Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/rj3Z1Xeyj16a1J4N_l5XtzMhLx8.roa
File: rj3Z1Xeyj16a1J4N_l5XtzMhLx8.roa (raw, json)
Hash identifier: KzzK3t1pGrE4Mw6+ynuGCkJ7i3Lfbx3vC0npf8OfrJA=
Subject key identifier: AE:3D:D9:D5:77:B2:8F:5E:9A:D4:9E:0D:FE:5E:57:B7:33:21:2F:1F
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 0183228F5AE57E86AD476022809345399F3B
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/rj3Z1Xeyj16a1J4N_l5XtzMhLx8.roa
Signing time: Fri 09 Sep 2022 14:02:43 +0000
ROA not before: Fri 09 Sep 2022 14:02:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 87.248.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:22:8f:5a:e5:7e:86:ad:47:60:22:80:93:45:39:9f:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Sep 9 14:02:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae3dd9d577b28f5e9ad49e0dfe5e57b733212f1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:38:41:58:62:4d:25:3a:f4:56:6d:64:8c:55:
37:eb:fe:9d:23:63:3d:c7:33:6b:6d:9b:85:18:f6:
e4:f8:8e:45:77:c6:8d:f4:8b:dd:a7:6c:74:a3:cd:
89:34:a2:5d:b7:81:d8:b0:57:d7:12:9f:4e:13:d5:
54:da:a4:4b:78:cd:5e:a9:9e:ae:64:26:13:24:07:
de:09:cf:bf:a8:79:ef:8c:d8:37:eb:93:d4:a4:7e:
ba:d8:90:11:16:41:a0:c5:6c:f8:ae:ee:8a:03:16:
30:0b:29:8c:bc:47:90:99:a8:77:86:71:89:b8:76:
d6:e6:f0:88:3d:0a:09:53:17:49:ec:e3:92:66:d9:
86:b7:d2:61:b8:2f:45:7b:f1:ff:4c:33:ef:4e:a4:
70:56:fb:fb:59:c3:71:46:a3:6b:6b:03:a0:d6:d5:
7d:53:23:4f:5a:82:ce:3a:ae:ba:bb:29:57:09:ff:
22:a7:14:84:02:cc:10:87:ae:7f:9b:e7:85:50:eb:
1f:e9:90:3c:1b:e0:e9:be:01:d2:e4:1f:c5:d1:8f:
1d:4c:32:f1:98:b3:3b:49:d6:d1:1b:48:46:49:c6:
29:09:b3:be:06:24:a9:32:22:d2:36:ac:45:f7:95:
ae:9f:ea:c6:bd:59:de:dc:94:fa:bf:c6:5f:64:d0:
bf:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:3D:D9:D5:77:B2:8F:5E:9A:D4:9E:0D:FE:5E:57:B7:33:21:2F:1F
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/rj3Z1Xeyj16a1J4N_l5XtzMhLx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.133.0/24
Signature Algorithm: sha256WithRSAEncryption
52:80:6a:b9:a0:84:02:2a:3c:35:74:64:a7:3e:44:b4:df:a0:
79:f7:d7:bc:43:aa:53:7a:52:c7:a0:ad:57:ec:e0:30:fc:db:
9a:19:48:a4:5d:1b:01:fb:96:c8:ee:5f:07:84:81:c1:0d:c8:
49:7c:c8:94:65:0e:86:71:61:d0:10:f5:b5:72:89:80:86:9f:
b0:0e:f7:fb:1d:41:6c:0d:bb:28:a5:2c:44:ff:9a:30:7d:ec:
7d:5d:46:d2:f8:dd:2d:01:e8:88:46:c0:fd:60:ce:94:d3:f5:
dd:e3:ec:8f:0e:c0:2d:8e:5c:d5:75:b1:7e:ef:4a:7f:84:ec:
61:5d:49:3b:3a:ed:ae:10:9f:50:c7:61:f9:d1:92:2c:b6:93:
df:f2:7a:17:22:e9:a8:55:c0:76:8b:35:eb:c7:23:09:73:35:
f1:c9:97:85:40:33:17:ff:57:fe:e5:69:1f:20:b8:ab:24:d8:
ac:9e:09:e4:4f:c0:24:e8:5f:a8:8c:70:b0:33:10:4d:6f:a8:
20:b0:ff:b9:0b:5a:f4:86:a6:e2:d5:95:f6:a9:13:d8:78:a9:
ae:a6:97:68:2c:be:22:20:9e:ae:9d:5b:30:ec:3d:13:be:19:
34:fb:9f:a2:de:6a:c3:29:7d:44:99:a4:03:bc:63:74:02:02:
00:83:47:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:10 2023 by rpki-client on console-ams.rpki-client.org