Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/b14srwg1uDTh3GX9Z7jXLmZrbo8.roa
File: b14srwg1uDTh3GX9Z7jXLmZrbo8.roa (raw, json)
Hash identifier: 9EXjni6Wk7eRDZVLYPtTPXkeR6Sc7UVjTsWOUzgbSqY=
Subject key identifier: 6F:5E:2C:AF:08:35:B8:34:E1:DC:65:FD:67:B8:D7:2E:66:6B:6E:8F
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 0181D50820ADD1EEA20A239A2CD93B98A468
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/b14srwg1uDTh3GX9Z7jXLmZrbo8.roa
Signing time: Wed 06 Jul 2022 19:41:28 +0000
ROA not before: Wed 06 Jul 2022 19:41:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207645
IP address blocks: 87.254.0.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d5:08:20:ad:d1:ee:a2:0a:23:9a:2c:d9:3b:98:a4:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: Jul 6 19:41:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f5e2caf0835b834e1dc65fd67b8d72e666b6e8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ea:44:80:5e:09:72:c5:1a:60:8a:18:08:c7:
26:50:73:00:4d:c8:89:3f:8a:16:76:d7:9f:ac:9e:
b1:ac:1a:d1:c2:8b:68:64:96:08:a1:91:22:50:20:
f6:3c:8d:bf:8d:59:6c:5c:a0:b2:86:45:11:ec:32:
b1:d7:99:ee:f1:3e:1e:31:05:c5:d5:84:46:a4:7a:
ea:6d:02:90:93:d3:f9:1d:87:1e:d7:9a:47:21:20:
16:85:f5:52:f3:67:e2:a9:18:4c:f5:cf:6e:c9:9d:
ad:a5:66:4a:3a:d7:35:ad:4c:a8:28:f4:52:69:8c:
f8:d5:d0:47:78:95:98:2b:41:1d:ef:68:c7:0a:dc:
42:76:12:3c:c6:b1:eb:12:6d:35:ea:bc:e1:1d:5c:
bb:4d:69:61:a5:b8:e4:a5:d6:fa:7a:e2:ee:7b:c2:
a6:a8:a9:78:0c:dd:5d:d0:a5:46:12:33:42:ca:6c:
bf:8b:73:83:c1:4b:e0:af:4c:32:5a:bc:dd:23:07:
ae:0c:ff:8f:fe:e1:53:57:29:3e:9a:af:d9:b2:10:
6a:64:27:6c:17:11:74:ae:ff:80:8b:c6:af:00:3c:
c5:0b:9b:e9:c8:ec:6a:c6:7b:f7:17:99:aa:8c:fd:
4d:ea:81:af:d5:19:c9:3a:19:04:79:7e:3e:e3:14:
fa:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:5E:2C:AF:08:35:B8:34:E1:DC:65:FD:67:B8:D7:2E:66:6B:6E:8F
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/b14srwg1uDTh3GX9Z7jXLmZrbo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.254.0.0/23
Signature Algorithm: sha256WithRSAEncryption
12:cb:b4:d2:f1:42:5f:e9:12:c9:55:36:e6:25:f6:cb:4d:a1:
ea:06:2f:61:4c:18:01:86:ad:79:67:d3:a2:27:72:5c:a9:c8:
77:42:ed:2e:ac:55:ce:98:0d:c7:6b:61:f3:3b:9c:50:bc:f3:
ec:d7:48:17:b7:9a:fb:58:b1:a4:93:d0:fb:4f:d4:1b:86:a5:
b2:c6:88:cb:fc:47:46:1c:52:c7:f3:c6:66:af:4e:22:1e:88:
27:92:b5:d6:49:b4:b6:c7:9a:77:5c:54:27:8d:1f:be:84:6f:
98:54:fa:e8:21:f5:43:f3:46:a1:2b:6f:cf:ba:86:a2:96:f2:
7f:df:64:6d:21:56:ca:76:94:14:c3:ea:0a:16:e1:96:16:29:
e7:3c:50:44:60:de:19:8c:c5:95:56:ff:92:04:2a:78:f5:d4:
6d:fa:1a:86:70:da:49:cc:ad:62:83:a5:79:a8:e9:6f:7d:ff:
d3:d2:d7:ba:c2:54:b6:2e:97:05:ef:a3:23:6e:ac:c4:18:bd:
ff:46:e5:48:06:63:70:eb:d1:50:fb:27:3e:2d:b1:77:a9:af:
4b:80:9d:ac:c1:b1:e4:f0:ca:60:8e:d8:ad:ca:1d:da:0c:4b:
f0:8d:8a:21:2d:e0:4b:b4:c2:b9:8a:35:84:5d:16:74:a7:fa:
ce:fb:32:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:38 2023 by rpki-client on console-ams.rpki-client.org