Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/uBLm4gHCyh_wJIXchXiRlhQpT8M.roa
File: uBLm4gHCyh_wJIXchXiRlhQpT8M.roa (raw, json)
Hash identifier: dLrFObgvLDWRdE+9Q+53YpD1YdSUHTfb9bOW3hclneQ=
Subject key identifier: B8:12:E6:E2:01:C2:CA:1F:F0:24:85:DC:85:78:91:96:14:29:4F:C3
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 05D7B69C
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/uBLm4gHCyh_wJIXchXiRlhQpT8M.roa
Signing time: Wed 11 May 2022 10:11:20 +0000
ROA not before: Wed 11 May 2022 10:11:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52000
IP address blocks: 87.251.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98023068 (0x5d7b69c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: May 11 10:11:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b812e6e201c2ca1ff02485dc8578919614294fc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d6:4e:33:d9:79:5b:a2:02:8e:55:c2:a5:43:
ec:01:31:75:65:04:11:e1:c5:a1:b4:2e:a5:06:a1:
80:d8:4d:a6:65:1b:fd:41:07:b4:8c:b0:29:16:b9:
84:a5:17:d9:11:96:61:16:c3:26:9a:fa:1c:23:4b:
3a:70:be:e5:46:81:76:47:be:ee:74:11:75:cc:8f:
dc:f9:bf:db:78:73:34:d2:58:1d:68:71:20:84:70:
42:fb:59:c5:f9:79:71:b7:1e:82:11:e1:f0:99:84:
af:50:00:d3:05:e2:53:ae:fe:27:82:02:53:8f:98:
2c:66:df:07:e8:ab:4b:20:4a:ad:36:d9:56:c1:25:
b6:ed:fd:70:47:4d:7e:bd:8d:82:d4:d5:f8:f3:20:
b7:99:2f:6b:b4:58:cc:bb:98:23:f6:b3:ff:35:66:
fa:ee:4d:20:cc:6b:ae:41:39:91:1c:c6:33:64:2b:
6d:44:40:9d:b6:55:4b:d0:09:33:c0:cf:0e:0e:fc:
31:43:35:e4:11:dd:7b:b8:df:48:b9:62:d5:c2:5a:
0f:09:f6:20:a1:ab:16:4f:80:53:d5:b3:59:27:98:
71:6f:f1:84:ea:89:f5:c8:5c:32:c0:80:46:be:68:
be:f8:c0:cd:9e:32:30:ff:62:07:e6:3b:4a:9e:fd:
02:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:12:E6:E2:01:C2:CA:1F:F0:24:85:DC:85:78:91:96:14:29:4F:C3
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/uBLm4gHCyh_wJIXchXiRlhQpT8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.251.72.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:e2:20:a4:2a:04:9f:93:a6:2b:d8:9e:00:99:78:db:9f:a1:
41:d8:c4:31:85:e7:df:70:90:af:3f:53:00:3a:48:0d:74:c6:
16:d1:9e:75:df:13:26:b2:fe:dd:66:5e:a5:30:dc:36:6c:47:
ca:dd:ee:9e:e8:29:c9:95:7f:40:0b:94:2b:2c:72:0c:46:9e:
8e:79:68:19:b6:c1:e5:17:c1:d6:0c:36:20:fe:a2:a9:2f:d9:
d7:14:9d:76:52:77:db:62:17:fb:66:33:77:7b:3f:e0:64:90:
7b:cb:cb:28:6c:cf:66:51:c8:25:46:3a:24:77:78:c8:c1:d1:
ac:69:1e:10:be:28:03:d5:6e:c0:7a:1f:1e:ec:a5:af:44:49:
b8:a6:b1:3b:ce:63:4b:92:06:57:66:9c:b9:af:d4:21:f7:02:
73:27:6b:30:1a:ad:ee:79:f1:c1:31:38:6b:26:f4:35:09:b3:
ec:47:27:fb:e1:20:26:16:e4:7f:e8:38:ae:54:a4:a7:13:77:
81:67:0d:bb:c4:23:32:20:78:e5:fb:a8:76:13:5c:60:d4:2d:
22:a3:4c:79:e8:7d:19:df:57:1b:8a:47:b3:aa:4f:63:ad:5c:
97:c1:99:df:d9:ea:79:58:5c:52:ab:e1:06:6f:10:d4:b6:71:
ce:88:85:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:38 2024 by rpki-client on console-fra.rpki-client.org