Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/hV9meIn2n6daUKb1hxJsMxFDrxs.roa
File: hV9meIn2n6daUKb1hxJsMxFDrxs.roa (raw, json)
Hash identifier: XLYg0k0JST6rgUEDIUxSaEFJZdv0tDK5ndd+51yKz80=
Subject key identifier: 85:5F:66:78:89:F6:9F:A7:5A:50:A6:F5:87:12:6C:33:11:43:AF:1B
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 018514FD28907057B52AC3F6C638FCE52DE5
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/hV9meIn2n6daUKb1hxJsMxFDrxs.roa
Signing time: Thu 15 Dec 2022 08:53:33 +0000
ROA not before: Thu 15 Dec 2022 08:53:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48147
IP address blocks: 87.248.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:14:fd:28:90:70:57:b5:2a:c3:f6:c6:38:fc:e5:2d:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Dec 15 08:53:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=855f667889f69fa75a50a6f587126c331143af1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:1b:0f:82:6d:0c:8e:89:a6:da:fc:4f:74:67:
b8:72:bc:c1:8f:f9:36:ad:29:51:67:f2:ae:73:df:
89:75:d4:ab:b3:65:a5:b9:04:26:1a:95:2e:1c:17:
f5:88:d9:3c:ca:cb:3c:6d:6b:a9:b4:e2:c2:07:36:
09:62:e4:87:e0:38:b5:43:b0:f3:b1:07:ef:b4:57:
0b:cf:73:b3:7b:62:94:78:0c:7f:51:b5:32:f5:09:
05:fc:8e:9a:84:0e:0d:3e:5b:aa:ae:b6:75:b7:9c:
a3:2b:2d:6b:2b:e3:2e:f2:16:4d:8d:94:b8:ea:5a:
28:ee:a9:df:50:5c:b1:66:f9:86:60:82:d5:73:02:
13:36:35:0c:16:86:72:57:c2:b7:d3:ce:30:f9:8b:
0d:59:5e:5b:72:03:92:c4:be:f3:cc:77:6f:36:53:
21:4f:c7:64:06:5c:73:74:9e:38:ac:8d:57:09:71:
8c:d3:a5:8c:25:58:ad:13:95:bc:01:7a:1c:f5:d1:
2c:e3:c0:08:d9:19:30:44:5e:40:84:0a:24:21:66:
30:e5:8b:eb:d1:60:8a:5d:ba:2e:53:91:65:fc:cb:
9c:1b:db:e3:3c:b7:a8:0a:e5:b1:bc:63:c3:e5:96:
4d:27:8c:77:7e:9b:78:42:e5:b5:cd:b0:03:e7:2d:
97:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:5F:66:78:89:F6:9F:A7:5A:50:A6:F5:87:12:6C:33:11:43:AF:1B
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/hV9meIn2n6daUKb1hxJsMxFDrxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.147.0/24
Signature Algorithm: sha256WithRSAEncryption
67:ee:2b:15:fb:14:87:3a:a5:30:ec:57:61:bb:86:e2:93:34:
03:fc:ef:f8:f5:0b:bf:2e:48:cc:1a:d8:c7:46:11:4d:6f:db:
85:cc:11:e2:a1:8a:f4:c8:7d:dd:96:6a:85:5e:f7:b7:6a:3d:
46:bd:d5:6f:25:66:1f:b0:f6:f3:e0:41:8c:fd:91:2e:e9:ea:
73:60:24:e8:9d:4d:18:58:3d:44:c1:41:b9:e6:d3:1a:7b:db:
78:e7:23:4a:b5:f6:e7:89:c7:47:a4:49:88:28:c3:a3:b1:6c:
4e:3b:7e:21:42:62:48:89:1a:b3:2e:13:9a:23:cc:6b:13:c4:
fe:c8:aa:52:0e:23:dc:7f:21:7c:83:08:df:c0:fe:b4:2e:6b:
80:12:bf:a6:a5:db:30:aa:46:d3:41:2e:c9:6e:67:47:e0:18:
cc:64:1c:1d:fc:e1:01:d1:cf:8d:be:b4:a1:74:75:d8:e3:ed:
dc:ce:2d:d8:3f:69:75:e1:65:53:f1:a0:15:e1:f3:eb:88:d2:
f1:97:cb:38:55:b7:73:cd:a4:07:c9:83:2e:1a:d6:db:ea:13:
df:8b:f0:f9:9e:ed:d5:d7:0e:a6:09:20:22:b7:e0:70:9c:7e:
1b:ce:1c:dd:3f:ab:5f:81:81:37:fc:aa:d3:aa:b0:c3:e0:bf:
6d:e6:a4:ba
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUU/SiQcFe1KsP2xjj85S3lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3ZjYxZmM3YzBhYjQxY2UxNTRlN2JjYjA4ZWY5NjIzNTFh
NDY3ODQwHhcNMjIxMjE1MDg1MzMzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NTVmNjY3ODg5ZjY5ZmE3NWE1MGE2ZjU4NzEyNmMzMzExNDNhZjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlRsPgm0Mjomm2vxPdGe4crzBj/k2
rSlRZ/Kuc9+JddSrs2WluQQmGpUuHBf1iNk8yss8bWuptOLCBzYJYuSH4Di1Q7Dz
sQfvtFcLz3Oze2KUeAx/UbUy9QkF/I6ahA4NPluqrrZ1t5yjKy1rK+Mu8hZNjZS4
6loo7qnfUFyxZvmGYILVcwITNjUMFoZyV8K3084w+YsNWV5bcgOSxL7zzHdvNlMh
T8dkBlxzdJ44rI1XCXGM06WMJVitE5W8AXoc9dEs48AI2RkwRF5AhAokIWYw5Yvr
0WCKXbouU5Fl/MucG9vjPLeoCuWxvGPD5ZZNJ4x3fpt4QuW1zbAD5y2XvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIVfZniJ9p+nWlCm9YcSbDMRQ68bMB8GA1UdIwQY
MBaAFHf2H8fAq0HOFU57ywjvliNRpGeEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZF9ZZng4Q3JRYzRWVG52TENPLVdJMUdrWjRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC85MjEzZWMtODVhOS00OGQ2LWFhNjkt
ZWRjOWQwMmZhZjU0LzEvaFY5bWVJbjJuNmRhVUtiMWh4SnNNeEZEcnhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC85MjEzZWMtODVhOS00OGQ2LWFhNjktZWRjOWQwMmZhZjU0
LzEvZF9ZZng4Q3JRYzRWVG52TENPLVdJMUdrWjRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV/iTMA0G
CSqGSIb3DQEBCwUAA4IBAQBn7isV+xSHOqUw7Fdhu4bikzQD/O/49Qu/LkjMGtjH
RhFNb9uFzBHioYr0yH3dlmqFXve3aj1GvdVvJWYfsPbz4EGM/ZEu6epzYCTonU0Y
WD1EwUG55tMae9t45yNKtfbnicdHpEmIKMOjsWxOO34hQmJIiRqzLhOaI8xrE8T+
yKpSDiPcfyF8gwjfwP60LmuAEr+mpdswqkbTQS7JbmdH4BjMZBwd/OEB0c+NvrSh
dHXY4+3czi3YP2l14WVT8aAV4fPriNLxl8s4VbdzzaQHyYMuGtbb6hPfi/D5nu3V
1w6mCSAit+BwnH4bzhzdP6tfgYE3/KrTqrDD4L9t5qS6
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:35 2024 by rpki-client on console-fra.rpki-client.org