Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Cw0YLe9_XiaG-VkyCiizN2BmCkc.roa
File: Cw0YLe9_XiaG-VkyCiizN2BmCkc.roa (raw, json)
Hash identifier: kia/27G0lqAdw++OiisLwa5baUvll7019qK0vlheKqI=
Subject key identifier: 0B:0D:18:2D:EF:7F:5E:26:86:F9:59:32:0A:28:B3:37:60:66:0A:47
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0183FC702773F7CEA82314153A3B2C72ECC5
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Cw0YLe9_XiaG-VkyCiizN2BmCkc.roa
Signing time: Fri 21 Oct 2022 21:25:52 +0000
ROA not before: Fri 21 Oct 2022 21:25:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42337
IP address blocks: 81.12.0.0/21 maxlen: 24
87.107.44.0/22 maxlen: 24
87.107.48.0/23 maxlen: 23
87.107.72.0/21 maxlen: 24
81.12.32.0/21 maxlen: 24
81.12.40.0/21 maxlen: 24
87.107.80.0/21 maxlen: 24
87.107.16.0/21 maxlen: 24
87.107.28.0/22 maxlen: 24
87.107.32.0/23 maxlen: 23
87.107.36.0/22 maxlen: 24
62.220.118.0/23 maxlen: 24
62.220.113.0/24 maxlen: 24
62.220.112.0/21 maxlen: 21
81.12.54.0/23 maxlen: 24
81.12.56.0/23 maxlen: 23
87.107.92.0/22 maxlen: 24
87.107.100.0/22 maxlen: 22
81.12.60.0/22 maxlen: 24
81.12.64.0/18 maxlen: 18
81.12.72.0/21 maxlen: 24
81.12.80.0/20 maxlen: 24
81.12.96.0/19 maxlen: 24
87.107.136.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fc:70:27:73:f7:ce:a8:23:14:15:3a:3b:2c:72:ec:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Oct 21 21:25:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b0d182def7f5e2686f959320a28b33760660a47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:80:6b:8a:3b:b0:75:3e:9c:83:40:f9:f3:a2:
49:bd:f7:07:b4:fb:b9:ca:5e:81:47:f2:10:75:19:
8c:70:86:c6:4f:44:9c:5e:8e:ad:97:f0:7c:7c:2f:
d1:bc:43:9a:8c:d9:0d:df:b9:01:ed:f2:87:4c:0f:
13:a5:d3:ee:41:b4:2b:0a:4c:27:39:2b:cf:8c:3f:
ee:7b:ab:61:e9:65:96:ce:27:b7:1c:d5:ea:5e:9b:
dd:03:73:59:de:88:6e:44:cc:62:e8:d2:e0:cf:ac:
39:1a:27:5a:62:c1:ee:69:0d:61:be:b3:70:5b:a1:
4b:42:84:c4:e3:75:f7:f0:90:ad:9d:a5:65:e2:a7:
89:df:e3:4c:68:0e:b8:9c:d8:3a:57:ff:40:fe:b1:
93:a8:38:76:3b:f7:c5:72:86:71:c8:09:27:0b:e7:
87:0e:7e:15:d7:0c:d0:c1:9f:4c:88:a3:7b:38:cc:
77:3a:8b:1b:a5:15:83:71:45:11:53:87:c9:df:6a:
51:02:66:f7:58:3e:09:de:9d:0e:ec:f8:5b:e1:c7:
18:6d:2e:e8:80:77:6a:02:95:8c:94:b2:c0:41:10:
64:29:a2:ce:de:dc:bb:c0:f6:ef:24:f0:8a:82:35:
9d:83:e1:96:a0:6e:19:e0:18:ce:2e:b7:6d:4b:db:
ef:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:0D:18:2D:EF:7F:5E:26:86:F9:59:32:0A:28:B3:37:60:66:0A:47
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Cw0YLe9_XiaG-VkyCiizN2BmCkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.112.0/21
81.12.0.0/21
81.12.32.0/20
81.12.54.0-81.12.57.255
81.12.60.0-81.12.127.255
87.107.16.0/21
87.107.28.0-87.107.33.255
87.107.36.0/22
87.107.44.0-87.107.49.255
87.107.72.0-87.107.87.255
87.107.92.0/22
87.107.100.0/22
87.107.136.0/21
Signature Algorithm: sha256WithRSAEncryption
2e:7b:56:e4:77:24:67:34:cf:b7:d9:9b:4e:7d:d5:7c:ac:7e:
3b:bc:59:ac:49:d6:d2:09:b2:cd:69:76:7e:44:5c:18:e4:09:
ac:a6:90:e8:ac:b7:de:51:72:1f:01:a4:e0:1d:86:d0:4e:95:
94:3f:06:e0:be:86:f6:f7:55:df:8a:15:82:0d:da:5b:2c:a5:
d7:a2:ba:e4:8f:d1:33:60:f1:7c:f2:3a:b3:b4:9a:bf:b9:6d:
f4:56:ee:b6:3a:10:e2:76:79:f0:6f:e7:5b:ae:c6:1b:d2:f8:
eb:33:c5:78:6c:ec:0c:dc:0b:02:ee:b7:df:96:1a:23:8f:6a:
93:52:5d:dd:e1:10:58:03:88:3c:42:d6:a4:ba:5f:23:6f:5e:
50:23:c0:72:77:b5:07:23:d8:31:19:89:df:00:b0:be:bb:87:
ec:74:a0:77:fb:36:44:06:5f:dc:54:07:2e:ea:4e:03:ed:63:
f6:b3:44:09:17:2f:4f:ff:9c:a5:aa:44:f6:df:31:cc:c4:1a:
cb:7f:53:5a:c1:c7:b4:07:d1:44:11:a8:58:0a:31:73:b3:6b:
70:4e:66:5f:01:65:8a:97:7a:c4:8b:f1:99:e9:3a:0a:33:75:
c6:2e:2f:32:4e:0c:22:e9:54:bc:17:fb:c6:45:a7:81:be:fc:
fe:0f:f2:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:07 2025 by rpki-client