Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/ltvrMmDkRtBjnSBuPhjsiEjtR8g.roa
File: ltvrMmDkRtBjnSBuPhjsiEjtR8g.roa (raw, json)
Hash identifier: yNhkel4R/4/Kw57oSQ4bKpynKEYFmxY7ZId6BODl3Zk=
Subject key identifier: 96:DB:EB:32:60:E4:46:D0:63:9D:20:6E:3E:18:EC:88:48:ED:47:C8
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 0F286B6B
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/ltvrMmDkRtBjnSBuPhjsiEjtR8g.roa
Signing time: Thu 24 Feb 2022 19:35:55 +0000
ROA not before: Thu 24 Feb 2022 19:35:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21325
IP address blocks: 87.246.184.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 254307179 (0xf286b6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Feb 24 19:35:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96dbeb3260e446d0639d206e3e18ec8848ed47c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c1:f2:9b:0c:35:44:50:53:ca:3d:cb:f3:70:
68:6a:c9:97:12:37:4e:d2:b9:a4:46:d9:69:75:cb:
94:5d:be:34:90:87:5d:65:4b:34:9c:74:ac:02:a8:
f7:b3:79:5f:d2:c5:22:ab:ee:42:71:3a:d6:d7:d4:
83:a2:9a:df:1b:a1:b8:d6:aa:7d:2a:ec:b3:14:97:
e0:cf:ff:c0:a4:e9:db:61:e8:3e:80:35:49:e4:ac:
6f:1d:7b:26:2a:3a:15:89:2e:4c:89:8b:54:76:4d:
7f:c8:8f:1d:d1:1f:39:0b:7b:86:87:05:27:e7:f9:
7a:96:9b:6b:5f:a6:5f:f4:61:3c:47:5d:91:86:d7:
de:3c:1d:40:f0:9e:60:dd:64:78:b0:33:05:14:cd:
53:4e:55:85:72:62:b6:65:4c:d2:86:e3:06:07:28:
15:19:dd:46:82:cf:05:0b:80:0f:bc:11:40:11:10:
c3:a0:b3:94:d4:ce:19:7b:5b:05:28:e9:00:7b:e9:
0b:1a:8a:58:5f:8c:46:77:a3:39:c9:dc:2e:ee:6e:
3a:fa:88:25:79:7c:f6:a6:d1:0f:02:0b:20:d4:78:
a1:8e:6e:6e:f8:ce:0b:64:11:fc:9d:8a:8c:ae:ee:
1f:7b:1e:c0:a2:3c:ef:30:72:9d:d1:69:85:04:42:
58:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:DB:EB:32:60:E4:46:D0:63:9D:20:6E:3E:18:EC:88:48:ED:47:C8
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/ltvrMmDkRtBjnSBuPhjsiEjtR8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.246.184.0/23
Signature Algorithm: sha256WithRSAEncryption
62:9d:83:2c:7e:2f:76:2b:59:c6:00:c7:f3:82:d8:ca:1d:16:
2b:e4:7e:22:7d:2b:ec:14:87:94:37:06:c4:a6:a7:84:04:ac:
78:b5:90:2d:7b:3b:6a:70:ad:1d:7e:83:a3:62:22:70:22:9c:
aa:a1:21:d7:66:9d:70:55:d0:46:fa:e9:03:fc:ed:df:05:2e:
50:5a:c0:16:86:e7:27:d9:34:09:76:f9:dd:0a:55:66:8c:31:
c7:1a:42:eb:3d:f0:59:b6:80:88:ff:22:e2:03:53:d6:b4:65:
24:d4:90:46:c5:b5:bd:9b:ec:28:b6:8c:c9:ba:50:67:83:ec:
b0:f4:68:0f:f9:d0:ff:2a:a8:16:2e:78:11:46:ff:63:d7:ef:
c3:e1:33:05:17:fa:8f:5e:32:ec:92:01:32:01:91:3a:ad:36:
2f:9a:a6:de:51:76:3a:81:00:41:58:86:4f:0d:e3:7a:6c:ad:
1a:64:6e:33:81:41:63:ba:6e:fc:15:8b:76:ef:49:4f:2a:e2:
9f:04:dd:4e:3c:97:c3:41:c6:e9:19:c0:87:02:fe:b1:24:07:
46:39:77:c9:d8:79:57:a7:90:cb:01:bc:58:e3:11:19:73:07:
0f:99:14:c9:1a:c6:a3:da:89:5c:61:6c:ae:10:78:bc:a3:8b:
1c:9a:67:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:48 2023 by rpki-client on console-ams.rpki-client.org