Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/qB5RBEexBFTtyIh4_-ta84MdBow.roa
File: qB5RBEexBFTtyIh4_-ta84MdBow.roa (raw, json)
Hash identifier: aXI+NMZl4jLYf9jwuVqJy0l+GhYK0vQRLvJHrs3IZ7o=
Subject key identifier: A8:1E:51:04:47:B1:04:54:ED:C8:88:78:FF:EB:5A:F3:83:1D:06:8C
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1BF703F0
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/qB5RBEexBFTtyIh4_-ta84MdBow.roa
Signing time: Mon 02 May 2022 08:20:47 +0000
ROA not before: Mon 02 May 2022 08:20:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400040
IP address blocks: 87.248.135.0/24 maxlen: 24
87.248.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 469173232 (0x1bf703f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: May 2 08:20:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a81e510447b10454edc88878ffeb5af3831d068c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b6:5f:f4:aa:98:2e:b6:2d:51:b0:cb:c4:a7:
38:83:46:80:b1:d2:75:0a:2d:0d:b2:34:22:86:67:
31:87:1f:07:fb:66:c9:2b:3d:78:38:c2:ee:fc:33:
7d:fa:9a:bd:b8:c8:ee:83:ab:65:0c:0c:7d:93:f8:
b0:a2:45:70:6f:57:41:b7:cc:e9:29:e8:9c:be:c6:
1c:d4:9e:d3:ec:05:af:cd:d7:15:db:ca:eb:44:e7:
35:1c:22:18:7f:76:03:7e:8e:b4:7f:21:0a:93:68:
3b:91:59:6b:71:e7:1e:0f:6a:20:34:ca:cc:92:6c:
f5:88:5f:63:76:50:80:c3:e2:48:00:5c:01:2e:02:
42:cc:3e:45:be:06:3b:55:16:fc:16:ba:58:9c:7e:
6f:e0:18:71:85:f3:b6:bd:20:91:7f:e1:59:7f:1d:
44:22:fc:1e:73:16:25:75:40:d1:91:15:cb:14:af:
cb:52:d6:f1:cd:6c:0c:0b:4e:af:4b:83:f5:ba:4f:
67:ec:51:3b:1b:63:db:7f:24:18:58:26:c7:59:ca:
bf:b2:5a:0b:62:7a:4f:27:b9:07:31:4b:7e:1f:4e:
d6:0b:fe:fc:60:d7:c0:a4:20:0d:0e:e8:27:1a:50:
a9:f4:cb:eb:44:7d:4b:fa:f6:73:a6:c9:c5:ef:19:
76:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:1E:51:04:47:B1:04:54:ED:C8:88:78:FF:EB:5A:F3:83:1D:06:8C
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/qB5RBEexBFTtyIh4_-ta84MdBow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.135.0/24
87.248.144.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:3d:a4:65:30:b8:fc:f9:1d:29:36:27:5a:86:2c:2c:b1:a2:
07:b1:dd:27:d2:54:18:e4:f3:0b:bf:51:01:35:68:00:ad:fe:
ec:8f:af:db:72:9e:86:78:2b:6a:88:a9:ff:04:b5:42:a1:21:
0b:24:35:42:2f:4a:6b:f0:ef:7d:1b:6d:ef:df:46:f5:5c:b5:
c0:41:fa:c3:eb:ca:da:32:f1:3d:41:c6:cb:e4:13:1b:f8:58:
1f:8b:38:f1:23:71:06:f9:67:7d:1a:29:35:ae:58:cc:54:5b:
52:37:de:97:ba:ea:e2:ce:05:40:e0:3e:c0:01:86:e5:e8:b5:
f6:a2:34:42:96:be:35:0a:d7:4d:d0:f6:b4:88:8f:7e:fe:b4:
54:e0:25:24:c5:b4:78:ed:e8:d2:7a:ef:16:e2:08:a1:77:62:
0b:7b:b4:23:62:0a:ce:13:e7:cc:1f:fe:fc:c1:fd:70:29:bc:
19:55:09:fa:42:58:57:0b:cb:d8:7f:ca:c5:23:9f:85:b9:4b:
05:02:c1:90:7f:29:6c:02:d0:61:20:c7:10:c2:96:1f:c3:0c:
0e:70:e6:3b:de:28:10:ed:75:78:13:f6:a7:aa:33:b9:05:04:
57:d0:fc:d0:f4:a5:ca:a7:93:97:26:9e:6e:f5:27:dd:13:b6:
19:4b:83:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:26 2024 by rpki-client on console-ams.rpki-client.org