Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/2VhOxvfDKjSq-DTLVOCCuFUw_UE.roa
File: 2VhOxvfDKjSq-DTLVOCCuFUw_UE.roa (raw, json)
Hash identifier: z59qVd5BxqI1maNK7IpK2nuUhBd8pilwWdv/BDXB1wM=
Subject key identifier: D9:58:4E:C6:F7:C3:2A:34:AA:F8:34:CB:54:E0:82:B8:55:30:FD:41
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 0302F00C
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/2VhOxvfDKjSq-DTLVOCCuFUw_UE.roa
Signing time: Sat 23 Apr 2022 16:23:59 +0000
ROA not before: Sat 23 Apr 2022 16:23:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142111
IP address blocks: 87.254.12.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50524172 (0x302f00c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: Apr 23 16:23:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9584ec6f7c32a34aaf834cb54e082b85530fd41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4c:fe:46:36:45:e9:fc:aa:ca:65:19:31:05:
c6:2e:b2:af:72:94:f4:12:76:11:5d:e0:63:ea:4d:
e7:7a:9d:a0:5d:44:cc:84:ce:12:64:9b:19:6a:b3:
40:a6:5d:33:d2:e7:30:5d:34:43:72:2b:76:0a:19:
ad:05:06:fc:7c:ed:62:0c:34:a4:91:b6:56:58:5d:
b9:46:b0:32:6d:e1:20:71:59:f8:28:da:9c:55:30:
6c:28:43:70:c6:d6:09:4f:b7:6b:75:7e:db:1b:09:
aa:c7:43:7a:14:ab:17:a8:7f:f0:13:da:84:3e:5c:
51:a5:8e:d7:79:7f:7f:02:cd:65:13:94:88:96:31:
61:95:c9:5d:78:c9:e9:88:e1:91:8e:c4:44:bd:53:
1f:c2:56:d0:e7:96:03:c2:49:67:34:72:05:98:29:
d0:87:3d:18:23:e6:c9:0e:6c:4d:ee:50:49:de:c3:
9c:ac:47:f1:01:9d:d4:13:da:8c:69:cc:d1:51:aa:
3f:71:66:be:53:d4:08:eb:d3:82:90:8d:52:be:91:
92:ae:c2:fb:c9:3a:db:3c:b0:56:e5:5d:ab:4a:1b:
35:d0:eb:47:cb:12:01:bf:76:76:be:d5:0e:46:1b:
4a:5b:b4:12:d6:d5:4f:fc:a1:51:e4:eb:f4:ad:56:
90:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:58:4E:C6:F7:C3:2A:34:AA:F8:34:CB:54:E0:82:B8:55:30:FD:41
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/2VhOxvfDKjSq-DTLVOCCuFUw_UE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.254.12.0/23
Signature Algorithm: sha256WithRSAEncryption
60:30:26:96:e0:f1:8c:07:bf:18:b6:81:98:05:3e:5f:47:80:
5c:e2:2d:20:24:93:50:fe:35:d6:ed:d3:56:0d:f4:d4:02:6f:
51:57:cc:20:7d:46:4a:9c:ed:e8:e5:3d:64:ac:e5:0d:c9:3a:
eb:fb:15:e3:c5:82:22:9e:6e:82:94:23:37:fc:c5:e8:ea:a0:
9b:21:62:a1:0b:db:a2:a6:f8:c5:f2:69:27:83:d0:52:c6:64:
a1:37:96:92:b1:54:38:dc:95:90:f1:3f:87:a6:68:56:10:07:
4c:e5:b2:35:69:51:c7:2f:b1:ea:b8:19:14:a1:75:9d:4a:e8:
85:bb:a0:f7:27:3c:2c:40:1b:9d:59:0c:63:a6:96:2f:2e:64:
00:68:21:5d:ef:43:69:c2:d1:38:a9:f7:f7:ba:19:64:9b:0c:
c5:0e:1e:b6:29:0a:ae:30:74:6a:ae:26:99:42:c5:76:e9:5d:
15:bb:ed:51:9f:8d:f3:a4:93:10:3b:fd:b1:99:f1:c7:f0:d3:
7c:31:a0:51:a6:a4:c7:45:e3:14:42:36:f0:16:94:97:ed:2e:
ab:35:a9:21:cb:de:4a:84:55:9c:c1:c3:e3:8a:19:34:a7:b2:
3d:97:86:a4:e7:c8:f2:3b:fc:52:fa:49:36:e8:81:b4:10:41:
7c:f8:7e:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:38 2023 by rpki-client on console-ams.rpki-client.org