Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/7oJyIhI0SxaduBkBbCkvANYEPPk.roa
File: 7oJyIhI0SxaduBkBbCkvANYEPPk.roa (raw, json)
Hash identifier: JyayPTV6yG6mK74KuLSW2wof+5I4aTUuCmmbuLcGfWI=
Subject key identifier: EE:82:72:22:12:34:4B:16:9D:B8:19:01:6C:29:2F:00:D6:04:3C:F9
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 0343BFB8
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/7oJyIhI0SxaduBkBbCkvANYEPPk.roa
Signing time: Wed 18 May 2022 13:14:17 +0000
ROA not before: Wed 18 May 2022 13:14:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 87.254.3.0/24 maxlen: 24
87.254.11.0/24 maxlen: 24
87.254.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54771640 (0x343bfb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: May 18 13:14:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee82722212344b169db819016c292f00d6043cf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:96:37:fc:c4:4e:66:eb:38:85:be:c8:4e:65:
68:b2:f8:b3:1e:5a:15:b7:b9:14:12:81:51:ea:b6:
17:6c:3f:56:80:84:1e:ff:22:61:cb:d7:df:9e:88:
d0:ee:72:b8:f7:56:02:c4:04:4b:0d:02:75:c8:48:
21:40:e8:7a:a6:e0:65:cb:1b:79:41:94:7e:ba:af:
8d:5f:b9:e0:33:01:e9:7b:a9:76:49:94:ba:d2:cf:
ae:96:a0:14:11:bb:e5:fb:70:ae:17:df:1b:c8:21:
cf:16:ef:8f:93:a2:8b:8a:2d:fc:f6:df:9e:d2:81:
bd:3e:57:03:6c:56:3a:9c:85:3c:99:8a:ca:dd:b8:
ed:3b:b1:59:85:7e:b9:e1:4e:19:9d:30:31:38:0a:
95:b8:d4:68:a6:55:c3:bc:bc:dd:c0:e2:50:63:b7:
60:ff:11:88:78:ce:98:1f:c5:6d:14:b4:81:45:1a:
24:33:9a:78:25:57:96:e1:d9:fd:ef:2f:d2:e6:2b:
3c:20:22:d7:e8:21:4a:5c:94:96:78:f1:40:e2:ef:
1a:1b:10:15:45:b6:74:e0:70:16:2b:de:6f:eb:26:
71:bc:b7:cc:63:ee:2f:1a:0b:c1:a5:f0:aa:97:6d:
a1:ac:f3:e7:6d:da:08:4c:f6:27:7b:b2:2e:bb:db:
92:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:82:72:22:12:34:4B:16:9D:B8:19:01:6C:29:2F:00:D6:04:3C:F9
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/7oJyIhI0SxaduBkBbCkvANYEPPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.254.3.0/24
87.254.11.0/24
87.254.23.0/24
Signature Algorithm: sha256WithRSAEncryption
29:97:ff:47:3b:9f:88:5b:c8:b4:e1:c8:50:c5:68:c9:93:0a:
b2:f1:2f:07:ad:e0:df:8c:28:00:84:48:7d:18:e7:fe:f8:98:
25:cf:dc:99:28:72:c9:ad:5e:67:dc:86:d9:e1:b6:19:a9:ae:
5e:af:de:c1:51:73:2d:97:c3:5f:e2:eb:a1:21:ff:af:23:b2:
21:56:be:a0:a8:0a:f5:85:dd:c7:2f:18:90:fd:72:50:34:e0:
fd:c1:f8:41:5d:3f:a8:f1:7c:b5:54:ba:43:5e:f1:7d:de:bd:
bf:59:b8:dd:9f:ac:b4:03:bf:59:22:65:72:94:39:ec:89:e1:
16:27:fc:c8:1d:8f:d0:94:d0:f5:65:96:da:27:d9:90:3b:48:
ae:40:2b:bd:80:47:91:cb:64:21:26:bd:9e:40:2f:8a:80:3b:
e6:e7:8f:1d:9e:92:80:15:b8:ae:5a:eb:8e:7d:ec:dd:5f:ce:
97:a4:16:9e:f5:07:6d:6d:d3:d4:f2:70:22:67:4c:58:1c:48:
0e:42:77:62:4d:29:ae:04:97:77:bb:f6:a4:e0:e8:8b:0f:71:
1b:b1:72:29:22:74:68:53:75:c7:d5:50:81:84:91:3c:df:8d:
fb:b8:d7:ef:39:5c:67:80:2e:28:7a:6a:3f:f8:2a:42:97:df:
03:54:50:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:38 2023 by rpki-client on console-ams.rpki-client.org