Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/DECiPDrfKZaB9JtZaex4jXswbEI.roa
File: DECiPDrfKZaB9JtZaex4jXswbEI.roa (raw, json)
Hash identifier: YI+aPvz3YZs5ubEt+9b4qHUvocIgRCiHvj4vYNHJUCc=
Subject key identifier: 0C:40:A2:3C:3A:DF:29:96:81:F4:9B:59:69:EC:78:8D:7B:30:6C:42
Certificate issuer: /CN=92bf6464ce6e19a4dcf8a32b27a2f1cbe1551055
Certificate serial: 35154F21
Authority key identifier: 92:BF:64:64:CE:6E:19:A4:DC:F8:A3:2B:27:A2:F1:CB:E1:55:10:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/DECiPDrfKZaB9JtZaex4jXswbEI.roa
Signing time: Sat 01 Jan 2022 05:58:45 +0000
ROA not before: Sat 01 Jan 2022 05:58:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210773
IP address blocks: 87.236.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 890588961 (0x35154f21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92bf6464ce6e19a4dcf8a32b27a2f1cbe1551055
Validity
Not Before: Jan 1 05:58:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c40a23c3adf299681f49b5969ec788d7b306c42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c4:85:33:df:ef:53:1d:b7:f3:5d:74:03:fc:
8c:ca:9e:5f:4b:af:0c:c9:a4:e2:b2:0e:c3:c5:21:
6d:e5:b6:c8:e2:45:7a:b4:f5:a5:46:f9:fc:d0:dc:
db:1f:1c:ab:28:13:4c:5b:32:55:8d:50:4b:f4:ff:
38:4f:ea:26:52:f2:dd:65:d9:70:3d:38:d9:d9:e7:
e6:6c:e1:be:00:38:1f:04:0f:59:9d:b9:c4:c2:0d:
91:20:f6:56:a6:16:50:b5:c9:0a:82:d8:79:e1:3d:
fd:5a:07:1e:a5:c8:34:3e:fb:c2:64:b6:0a:6f:9a:
f4:61:c4:fd:94:cd:b0:cb:41:dc:9c:77:61:55:fd:
82:bd:0a:d3:1f:61:61:ce:45:64:22:1f:a1:34:a9:
3f:b9:33:81:14:55:72:91:41:87:b1:cb:82:2a:dc:
0e:e1:be:fb:87:5d:d1:49:72:03:e0:32:a3:05:99:
ad:40:bf:9d:84:cb:69:16:0a:47:cf:f2:10:72:0b:
2d:66:36:7a:ce:c1:ef:1f:9e:9f:08:38:67:08:57:
2c:ca:5b:fe:8e:15:39:61:9a:a5:76:b5:47:29:ba:
ab:49:f4:c4:af:b6:f2:9f:dc:3a:31:c1:8b:19:fd:
56:47:a6:3c:60:b0:69:d0:03:e7:a7:58:ed:39:d8:
88:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:40:A2:3C:3A:DF:29:96:81:F4:9B:59:69:EC:78:8D:7B:30:6C:42
X509v3 Authority Key Identifier:
keyid:92:BF:64:64:CE:6E:19:A4:DC:F8:A3:2B:27:A2:F1:CB:E1:55:10:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/DECiPDrfKZaB9JtZaex4jXswbEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.236.208.0/24
Signature Algorithm: sha256WithRSAEncryption
ea:d0:99:76:00:cb:56:24:b8:e4:24:98:1d:89:c3:5a:18:2e:
38:3e:5c:5e:ac:a9:77:ac:c3:be:e3:b0:06:64:2b:34:4c:6c:
84:b0:e2:04:7f:05:c8:de:4d:c8:90:cd:d1:d0:45:85:7b:48:
da:26:08:2f:f9:78:03:d2:00:fd:66:3d:98:ca:eb:70:38:92:
4f:c9:2f:d1:b6:11:8d:67:cd:0c:80:61:82:8e:e6:9e:22:12:
1a:ac:4b:62:23:d0:48:64:80:88:c6:0d:78:f6:1b:ea:f8:44:
7d:2d:3c:05:ae:00:51:53:06:3d:5f:ea:b7:28:a0:69:61:91:
71:d5:5f:89:86:68:f3:f1:77:8f:5c:62:8d:f4:d2:2e:85:55:
2e:14:75:f2:3e:d6:54:a5:97:77:b5:b3:54:06:ce:07:da:21:
7f:42:36:2f:03:1f:a1:04:ba:1b:81:f4:c7:b9:ee:23:99:09:
6d:07:94:6e:43:89:31:a5:89:72:28:7d:74:e3:54:3c:a1:34:
05:99:4e:ef:84:c8:c9:31:6e:c8:6a:11:25:81:62:34:e1:22:
a3:f3:b5:59:02:f0:ae:f6:d7:db:71:d4:36:09:e3:a1:78:c7:
a8:31:20:cd:c7:df:e9:59:1c:e0:aa:9e:e6:91:27:30:79:16:
0f:a0:9b:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:34 2023 by rpki-client on console-ams.rpki-client.org