Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/sZ3CLva3YFOj8CiDRNQl_ohf1CM.roa
File: sZ3CLva3YFOj8CiDRNQl_ohf1CM.roa (raw, json)
Hash identifier: yq+vDw91s7KHG3ee6p+VSiJ1u0qZdgozIJUoY+mK14g=
Subject key identifier: B1:9D:C2:2E:F6:B7:60:53:A3:F0:28:83:44:D4:25:FE:88:5F:D4:23
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1BF049AF
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/sZ3CLva3YFOj8CiDRNQl_ohf1CM.roa
Signing time: Sun 01 May 2022 14:15:00 +0000
ROA not before: Sun 01 May 2022 14:15:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 87.248.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 468732335 (0x1bf049af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: May 1 14:15:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b19dc22ef6b76053a3f0288344d425fe885fd423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9e:16:ae:f7:95:e8:f0:7c:e8:cc:ec:6c:e9:
be:ed:94:a6:e9:ae:8a:e2:d2:e8:c0:d6:08:db:eb:
ce:cf:a9:eb:db:23:b9:ba:c3:ee:14:fa:05:e0:7e:
b8:45:68:8b:a2:9f:c2:4c:4d:c4:0b:a6:68:ba:33:
0e:7f:e0:66:26:9a:c1:42:4a:8e:1d:7e:cf:a0:28:
16:13:e8:fe:52:18:c1:bb:ea:3a:95:98:a3:85:28:
05:dc:15:8f:18:08:05:85:e5:85:da:c8:2d:99:d6:
c7:8b:a1:18:75:40:38:46:28:f1:57:6a:ab:4c:6b:
71:17:34:97:42:8c:99:8c:fa:50:d8:28:e4:5d:96:
1a:a6:96:61:f4:14:b8:4f:1f:5a:03:a4:73:7b:5f:
24:57:a0:b3:13:b2:d7:6e:2d:bf:17:3e:50:d4:1d:
88:c5:23:4e:a3:12:56:7b:de:d4:0e:14:f5:46:37:
6b:cc:f8:41:28:cc:46:2f:8b:06:ce:5d:7c:c6:ba:
a7:14:3f:d0:a3:16:46:3d:ce:b8:79:4b:9f:6c:f3:
1c:15:17:79:bc:4c:e3:5e:6b:15:50:b7:09:94:a5:
cf:e1:89:5d:7e:4c:79:83:2d:d5:ee:78:15:71:a3:
59:99:a7:ab:e0:c9:11:c7:3d:03:a6:a9:ef:21:35:
09:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:9D:C2:2E:F6:B7:60:53:A3:F0:28:83:44:D4:25:FE:88:5F:D4:23
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/sZ3CLva3YFOj8CiDRNQl_ohf1CM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.134.0/24
Signature Algorithm: sha256WithRSAEncryption
82:69:9e:44:c0:b2:a2:9d:be:c3:21:95:63:94:42:d1:f7:da:
c8:38:d9:85:2d:03:de:9c:b4:3b:fa:02:dd:78:85:15:95:78:
4c:95:8f:ac:69:2a:05:24:7d:76:95:0d:5f:ef:87:3b:f6:0e:
b1:c6:e1:66:b9:ee:34:6c:05:57:b2:a9:35:2b:e5:49:34:16:
46:b5:8d:1b:1c:9c:d6:76:b4:a3:b0:00:7d:81:c1:3f:37:f1:
4a:84:e1:06:68:60:e1:2c:2a:00:fa:15:db:53:e1:fd:0b:22:
78:86:2e:b5:53:b0:02:ef:7d:6d:b4:38:f9:cc:b4:e1:9c:ab:
f1:96:d7:a6:07:7c:43:26:22:a9:c4:f0:13:0a:31:8e:26:72:
95:07:d0:8f:56:17:44:05:9f:34:ca:6a:8c:ef:27:0a:1b:7d:
2a:37:d5:83:6e:0c:25:ed:67:d3:35:58:89:39:b7:87:b6:e4:
f9:cc:ae:75:3f:68:8e:68:6b:ff:98:0e:10:9f:73:ef:f8:b1:
d9:c2:3e:21:c2:9b:16:7d:04:92:e5:38:53:62:8b:c7:4c:a1:
8a:5d:bd:0b:c0:7e:67:9e:89:a1:2c:8b:23:fa:74:00:d1:70:
e0:8b:d9:22:0f:80:5f:1d:3c:1c:a0:b1:be:18:1d:8a:86:2f:
92:68:14:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:27 2024 by rpki-client on console-ams.rpki-client.org