Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/djA9sK7XsuDpC2nnCZWjf5JBkZ8.roa
File: djA9sK7XsuDpC2nnCZWjf5JBkZ8.roa (raw, json)
Hash identifier: G18jkjROk+nxGQpEtL/ZxU3Pd8axRCGaCc2J0byJBw8=
Subject key identifier: 76:30:3D:B0:AE:D7:B2:E0:E9:0B:69:E7:09:95:A3:7F:92:41:91:9F
Certificate issuer: /CN=58667131d760b5db1de98ea20c0f82fc01c9f1d9
Certificate serial: 14B6A05F
Authority key identifier: 58:66:71:31:D7:60:B5:DB:1D:E9:8E:A2:0C:0F:82:FC:01:C9:F1:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/djA9sK7XsuDpC2nnCZWjf5JBkZ8.roa
Signing time: Sat 01 Jan 2022 08:53:02 +0000
ROA not before: Sat 01 Jan 2022 08:53:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25525
IP address blocks: 87.237.103.0/24 maxlen: 24
87.237.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 347512927 (0x14b6a05f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58667131d760b5db1de98ea20c0f82fc01c9f1d9
Validity
Not Before: Jan 1 08:53:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76303db0aed7b2e0e90b69e70995a37f9241919f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:74:ab:3f:1a:d6:00:87:c5:fc:b5:e2:b2:57:
da:f7:8e:f4:58:55:d7:54:0d:68:47:90:1c:36:ae:
0f:0e:86:a3:37:ce:94:e9:48:bf:e1:cc:94:78:a0:
7e:48:30:04:e7:bc:5c:4a:9a:ef:f7:7d:4f:af:09:
45:40:97:bc:3d:b3:91:9f:4b:a9:02:c8:57:ab:69:
1c:2f:c7:70:ff:1b:04:c4:e5:a3:f1:75:10:e6:29:
a3:77:91:69:61:a7:20:99:3e:72:00:62:af:43:21:
c6:7f:b0:12:e8:e6:e2:46:02:1e:f9:47:f5:55:e0:
92:9a:66:b9:db:9e:8d:59:4f:f0:5e:52:c7:db:df:
8b:65:1f:51:a1:d5:67:d9:b9:7c:0b:bc:83:37:1b:
d5:2e:17:21:0c:fb:ed:07:70:4e:de:f8:fb:db:37:
28:5a:45:d2:bc:12:be:67:87:d7:ba:37:9a:d2:93:
85:76:6b:5d:c3:e6:db:76:b3:47:01:18:48:4a:42:
72:10:bf:6b:9e:f0:cf:ea:7e:32:22:2d:6c:ef:f8:
b8:26:c2:f5:6e:cd:60:eb:55:7b:47:42:6b:32:98:
41:22:8c:0e:90:8e:8e:05:1b:4e:9b:69:b3:5f:2d:
71:46:88:cf:db:3b:fe:17:ea:0f:b2:c3:08:36:f4:
51:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:30:3D:B0:AE:D7:B2:E0:E9:0B:69:E7:09:95:A3:7F:92:41:91:9F
X509v3 Authority Key Identifier:
keyid:58:66:71:31:D7:60:B5:DB:1D:E9:8E:A2:0C:0F:82:FC:01:C9:F1:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/djA9sK7XsuDpC2nnCZWjf5JBkZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.237.99.0/24
87.237.103.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:c6:10:c2:65:07:18:b6:da:a8:ae:96:75:11:ae:22:82:15:
df:d4:bc:a9:6e:e1:02:ab:de:44:3f:07:74:c6:45:f7:e1:fb:
34:1e:84:5f:e9:93:38:bd:ae:75:62:56:29:df:b6:a2:09:81:
7f:8a:34:b8:0d:92:58:f4:ce:b9:22:a0:28:d7:13:0c:8f:bc:
66:c1:da:ef:ce:8f:93:c0:02:f3:09:93:7d:00:a3:7a:2b:9c:
e5:75:d3:0e:fa:3b:d4:1c:58:07:25:76:2d:ed:eb:36:1c:7d:
83:88:19:3f:4c:d1:c3:77:3f:cd:00:6a:77:fd:01:03:7a:f4:
24:17:ed:4a:46:b1:12:92:b1:fb:76:39:de:09:28:cc:6f:1f:
bb:cb:59:a3:3f:f0:9d:27:e0:01:4f:c4:b0:57:93:e8:9f:61:
86:3a:7b:d4:00:45:84:56:aa:ec:7a:0f:c7:b2:80:a4:47:a8:
31:d6:b8:8a:3f:52:76:8a:8a:30:a0:12:e4:0d:e4:d7:82:bb:
d9:a8:a8:1b:1f:f5:ac:1f:fc:8a:13:38:8f:dd:77:a6:62:63:
e5:ad:90:11:ad:13:55:08:50:7f:e1:74:c2:71:d6:77:3c:f6:
47:fe:a6:59:4f:68:65:b9:c9:df:82:89:bc:ca:3d:d2:6d:0e:
43:4d:a9:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:36 2023 by rpki-client on console-fra.rpki-client.org