Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/rN6gYoZf1unDVB-XktPNUtkK0A4.roa
File: rN6gYoZf1unDVB-XktPNUtkK0A4.roa (raw, json)
Hash identifier: zp61dNeVEiT9Ga2tiFKe0C9T9hH5DdLvPGozHdsn27o=
Subject key identifier: AC:DE:A0:62:86:5F:D6:E9:C3:54:1F:97:92:D3:CD:52:D9:0A:D0:0E
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1C18EC02
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/rN6gYoZf1unDVB-XktPNUtkK0A4.roa
Signing time: Tue 10 May 2022 12:52:02 +0000
ROA not before: Tue 10 May 2022 12:52:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134526
IP address blocks: 87.248.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 471395330 (0x1c18ec02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: May 10 12:52:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=acdea062865fd6e9c3541f9792d3cd52d90ad00e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:69:8f:dd:56:77:2d:7e:30:81:9e:de:e2:88:
4d:62:66:fd:ec:af:65:d7:83:ba:c6:d6:12:3b:cb:
f7:c7:22:6f:42:b9:27:e3:75:dc:95:71:f8:09:3e:
15:1b:65:ca:87:76:91:3f:24:7a:bd:eb:88:72:f3:
30:59:89:2e:02:1f:fc:2a:08:d0:fe:6f:aa:b3:09:
04:0b:f0:f5:17:0d:89:9c:24:a9:1d:d4:a7:67:9f:
30:dc:f4:31:9f:7f:34:5a:0f:55:c1:8d:d8:32:46:
59:0b:ff:48:be:83:d8:bf:cb:6b:75:ef:09:d2:75:
48:40:9b:56:62:7f:34:94:29:43:00:b3:17:2d:3c:
88:ad:54:2c:0b:a4:55:2f:70:c6:49:8f:70:4e:eb:
95:f2:b3:68:42:ca:ce:35:c9:de:56:29:ee:79:52:
d9:b9:18:77:2b:0d:e3:0b:14:1b:73:7d:66:00:1a:
6d:ec:46:d6:23:e3:c3:1d:c2:98:6c:5c:cc:fe:55:
e2:7e:75:d3:74:8e:4d:e0:65:df:c8:10:f9:89:d1:
1f:cd:f2:59:30:2c:73:00:dc:74:f3:aa:8d:3b:e2:
03:5b:5d:46:b8:2b:5f:d4:f3:83:f3:72:27:a0:c4:
c0:c1:4e:20:e8:56:ac:98:b2:d3:19:64:19:67:d5:
fe:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:DE:A0:62:86:5F:D6:E9:C3:54:1F:97:92:D3:CD:52:D9:0A:D0:0E
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/rN6gYoZf1unDVB-XktPNUtkK0A4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.146.0/24
Signature Algorithm: sha256WithRSAEncryption
85:bf:e6:12:65:93:bb:83:81:4a:1a:01:20:52:1d:81:95:d7:
1b:9f:55:59:10:00:f1:68:02:a4:2d:fb:48:a3:7a:fe:9f:0e:
10:cc:dc:d0:3c:99:4e:57:16:60:f1:5a:99:3a:a9:48:ee:83:
b6:53:a3:19:85:9f:28:09:50:ca:ad:57:0b:8e:b7:5d:9e:72:
df:1b:a9:82:3f:b8:51:44:ad:87:e6:74:e7:ea:04:f0:d7:3d:
c5:b0:cc:e0:56:ab:a9:de:4b:13:f2:18:d9:89:14:9b:42:36:
58:56:f1:5c:57:49:55:70:61:89:07:af:5e:18:29:2d:6d:07:
32:39:70:af:ee:88:18:41:da:c4:a8:0a:0e:47:e0:50:f1:1a:
79:6c:19:60:af:dd:71:50:a2:76:f0:b6:1f:7c:05:d2:d7:90:
ad:61:c1:84:c6:cd:d1:1c:63:66:65:b8:4f:11:f4:5c:8b:a6:
21:cc:c3:44:97:38:56:fa:16:7a:20:8d:bd:99:5f:47:1c:23:
78:ed:ac:9e:62:1e:d0:41:1d:0a:94:c1:c9:47:10:aa:6a:0c:
bf:dd:02:c2:6f:22:6a:79:70:09:c4:96:2e:95:fe:a1:fe:d4:
54:36:52:7a:72:66:8e:27:b0:5d:d5:05:78:7a:95:80:b1:af:
97:42:60:40
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHBjsAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
N2Y2MWZjN2MwYWI0MWNlMTU0ZTdiY2IwOGVmOTYyMzUxYTQ2Nzg0MB4XDTIyMDUx
MDEyNTIwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWNkZWEwNjI4NjVm
ZDZlOWMzNTQxZjk3OTJkM2NkNTJkOTBhZDAwZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK1pj91Wdy1+MIGe3uKITWJm/eyvZdeDusbWEjvL98cib0K5
J+N13JVx+Ak+FRtlyod2kT8ker3riHLzMFmJLgIf/CoI0P5vqrMJBAvw9RcNiZwk
qR3Up2efMNz0MZ9/NFoPVcGN2DJGWQv/SL6D2L/La3XvCdJ1SECbVmJ/NJQpQwCz
Fy08iK1ULAukVS9wxkmPcE7rlfKzaELKzjXJ3lYp7nlS2bkYdysN4wsUG3N9ZgAa
bexG1iPjwx3CmGxczP5V4n5103SOTeBl38gQ+YnRH83yWTAscwDcdPOqjTviA1td
RrgrX9Tzg/NyJ6DEwMFOIOhWrJiy0xlkGWfV/rUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSs3qBihl/W6cNUH5eS081S2QrQDjAfBgNVHSMEGDAWgBR39h/HwKtBzhVO
e8sI75YjUaRnhDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RfWWZ4OENyUWM0VlRudkxDTy1XSTFHa1o0US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvOTIxM2VjLTg1YTktNDhkNi1hYTY5LWVkYzlkMDJmYWY1NC8x
L3JONmdZb1pmMXVuRFZCLVhrdFBOVXRrSzBBNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
OTIxM2VjLTg1YTktNDhkNi1hYTY5LWVkYzlkMDJmYWY1NC8xL2RfWWZ4OENyUWM0
VlRudkxDTy1XSTFHa1o0US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFf4kjANBgkqhkiG9w0BAQsFAAOC
AQEAhb/mEmWTu4OBShoBIFIdgZXXG59VWRAA8WgCpC37SKN6/p8OEMzc0DyZTlcW
YPFamTqpSO6DtlOjGYWfKAlQyq1XC463XZ5y3xupgj+4UUSth+Z05+oE8Nc9xbDM
4Farqd5LE/IY2YkUm0I2WFbxXFdJVXBhiQevXhgpLW0HMjlwr+6IGEHaxKgKDkfg
UPEaeWwZYK/dcVCidvC2H3wF0teQrWHBhMbN0RxjZmW4TxH0XIumIczDRJc4VvoW
eiCNvZlfRxwjeO2snmIe0EEdCpTByUcQqmoMv90Cwm8ianlwCcSWLpX+of7UVDZS
enJmjiewXdUFeHqVgLGvl0JgQA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:35 2024 by rpki-client on console-fra.rpki-client.org