Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/tvIpKWe8c-tXcLJJETRmHKabUnI.roa
File: tvIpKWe8c-tXcLJJETRmHKabUnI.roa (raw, json)
Hash identifier: XTsPt+Vzduwyj/oPn1UhBGPjicH88WPm/d5EK8t5oU8=
Subject key identifier: B6:F2:29:29:67:BC:73:EB:57:70:B2:49:11:34:66:1C:A6:9B:52:72
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1BC0B3B1
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/tvIpKWe8c-tXcLJJETRmHKabUnI.roa
Signing time: Fri 15 Apr 2022 18:08:10 +0000
ROA not before: Fri 15 Apr 2022 18:08:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 87.248.130.0/24 maxlen: 24
87.248.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 465613745 (0x1bc0b3b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Apr 15 18:08:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6f2292967bc73eb5770b2491134661ca69b5272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:07:8b:b0:b0:53:b9:a7:9e:12:f7:74:92:51:
14:d1:98:dd:72:b0:c1:eb:72:e8:a6:11:b8:c5:d2:
c3:8c:56:9d:38:5b:ef:70:22:a7:05:24:4a:64:cc:
ca:af:63:93:0a:e0:b9:82:41:96:6b:c4:6c:0a:73:
2b:4d:8f:01:5b:ab:54:30:3d:5a:f6:9c:a8:c5:cd:
8a:3b:67:f9:08:7c:cd:ac:aa:03:b5:a2:38:5b:7b:
c5:d2:65:d6:21:81:93:a3:43:6b:d1:58:b9:fc:3c:
77:fa:d9:d6:75:e8:2d:0b:bc:cf:7f:3a:90:ad:98:
0e:c5:be:01:fe:10:78:ea:32:65:36:07:3e:a4:c1:
f3:c0:b9:d7:1b:90:39:01:39:3b:7b:b4:8d:3c:2b:
06:04:db:ee:bc:39:44:41:48:52:35:e6:f9:a3:91:
cb:73:82:73:aa:88:c6:a5:e9:42:4f:ac:4d:8a:1d:
81:57:e6:f7:dd:a3:35:e8:49:78:62:bc:38:7b:fa:
ab:97:63:21:79:02:28:db:73:c0:04:68:49:ff:79:
53:0e:f5:54:c5:6a:33:92:d6:7c:52:ec:5f:f1:f5:
ed:87:d3:d7:f5:52:c6:d4:03:9d:aa:b6:cc:d9:f1:
39:d3:3d:b9:d9:ac:ce:23:4c:56:d5:a5:e7:f0:83:
ee:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:F2:29:29:67:BC:73:EB:57:70:B2:49:11:34:66:1C:A6:9B:52:72
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/tvIpKWe8c-tXcLJJETRmHKabUnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.130.0/24
87.248.158.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:e2:54:6d:93:13:30:dc:24:ed:70:98:8b:93:25:75:bb:38:
77:bc:ed:29:a2:14:fe:1a:4d:a0:8e:3a:e4:87:01:21:ea:b0:
11:4d:69:31:cd:b9:91:1d:b7:62:a4:0d:1e:da:b9:9c:59:3a:
dd:3e:25:ea:c8:da:08:7d:ee:61:98:53:ff:aa:5d:cd:3f:5c:
27:44:70:1c:c6:b6:69:89:ce:c9:94:cb:8e:e9:7e:25:73:8f:
ad:d0:a9:c2:21:ae:49:c5:77:9b:50:d7:64:f6:2c:29:37:fe:
ae:05:e4:9f:96:bb:b0:cb:7c:ec:3c:25:fd:96:f9:54:32:98:
d5:95:91:06:50:d6:b2:48:82:17:5a:ea:1a:66:23:13:da:58:
08:e8:a0:f6:e6:44:c4:45:20:20:54:a3:83:51:25:8f:db:3b:
a8:d2:cb:50:79:20:2f:ac:41:aa:26:97:08:cb:70:e5:13:bd:
f8:61:ec:79:54:6f:95:e5:f4:13:0c:84:19:82:15:77:19:d0:
4d:e9:27:fa:2d:1f:b1:ad:9e:27:05:e5:34:27:7b:88:88:18:
7c:6c:cd:bc:69:33:8d:6a:00:46:d9:55:80:36:fa:97:aa:a8:
71:46:67:8c:8d:8c:fb:6f:8c:e4:ca:14:c7:6e:38:60:86:bf:
75:3b:06:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:22 2023 by rpki-client on console-fra.rpki-client.org