Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/sAIuIXCJ-PDhHVOiRvaAgvTst0g.roa
File: sAIuIXCJ-PDhHVOiRvaAgvTst0g.roa (raw, json)
Hash identifier: uQSxcHf3BJgqjOoCQ6KRxaJo3nwkl+EVLk402AO+v4Q=
Subject key identifier: B0:02:2E:21:70:89:F8:F0:E1:1D:53:A2:46:F6:80:82:F4:EC:B7:48
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 057F6AB8
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/sAIuIXCJ-PDhHVOiRvaAgvTst0g.roa
Signing time: Mon 04 Apr 2022 04:44:53 +0000
ROA not before: Mon 04 Apr 2022 04:44:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206728
IP address blocks: 87.251.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92236472 (0x57f6ab8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Apr 4 04:44:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0022e217089f8f0e11d53a246f68082f4ecb748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c4:2b:49:1b:f2:27:cc:b7:b4:1d:a2:fc:7f:
9d:54:8d:5c:1e:6c:78:be:4c:4f:42:e2:6e:de:2a:
ef:51:d4:d7:a5:a9:79:26:83:61:f1:db:7d:b3:6c:
36:07:f1:91:ac:90:cc:38:39:ed:12:7b:4d:0c:e8:
29:60:f9:e1:be:ef:34:ee:02:58:be:fa:03:d8:f0:
b0:07:0a:b5:d7:a6:91:92:b0:05:87:ff:34:07:c6:
9f:c4:52:65:b6:28:48:8f:01:6a:a2:da:a5:89:1f:
7b:25:b8:a0:bb:36:71:e1:1f:ce:1b:fb:d2:39:fb:
79:e1:e4:3d:6a:ce:3e:5d:e9:60:55:3f:58:88:2d:
0b:9d:dc:02:7a:3a:fc:92:7c:1e:af:19:e4:40:8e:
1e:b2:dc:6d:b7:b1:08:04:af:9e:5d:51:fc:f7:c4:
8e:2f:2b:e3:1d:73:91:ae:65:ff:18:cd:5a:7d:8d:
ae:2b:cf:46:36:4a:2b:28:db:a9:4c:c6:11:b0:63:
66:2d:80:45:56:b9:2e:9a:2f:84:e5:54:c9:91:39:
69:32:a1:5e:5b:cc:d5:41:1d:54:30:0c:da:e7:4e:
ac:c1:0d:63:46:f5:d8:ac:aa:9e:ff:7d:99:9f:b2:
d5:7a:39:99:d0:9b:d6:50:8a:4a:c7:0a:28:b7:b2:
60:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:02:2E:21:70:89:F8:F0:E1:1D:53:A2:46:F6:80:82:F4:EC:B7:48
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/sAIuIXCJ-PDhHVOiRvaAgvTst0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.251.66.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:fd:3e:03:50:42:49:7e:43:b4:3a:f0:86:b3:bf:a2:39:68:
48:2a:6b:e3:fa:ba:1e:94:56:0a:97:dc:1c:47:34:f9:c8:8d:
2c:9c:4e:e8:c1:fc:1d:4a:0d:6c:20:ed:e8:4c:dc:3e:81:c5:
95:38:02:b9:fb:3b:6f:d2:a6:16:9e:de:87:bd:95:bf:63:b3:
9d:b3:58:38:50:39:75:8b:f8:83:95:f6:b8:23:15:80:59:8c:
16:47:3b:6b:2e:34:27:70:eb:a8:72:b8:bf:1e:17:95:7b:de:
82:71:6a:ba:b4:fb:c5:89:16:85:59:2a:d5:fc:49:80:84:6d:
2e:c5:c4:6e:2c:50:7e:e5:e7:c1:98:c2:75:18:d3:a7:de:8f:
57:63:73:ca:c4:93:5b:5a:6a:90:e1:c9:76:26:25:d7:5a:a8:
48:d1:4e:a5:77:30:04:6a:85:b3:fa:05:49:b5:5d:de:15:1f:
79:7f:37:be:77:73:10:00:55:57:35:92:f3:c8:8e:da:a6:b0:
99:f7:b9:c4:c2:d3:87:c3:66:83:92:63:0a:6a:21:fa:3a:6f:
bd:f1:0e:db:a2:69:3b:56:30:c6:ee:c2:a3:4b:28:03:94:b1:
73:61:34:98:91:be:b5:b0:30:53:0d:67:f3:f7:8a:74:d9:71:
da:99:7c:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:53 2023 by rpki-client on console-fra.rpki-client.org