Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Da6VyCQR2JNxHVISnqu7ub3SNac.roa
File: Da6VyCQR2JNxHVISnqu7ub3SNac.roa (raw, json)
Hash identifier: QF+bkf9s+76esjxwZNDR0BVj5sYIRFN8KIAO7t+fPvo=
Subject key identifier: 0D:AE:95:C8:24:11:D8:93:71:1D:52:12:9E:AB:BB:B9:BD:D2:35:A7
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 37A051E7
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Da6VyCQR2JNxHVISnqu7ub3SNac.roa
Signing time: Sat 01 Jan 2022 08:55:45 +0000
ROA not before: Sat 01 Jan 2022 08:55:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43415
IP address blocks: 87.107.80.0/22 maxlen: 22
87.107.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 933253607 (0x37a051e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 08:55:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0dae95c82411d893711d52129eabbbb9bdd235a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:7b:e1:46:46:f3:a6:b8:27:a6:fe:69:e7:6c:
f0:44:ad:41:c4:24:46:3e:ea:18:7b:a2:20:29:12:
eb:76:84:a7:7a:77:da:9a:8f:7c:48:3f:64:34:e9:
9e:ae:8d:e8:a9:0a:7f:a0:eb:63:78:7b:92:99:94:
06:86:0e:12:08:8e:26:6d:8e:b3:81:5b:c0:d1:fa:
d6:cf:29:8f:83:48:6d:f4:88:5f:17:93:ab:4a:5a:
a6:fd:d2:d8:18:bd:7f:df:d2:14:7e:d3:d2:0d:35:
db:30:c6:87:ec:1b:cf:a3:1a:94:72:86:73:91:9b:
a5:1e:d9:dc:b4:c0:64:60:51:49:a4:5e:01:be:bb:
8c:cf:30:4a:ee:c0:7d:b8:b8:bb:ae:db:bd:7b:67:
d7:ce:d6:e7:17:61:39:5b:e4:b9:6f:1b:6a:2f:e4:
87:3e:fb:6f:72:05:26:57:28:c4:dd:e9:b9:06:82:
a2:e1:03:96:7d:7a:fb:69:10:f2:33:7d:fe:62:d0:
09:1d:f2:2d:6c:c7:eb:18:f2:fb:35:5b:fd:6f:4b:
18:be:8f:bc:d5:ff:9f:6f:3e:25:0d:92:d1:01:41:
64:46:f4:1e:07:12:a5:ce:29:f3:80:fb:21:78:a6:
86:7c:ab:34:4a:66:84:d0:60:b2:cf:a2:93:aa:00:
9d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:AE:95:C8:24:11:D8:93:71:1D:52:12:9E:AB:BB:B9:BD:D2:35:A7
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Da6VyCQR2JNxHVISnqu7ub3SNac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.80.0/22
87.107.93.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:4f:0f:a6:5a:a4:b3:11:00:53:9d:ec:3a:f5:ec:cb:cc:fa:
e9:5c:a0:66:f5:56:b5:43:c0:e9:c2:28:ef:f2:41:ba:14:c3:
3d:f9:e4:81:c5:9e:f6:4b:1d:3f:c2:f2:97:5a:bb:18:7e:ad:
0f:e5:f7:55:e7:a9:e2:4b:14:fd:28:b2:fb:95:87:4c:b3:6c:
aa:2c:bc:92:84:8d:72:7f:5b:87:41:4d:57:1d:71:f3:3a:22:
78:f3:de:d5:e7:44:7d:6a:12:44:2f:ac:ab:9a:45:c4:96:82:
c1:02:d9:36:56:50:b2:71:b7:8a:25:99:c9:d8:dd:44:10:82:
05:a0:cb:cf:04:d7:47:b7:f7:c4:a1:89:9e:c6:da:2f:62:f4:
41:ad:10:0d:c7:7e:58:d0:84:00:e2:c2:52:4f:92:61:46:ec:
01:a6:c5:d6:ec:96:07:de:59:03:8c:97:02:42:6b:5c:6b:5a:
1c:5d:64:9a:b7:b2:c2:39:be:b2:04:42:d3:6e:0f:c2:bd:b8:
5b:ad:26:6f:d7:7d:d0:a1:91:4a:28:54:d6:4a:8d:42:02:68:
b0:37:b0:bf:2f:32:8a:ea:96:26:da:d0:d0:1e:2e:31:71:d3:
08:6c:18:b5:6c:34:1e:ff:df:6c:ec:1e:ef:3c:75:82:d3:1b:
ba:1d:78:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:56 2024 by rpki-client on console-fra.rpki-client.org