Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/6G7R5w8ylmysTQvLzY0F-yYwUDQ.roa
File: 6G7R5w8ylmysTQvLzY0F-yYwUDQ.roa (raw, json)
Hash identifier: k3t5WUXJCW/mnUrFG/nIbR15K0/l5ssDhtjsFjFwMc8=
Subject key identifier: E8:6E:D1:E7:0F:32:96:6C:AC:4D:0B:CB:CD:8D:05:FB:26:30:50:34
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0184607F9794F811689C592BA0690DDE077F
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/6G7R5w8ylmysTQvLzY0F-yYwUDQ.roa
Signing time: Thu 10 Nov 2022 07:44:45 +0000
ROA not before: Thu 10 Nov 2022 07:44:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212063
IP address blocks: 87.107.172.0/24 maxlen: 24
87.107.189.0/24 maxlen: 24
87.107.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:60:7f:97:94:f8:11:68:9c:59:2b:a0:69:0d:de:07:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Nov 10 07:44:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e86ed1e70f32966cac4d0bcbcd8d05fb26305034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:6d:e7:0c:1f:a6:b5:30:82:f1:fa:c1:8f:a3:
59:5a:b0:ae:51:3b:04:1d:05:9b:85:c5:b9:92:34:
6f:20:4c:e3:94:ea:6e:6d:88:4a:5a:93:ac:70:2a:
bc:e5:ba:fe:88:24:6e:fc:26:c7:e2:8a:0c:f8:3e:
a9:4c:bf:03:d1:f9:46:55:5e:6d:b1:f0:0f:df:37:
51:66:6f:54:22:68:3b:b0:35:bc:91:f8:7f:84:1b:
04:c0:a9:a7:fd:68:c1:da:45:1f:38:aa:35:24:05:
18:18:d0:76:bc:46:3e:53:25:58:79:14:d8:4b:42:
5f:4a:4d:66:35:97:88:e9:2f:3d:39:4c:30:7a:b0:
49:93:b1:de:82:14:55:63:ec:a3:a8:76:be:b8:3c:
f1:a4:1d:50:ea:fc:41:83:0b:8d:dd:c3:38:3f:2e:
e8:e3:9b:f2:61:25:3a:3f:d9:84:a4:5a:ae:27:c2:
1f:c3:e8:2c:dc:f5:de:48:52:af:c5:2a:4c:55:a4:
28:5b:54:12:b1:e9:d2:fe:61:bc:b1:f5:4e:74:78:
d2:49:bc:06:a8:36:da:7f:24:b0:49:e1:9f:00:56:
0d:42:55:49:1c:17:be:a8:31:4d:f8:2f:19:9f:64:
c4:ca:1b:b8:7b:ba:a2:a9:39:ec:32:75:63:d6:b7:
19:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:6E:D1:E7:0F:32:96:6C:AC:4D:0B:CB:CD:8D:05:FB:26:30:50:34
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/6G7R5w8ylmysTQvLzY0F-yYwUDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.172.0/24
87.107.188.0/23
Signature Algorithm: sha256WithRSAEncryption
35:86:f6:a0:21:8b:2b:1e:e6:2e:2d:34:3e:9a:50:af:fe:67:
f1:16:c1:fe:e4:05:d5:05:87:00:d6:f9:24:8c:b3:99:8f:76:
61:0c:21:ce:e0:a0:45:e5:3a:27:40:6c:b6:dd:7f:59:15:d6:
ae:db:92:e8:1e:0d:e3:e3:ac:ee:0f:75:c1:bc:d2:dd:0c:57:
d2:c1:e5:d1:fe:4a:ed:9e:c3:f1:a2:9a:33:78:00:01:3c:64:
9b:f3:3b:1c:0c:48:86:e0:13:b4:63:82:8d:05:2c:a0:28:ea:
38:e6:bf:a9:93:eb:1c:22:ab:0f:e1:07:b1:25:28:52:43:ce:
81:53:7d:2d:ce:67:0f:eb:09:72:33:cc:ed:39:53:83:98:a1:
8f:56:35:af:44:f6:2d:24:db:ed:e5:7d:b8:9f:05:ff:36:8c:
d6:11:e8:ac:b2:63:20:4c:b0:59:b4:0c:f8:70:42:cd:34:82:
20:02:d1:13:fb:d6:36:c1:fe:2d:de:3e:35:53:8f:e9:65:2b:
f5:c4:2d:20:e2:3e:16:3f:1e:d1:41:8c:f0:dd:2e:12:d0:39:
59:21:35:51:a1:ce:07:f2:89:a9:9e:fc:62:b2:d3:90:19:7b:
da:92:00:e1:1f:fa:54:14:13:7b:65:a7:84:9f:3c:44:c5:72:
1c:84:2e:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:33 2025 by rpki-client