Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/2g1dKaozQ8A4qVmTzm3fyWM3pJo.roa
File: 2g1dKaozQ8A4qVmTzm3fyWM3pJo.roa (raw, json)
Hash identifier: b+x8GGQH/GMzSICMKaDZ3F/O/GQTkpQDj83TzUc1zxs=
Subject key identifier: DA:0D:5D:29:AA:33:43:C0:38:A9:59:93:CE:6D:DF:C9:63:37:A4:9A
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 37A86F8E
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/2g1dKaozQ8A4qVmTzm3fyWM3pJo.roa
Signing time: Sat 01 Jan 2022 08:55:49 +0000
ROA not before: Sat 01 Jan 2022 08:55:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58224
IP address blocks: 87.107.192.0/22 maxlen: 22
87.107.196.0/22 maxlen: 22
87.107.254.0/23 maxlen: 23
81.12.28.0/24 maxlen: 24
87.107.206.0/23 maxlen: 23
87.107.204.0/23 maxlen: 23
87.107.200.0/22 maxlen: 22
87.107.212.0/22 maxlen: 22
87.107.208.0/22 maxlen: 22
87.107.216.0/22 maxlen: 22
87.107.224.0/22 maxlen: 22
87.107.220.0/22 maxlen: 22
87.107.230.0/23 maxlen: 23
87.107.233.0/24 maxlen: 24
87.107.232.0/24 maxlen: 24
87.107.229.0/24 maxlen: 24
87.107.228.0/24 maxlen: 24
87.107.236.0/22 maxlen: 22
87.107.234.0/23 maxlen: 23
87.107.240.0/23 maxlen: 23
87.107.246.0/23 maxlen: 23
87.107.244.0/23 maxlen: 23
87.107.242.0/23 maxlen: 23
87.107.253.0/24 maxlen: 24
87.107.252.0/24 maxlen: 24
87.107.250.0/23 maxlen: 23
87.107.248.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 933785486 (0x37a86f8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 08:55:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da0d5d29aa3343c038a95993ce6ddfc96337a49a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d6:0d:6e:39:c0:7c:ed:2b:6f:64:92:aa:d8:
58:4a:61:10:bf:07:4d:81:da:ff:c7:1e:bf:21:54:
a4:46:de:0f:fd:a6:18:62:72:ea:df:98:34:ec:f2:
d0:ac:af:66:52:48:ef:f0:41:9f:74:85:04:d6:cf:
5f:a6:95:7f:48:f6:2b:ff:06:22:5d:15:c4:57:7f:
8b:3c:6f:70:0d:36:4b:04:00:fe:b5:4f:f1:a4:25:
c0:e8:9a:4f:2d:cc:bb:fe:7d:d2:0c:2e:62:6f:19:
a3:ab:33:46:df:97:c9:b1:d7:fa:20:e6:fd:a2:12:
3d:9b:f2:15:d2:cb:ab:39:38:85:fc:20:7c:b3:e5:
70:69:19:15:30:d6:78:23:d8:f9:88:c7:06:e5:9c:
6d:ec:85:0f:a2:7f:d0:3e:f8:7e:ab:78:90:da:02:
82:5b:35:6d:46:e4:5e:6a:55:68:37:bd:d9:2d:4a:
0c:a0:f6:a9:a4:6e:94:5f:50:0c:d4:ab:bd:8f:24:
3d:74:6c:30:95:19:c7:a5:c7:0f:9b:9b:c6:cd:2f:
37:44:90:07:ac:ac:1f:f4:84:cc:56:42:37:04:6c:
e8:1f:9e:d1:a7:1d:7c:6e:ef:d4:dd:c6:f9:d5:7a:
33:73:32:2c:70:2c:e4:bb:89:d3:3f:e8:c4:72:00:
58:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:0D:5D:29:AA:33:43:C0:38:A9:59:93:CE:6D:DF:C9:63:37:A4:9A
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/2g1dKaozQ8A4qVmTzm3fyWM3pJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.12.28.0/24
87.107.192.0/18
Signature Algorithm: sha256WithRSAEncryption
a4:eb:7d:51:6f:25:21:5f:f3:88:85:78:ca:d0:64:d3:fa:fa:
94:c6:40:6f:12:3e:0f:41:ac:18:c4:87:e2:f9:b0:86:2f:03:
b3:7e:24:49:ea:a1:9b:67:4a:4c:a5:8c:5c:a9:a5:e0:d4:61:
37:08:52:86:04:6d:0d:0d:97:06:67:72:82:f8:70:06:57:b9:
30:44:61:ef:9d:d4:b7:8d:2e:a0:41:14:ab:dc:ce:c3:c1:b4:
e2:71:5a:9f:e0:28:cd:22:35:78:b2:8d:5c:09:26:ce:82:7f:
7f:38:a0:5f:c3:43:9e:ae:e2:02:91:c3:ea:33:e4:5b:18:73:
26:4b:e1:c4:8c:93:c1:47:f7:04:4d:af:07:36:1f:53:7a:5c:
64:31:ec:19:df:51:12:ee:ed:e3:5e:5a:45:75:83:df:d1:c1:
53:9e:ac:c2:dc:b3:99:53:77:73:71:59:ed:99:d9:40:67:10:
89:da:86:72:74:31:d9:59:a2:3f:39:c2:ac:be:5b:94:e7:7f:
70:63:19:07:23:87:e8:e6:5c:64:1a:7a:36:93:d7:15:30:48:
28:12:b0:60:3e:13:4d:65:3b:29:24:c4:9d:de:3c:6c:cd:37:
ed:f7:b9:95:20:99:45:e1:3d:56:89:cf:96:f3:7d:39:f7:78:
79:05:46:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:16 2025 by rpki-client