Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/yM0g1IkwLIgsc-aXuNOOHGX5lyI.roa
File: yM0g1IkwLIgsc-aXuNOOHGX5lyI.roa (raw, json)
Hash identifier: 6g0jVwaUizWO/iRqQY3Xr9lRT859IbC4oZ0swkNwBwA=
Subject key identifier: C8:CD:20:D4:89:30:2C:88:2C:73:E6:97:B8:D3:8E:1C:65:F9:97:22
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 1C0407BD
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/yM0g1IkwLIgsc-aXuNOOHGX5lyI.roa
Signing time: Sat 07 May 2022 12:57:49 +0000
ROA not before: Sat 07 May 2022 12:57:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46450
IP address blocks: 87.248.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 470026173 (0x1c0407bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: May 7 12:57:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8cd20d489302c882c73e697b8d38e1c65f99722
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4c:ba:bc:a2:4f:4d:37:44:61:75:0e:52:b1:
b6:3d:92:47:dc:87:df:e5:23:7b:66:9d:85:ca:d2:
ca:25:42:97:66:0f:f9:c4:3c:b9:84:30:0b:03:f7:
a5:f8:10:38:fc:84:19:0d:80:4d:9d:a7:b2:3c:7a:
69:6f:68:d3:29:db:7a:d0:8b:0d:66:06:a3:ee:fc:
e8:7f:86:42:3b:ce:f6:56:50:7c:03:f0:00:9f:07:
c5:1f:2a:c1:35:5a:19:12:a3:4a:00:98:b3:78:59:
c7:9a:14:82:14:46:a4:04:d3:c6:5f:0c:a9:e6:65:
c0:34:62:91:b0:b8:07:aa:e0:21:81:2a:03:26:9a:
8d:9f:ae:6f:21:d8:19:f5:f0:fd:7d:a7:74:e8:4f:
0f:03:a1:56:4e:14:a7:81:4f:6f:84:7c:11:a2:f8:
f5:70:46:b0:8a:b9:68:f5:a6:0e:8f:45:9a:ac:71:
d7:df:6d:8c:45:38:1f:c5:eb:7e:02:ec:82:e8:cf:
05:18:ec:c6:14:4b:fa:73:98:63:d3:aa:65:a9:94:
42:3a:a1:38:1e:32:59:69:46:3d:4e:ba:7b:bf:9e:
ee:e9:10:41:b5:78:b7:ff:4d:5e:ab:8c:e3:65:84:
34:71:f0:31:b5:1c:5f:6f:92:e6:73:56:3a:6f:60:
66:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:CD:20:D4:89:30:2C:88:2C:73:E6:97:B8:D3:8E:1C:65:F9:97:22
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/yM0g1IkwLIgsc-aXuNOOHGX5lyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.131.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:9d:34:22:7d:d4:83:c8:15:7b:cb:c7:ff:7c:64:d6:83:fa:
a2:a3:f4:e7:30:38:30:73:81:91:9c:a4:80:2a:69:24:88:3a:
b1:a2:58:82:f2:0c:58:12:3e:06:f8:87:73:35:b1:d6:02:a1:
f8:1b:c2:f8:61:77:71:86:f4:37:10:eb:d2:6f:eb:3f:ca:4e:
d9:3a:34:03:c4:67:50:18:e9:aa:9b:a8:71:25:f8:e6:cf:81:
5b:9c:f7:ff:75:3b:d7:78:f9:b3:f9:ab:2b:75:72:fb:bb:6e:
6a:22:95:1a:c9:9e:f4:bc:7c:da:d8:4a:4b:82:5c:3e:4e:4b:
fd:89:a4:4d:89:3c:ad:67:f4:ed:91:e8:f8:4a:2f:cb:30:52:
68:7d:68:c6:14:4e:70:d2:bb:06:88:eb:fe:55:88:60:51:c1:
1b:c0:82:29:7e:be:9a:d6:49:4d:41:e4:f1:2d:50:0a:c6:24:
60:c1:5c:a4:3b:eb:63:e5:06:1b:0e:47:a3:0f:41:4a:96:31:
d2:f6:48:97:98:b9:5e:66:dd:57:11:d5:49:c5:d3:36:07:bc:
1d:92:73:fa:a0:0b:0e:6c:b3:46:f6:34:52:77:f7:87:e4:b7:
52:88:56:d2:09:8f:ae:16:73:33:22:0d:f7:2a:ae:51:27:21:
36:49:24:24
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHAQHvTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
N2Y2MWZjN2MwYWI0MWNlMTU0ZTdiY2IwOGVmOTYyMzUxYTQ2Nzg0MB4XDTIyMDUw
NzEyNTc0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzhjZDIwZDQ4OTMw
MmM4ODJjNzNlNjk3YjhkMzhlMWM2NWY5OTcyMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKJMuryiT003RGF1DlKxtj2SR9yH3+Uje2adhcrSyiVCl2YP
+cQ8uYQwCwP3pfgQOPyEGQ2ATZ2nsjx6aW9o0ynbetCLDWYGo+786H+GQjvO9lZQ
fAPwAJ8HxR8qwTVaGRKjSgCYs3hZx5oUghRGpATTxl8MqeZlwDRikbC4B6rgIYEq
AyaajZ+ubyHYGfXw/X2ndOhPDwOhVk4Up4FPb4R8EaL49XBGsIq5aPWmDo9Fmqxx
199tjEU4H8XrfgLsgujPBRjsxhRL+nOYY9OqZamUQjqhOB4yWWlGPU66e7+e7ukQ
QbV4t/9NXquM42WENHHwMbUcX2+S5nNWOm9gZj0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTIzSDUiTAsiCxz5pe4044cZfmXIjAfBgNVHSMEGDAWgBR39h/HwKtBzhVO
e8sI75YjUaRnhDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RfWWZ4OENyUWM0VlRudkxDTy1XSTFHa1o0US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvOTIxM2VjLTg1YTktNDhkNi1hYTY5LWVkYzlkMDJmYWY1NC8x
L3lNMGcxSWt3TElnc2MtYVh1Tk9PSEdYNWx5SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
OTIxM2VjLTg1YTktNDhkNi1hYTY5LWVkYzlkMDJmYWY1NC8xL2RfWWZ4OENyUWM0
VlRudkxDTy1XSTFHa1o0US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFf4gzANBgkqhkiG9w0BAQsFAAOC
AQEAi500In3Ug8gVe8vH/3xk1oP6oqP05zA4MHOBkZykgCppJIg6saJYgvIMWBI+
BviHczWx1gKh+BvC+GF3cYb0NxDr0m/rP8pO2To0A8RnUBjpqpuocSX45s+BW5z3
/3U713j5s/mrK3Vy+7tuaiKVGsme9Lx82thKS4JcPk5L/YmkTYk8rWf07ZHo+Eov
yzBSaH1oxhROcNK7Bojr/lWIYFHBG8CCKX6+mtZJTUHk8S1QCsYkYMFcpDvrY+UG
Gw5How9BSpYx0vZIl5i5XmbdVxHVScXTNge8HZJz+qALDmyzRvY0Unf3h+S3UohW
0gmPrhZzMyIN9yquUSchNkkkJA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:10 2023 by rpki-client on console-ams.rpki-client.org