Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/LRIXTiavNCQvxfxeW1Pka9YZqlA.roa
File: LRIXTiavNCQvxfxeW1Pka9YZqlA.roa (raw, json)
Hash identifier: PmttLB2/U40GDVwLvnoXT+OPv7+SBJGF4lMCJxPYZc0=
Subject key identifier: 2D:12:17:4E:26:AF:34:24:2F:C5:FC:5E:5B:53:E4:6B:D6:19:AA:50
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 049A9C5D
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/LRIXTiavNCQvxfxeW1Pka9YZqlA.roa
Signing time: Sat 01 Jan 2022 15:04:29 +0000
ROA not before: Sat 01 Jan 2022 15:04:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48080
IP address blocks: 87.251.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77241437 (0x49a9c5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Jan 1 15:04:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d12174e26af34242fc5fc5e5b53e46bd619aa50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7b:85:6c:01:e0:60:45:95:c6:a0:01:f3:30:
fd:45:ee:6b:87:47:db:72:38:06:20:cc:7d:c1:45:
33:63:eb:00:30:74:51:53:8c:82:6c:b3:41:aa:2e:
43:c6:7a:10:b6:9d:5a:26:79:5e:71:12:28:16:33:
05:87:73:fc:e1:3c:db:e7:9d:70:64:dd:d7:f3:32:
58:10:3b:36:c6:d9:ed:74:ce:67:50:9e:8e:92:88:
48:b1:47:25:03:d3:7f:6c:04:cd:7d:ab:cd:dc:ae:
af:57:c0:b8:6d:44:99:d9:f1:54:71:89:2f:59:61:
1c:3b:fb:3f:27:98:a2:44:63:46:4f:03:ce:93:5b:
86:32:8d:b6:31:6c:60:f3:af:c9:dd:56:da:93:69:
f6:74:f1:e8:a4:93:39:57:94:66:69:7a:87:0a:a3:
18:30:80:ca:cf:f3:a6:08:24:ac:c4:da:34:ee:20:
0d:4c:4b:56:cf:04:4e:c8:c8:8a:04:09:dc:80:40:
8e:e1:b4:2f:3f:98:7a:03:a8:c8:0b:fe:0c:dd:15:
93:eb:2d:23:f3:4e:21:eb:05:18:25:d4:ef:e8:94:
85:de:76:18:10:9e:0f:0e:85:4f:33:18:59:d8:c1:
02:ef:e5:da:ea:be:0e:3a:4a:b7:04:a9:fb:8e:15:
53:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:12:17:4E:26:AF:34:24:2F:C5:FC:5E:5B:53:E4:6B:D6:19:AA:50
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/LRIXTiavNCQvxfxeW1Pka9YZqlA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.251.64.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:e3:1c:c2:15:c8:6e:11:e9:7e:23:91:80:4b:4f:1e:a0:94:
87:fc:1f:9e:f3:ea:8f:79:49:55:62:8e:e7:2d:1c:b1:dc:44:
f3:2f:94:f3:04:88:12:7b:50:a4:26:1d:77:5a:fb:dd:79:06:
44:c3:12:a8:38:3c:a3:d9:35:7a:72:24:5a:f2:4d:ae:98:2c:
3c:01:ad:18:22:d0:fc:5d:e7:f0:52:09:20:60:3f:50:1f:99:
41:e5:21:0e:ee:05:5b:94:0b:64:56:74:fc:3e:52:00:79:41:
07:09:6e:8b:a7:b7:8c:70:16:e5:62:8d:53:5a:fc:10:e9:96:
ad:d9:62:a4:87:53:a6:c6:0e:d5:10:52:1b:6d:50:42:ca:30:
66:b2:dc:70:bc:03:64:66:4f:cf:d6:d1:c3:45:98:c6:8e:cf:
8a:ae:2d:72:1a:98:9b:a5:fe:d4:71:12:b7:25:f5:8d:9e:5f:
2a:9f:3e:a3:60:e7:aa:ed:53:79:f5:5f:dc:c0:bb:e9:60:43:
97:18:a9:78:e8:54:a7:f3:b4:e2:6d:f1:f8:ab:d3:2c:0b:a5:
c5:e5:5a:0d:3d:5b:d3:81:56:b5:ee:74:f2:68:e0:26:62:17:
90:2f:8f:c3:74:38:9d:25:39:30:3c:0b:7c:c4:30:80:28:42:
9f:4e:60:f6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBJqcXTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NzNiNGMxMjQ4YzRiY2YyMmIwNTc3ZGZjYTliMTRkOTA2M2MyOGMwMB4XDTIyMDEw
MTE1MDQyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmQxMjE3NGUyNmFm
MzQyNDJmYzVmYzVlNWI1M2U0NmJkNjE5YWE1MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMB7hWwB4GBFlcagAfMw/UXua4dH23I4BiDMfcFFM2PrADB0
UVOMgmyzQaouQ8Z6ELadWiZ5XnESKBYzBYdz/OE82+edcGTd1/MyWBA7NsbZ7XTO
Z1CejpKISLFHJQPTf2wEzX2rzdyur1fAuG1EmdnxVHGJL1lhHDv7PyeYokRjRk8D
zpNbhjKNtjFsYPOvyd1W2pNp9nTx6KSTOVeUZml6hwqjGDCAys/zpggkrMTaNO4g
DUxLVs8ETsjIigQJ3IBAjuG0Lz+YegOoyAv+DN0Vk+stI/NOIesFGCXU7+iUhd52
GBCeDw6FTzMYWdjBAu/l2uq+DjpKtwSp+44VU9MCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQtEhdOJq80JC/F/F5bU+Rr1hmqUDAfBgNVHSMEGDAWgBQHO0wSSMS88isF
d9/KmxTZBjwowDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0J6dE1Fa2pFdlBJckJYZmZ5cHNVMlFZOEtNQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGMvNjNkYmU1LTVhYTMtNGYxOS04ZGE0LWE4ZDM2MWNlNjRhYS8x
L0xSSVhUaWF2TkNRdnhmeGVXMVBrYTlZWnFsQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMv
NjNkYmU1LTVhYTMtNGYxOS04ZGE0LWE4ZDM2MWNlNjRhYS8xL0J6dE1Fa2pFdlBJ
ckJYZmZ5cHNVMlFZOEtNQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFf7QDANBgkqhkiG9w0BAQsFAAOC
AQEAHOMcwhXIbhHpfiORgEtPHqCUh/wfnvPqj3lJVWKO5y0csdxE8y+U8wSIEntQ
pCYdd1r73XkGRMMSqDg8o9k1enIkWvJNrpgsPAGtGCLQ/F3n8FIJIGA/UB+ZQeUh
Du4FW5QLZFZ0/D5SAHlBBwlui6e3jHAW5WKNU1r8EOmWrdlipIdTpsYO1RBSG21Q
QsowZrLccLwDZGZPz9bRw0WYxo7Piq4tchqYm6X+1HEStyX1jZ5fKp8+o2Dnqu1T
efVf3MC76WBDlxipeOhUp/O04m3x+KvTLAulxeVaDT1b04FWte508mjgJmIXkC+P
w3Q4nSU5MDwLfMQwgChCn05g9g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:36 2023 by rpki-client on console-ams.rpki-client.org