88:2e:4d:34:c0:45:3b:23:b8:97:17:c0:19:
37:a0:52:41:ed:e1:66:fe:d6:02:ab:ed:a8:a5:9d:
b0:d4:5c:07:61:ea:b6:92:e3:6f:dd:7f:02:c0:32:
37:fa:67:5f:e0:f3:26:31:a7:b3:e1:97:e4:50:b8:
34:cc:fe:3d:b4:6c:fc:f1:aa:f3:e1:20:ba:ab:81:
bb:4e:78:07:99:7b:0d:48:df:d8:a5:0f:fb:94:b9:
61:c6:81:17:1d:1e:0e:fc:54:63:6c:63:77:63:dc:
20:35:73:f2:77:20:d5:8e:4e:a4:dd:48:d1:d2:c0:
a6:04:ff:67:de:e5:22:0f:49:2d:ec:ff:a0:dc:45:
0a:a0:6c:f3:03:d9:87:88:3a:a2:e7:8e:fd:f1:75:
3b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:E6:30:D8:01:D6:2C:29:A3:F8:5B:EE:90:F0:34:D2:19:33:E9:21
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/e-Yw2AHWLCmj-FvukPA00hkz6SE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.136.0/24
Signature Algorithm: sha256WithRSAEncryption
59:68:92:b4:0d:2c:83:24:d9:6d:a0:e4:2a:76:77:4b:0f:62:
3c:e3:03:1a:33:b2:dc:21:16:ac:3a:6c:ad:df:a8:75:d5:3d:
d4:bf:ce:4e:e8:e8:6b:a6:1c:81:f9:1e:74:83:e7:84:23:0d:
a1:38:37:1d:65:77:25:a5:5f:94:ee:ae:75:a6:39:07:45:c7:
1d:9b:e8:36:d3:da:5b:c3:5e:0c:cf:23:79:45:57:e2:3c:f4:
db:1e:ae:ce:eb:de:50:de:57:27:38:68:21:87:22:3d:2a:21:
15:05:65:f6:93:41:fb:cf:44:02:60:e8:56:0a:95:30:f6:ea:
00:45:e9:06:0b:44:66:27:dc:f6:15:48:6a:30:e2:97:9c:f7:
a0:23:42:18:35:f8:2d:60:e6:0f:d7:fe:c3:82:30:60:47:6f:
69:ec:55:35:91:62:d7:cf:40:a4:f4:bf:84:0c:7b:a8:ed:92:
1f:da:c8:0b:06:54:c7:bf:3b:83:1b:18:8a:32:c7:57:d6:1b:
a4:58:46:bc:70:27:c6:21:4b:67:a8:8b:ba:6b:9c:1c:58:76:
40:38:5e:99:1f:ec:8b:fd:89:da:e6:eb:3c:87:08:8f:85:92:
9d:3d:d8:14:d7:79:dc:fd:05:97:8b:0a:fd:5f:71:cc:cf:db:
76:6e:87:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:09 2023 by rpki-client on console-ams.rpki-client.org