Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/nIeNoRDtWubXWUmbq5ahgtnbyAE.roa
File: nIeNoRDtWubXWUmbq5ahgtnbyAE.roa (raw, json)
Hash identifier: icogkLjZHWy3dbAQNBiblFhXBZLJKu9HngLJ8YtR2no=
Subject key identifier: 9C:87:8D:A1:10:ED:5A:E6:D7:59:49:9B:AB:96:A1:82:D9:DB:C8:01
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 0182B96D33FE5AA039647431B9F7D0D30FD6
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/nIeNoRDtWubXWUmbq5ahgtnbyAE.roa
Signing time: Sat 20 Aug 2022 04:05:17 +0000
ROA not before: Sat 20 Aug 2022 04:05:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46573
IP address blocks: 87.248.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b9:6d:33:fe:5a:a0:39:64:74:31:b9:f7:d0:d3:0f:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Aug 20 04:05:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c878da110ed5ae6d759499bab96a182d9dbc801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:4f:8d:ed:4c:6a:d1:83:72:75:21:33:76:0f:
93:29:c4:e7:fd:f9:27:88:1c:09:24:50:be:bb:2e:
29:9b:20:53:1a:b4:6c:b5:74:f2:d6:a9:52:12:b1:
85:b8:c3:ff:8f:5d:cc:55:8b:d2:d9:e5:7a:6a:11:
c5:fe:a2:2f:e8:eb:81:cb:28:bf:05:ac:b9:c0:30:
ab:3e:50:22:5f:e1:b2:60:de:d1:21:87:43:b1:fb:
bd:c9:9e:5a:29:a3:5c:ca:1c:ac:38:17:c4:0c:08:
90:0d:ed:27:43:1a:01:8f:5d:c9:73:b2:2d:e3:43:
06:7d:97:9c:ad:1b:df:4d:c1:71:95:73:90:45:49:
cb:d0:c7:d8:c1:34:86:43:9e:2c:6e:88:b4:13:f5:
b8:32:49:43:b5:bf:4a:02:85:b0:c6:eb:34:54:2b:
2e:ce:61:17:22:69:2a:fe:1c:12:3a:06:65:ef:2f:
59:cb:57:0d:b9:3e:fd:be:70:ee:65:9e:86:a9:a8:
f6:ef:d1:1f:a5:36:85:e8:96:df:7a:b5:a3:94:bf:
48:62:4f:52:9a:78:e7:fd:e2:81:1a:82:c9:46:37:
38:79:d5:77:28:e1:a8:43:1e:66:bf:a6:0a:56:29:
f7:b1:f2:9b:4b:1b:88:e6:7e:9e:eb:a9:05:03:0c:
72:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:87:8D:A1:10:ED:5A:E6:D7:59:49:9B:AB:96:A1:82:D9:DB:C8:01
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/nIeNoRDtWubXWUmbq5ahgtnbyAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.129.0/24
Signature Algorithm: sha256WithRSAEncryption
77:ec:37:dc:60:46:2d:c0:0a:3f:8f:45:23:cb:2b:79:54:11:
4e:ae:9a:6c:d8:44:e7:04:bb:13:8c:d7:b9:68:48:d4:5d:47:
cc:47:16:8a:f0:eb:73:3d:92:17:9f:dc:2b:9a:22:34:8e:39:
52:a3:d7:6f:20:d5:8a:f3:87:ff:9c:7f:28:71:29:09:f0:94:
a9:88:5a:6c:80:8e:31:19:a7:9a:b7:8d:4f:0d:87:e3:d9:7e:
88:a7:07:bb:f3:e5:dd:b5:fa:eb:ea:31:d2:dc:8d:74:a6:ed:
c2:31:22:ae:08:a6:65:50:8c:0e:4a:a9:9d:a1:cf:33:2a:56:
85:f9:98:7d:32:20:36:55:83:55:3c:30:b0:1c:94:bd:a8:9d:
5c:8c:ee:9d:44:e7:45:f5:1b:96:b9:f2:ae:5a:58:56:c2:d0:
1d:63:af:73:f4:92:f6:23:6f:21:63:fb:ee:f9:19:a2:0e:07:
25:15:bc:35:c9:6b:c7:fa:fb:89:f5:d9:a3:9e:5a:28:17:7a:
07:09:ca:22:eb:0e:2a:67:36:30:5d:dd:fb:94:39:7f:15:4e:
c9:e6:b8:bb:b2:e1:6d:3b:bb:5e:b0:cd:73:77:1a:fa:d3:e0:
97:d5:83:27:a7:6a:ad:41:17:f3:65:ce:d6:ce:44:64:67:8a:
a0:71:3e:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:22 2023 by rpki-client on console-fra.rpki-client.org