Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/S7GIQ-PHkbsFjSsYSN6V7AjJ5gI.roa
File: S7GIQ-PHkbsFjSsYSN6V7AjJ5gI.roa (raw, json)
Hash identifier: nwE+NJl7NoQFblMrSBwaq/FuXweQFg9pscs1d+5BjcI=
Subject key identifier: 4B:B1:88:43:E3:C7:91:BB:05:8D:2B:18:48:DE:95:EC:08:C9:E6:02
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 018651F05F92CCBE4815A84C64982F999A89
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/S7GIQ-PHkbsFjSsYSN6V7AjJ5gI.roa
Signing time: Tue 14 Feb 2023 21:59:12 +0000
ROA not before: Tue 14 Feb 2023 21:59:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21341
IP address blocks: 87.107.42.0/23 maxlen: 23
87.107.41.0/24 maxlen: 24
87.107.40.0/24 maxlen: 24
87.107.51.0/24 maxlen: 24
87.107.50.0/24 maxlen: 24
87.107.50.0/23 maxlen: 24
87.107.52.0/23 maxlen: 23
87.107.68.0/22 maxlen: 22
87.107.88.0/22 maxlen: 22
87.107.24.0/22 maxlen: 22
87.107.34.0/23 maxlen: 23
62.220.120.0/22 maxlen: 22
62.220.124.0/22 maxlen: 22
87.107.168.0/22 maxlen: 24
87.107.173.0/24 maxlen: 24
185.60.136.0/24 maxlen: 24
185.60.139.0/24 maxlen: 24
185.60.138.0/24 maxlen: 24
185.60.137.0/24 maxlen: 24
87.107.96.0/22 maxlen: 22
87.107.112.0/22 maxlen: 24
87.107.116.0/23 maxlen: 23
87.107.120.0/21 maxlen: 21
87.107.122.0/24 maxlen: 24
87.107.128.0/22 maxlen: 22
87.107.132.0/22 maxlen: 22
62.220.96.0/21 maxlen: 21
62.220.104.0/21 maxlen: 21
81.12.8.0/22 maxlen: 22
81.12.12.0/22 maxlen: 22
81.12.16.0/21 maxlen: 21
81.12.24.0/22 maxlen: 22
81.12.48.0/22 maxlen: 22
81.12.58.0/24 maxlen: 24
81.12.52.0/23 maxlen: 23
81.12.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:51:f0:5f:92:cc:be:48:15:a8:4c:64:98:2f:99:9a:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Feb 14 21:59:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4bb18843e3c791bb058d2b1848de95ec08c9e602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:3c:a5:d2:0d:ba:30:a8:05:be:1d:bd:50:cc:
73:be:ec:a7:9c:e8:62:95:2a:ad:eb:6a:d0:8f:e4:
d1:c5:68:56:ea:03:05:a0:fd:a7:ab:61:8e:1e:5b:
36:53:8b:e6:94:ae:2d:32:40:ce:de:4d:28:f6:c8:
dc:31:c8:5c:19:18:02:e8:24:1e:e6:37:05:1b:8f:
a4:e9:21:61:4e:12:71:cf:02:27:af:fe:60:bb:d4:
0f:72:ab:88:ae:98:61:a7:aa:5d:14:22:49:cf:1c:
8e:35:4c:5c:a8:15:58:98:bb:98:7b:08:4c:c2:0d:
da:a6:89:73:2b:37:38:dd:17:4a:d9:8d:57:d0:e8:
9c:9b:a1:13:48:4c:e4:a2:dc:7c:a4:f1:3a:76:24:
c1:0c:ac:4d:61:ff:29:1c:e5:5d:ed:fc:f3:77:0a:
91:ad:e3:aa:d9:0c:b7:7a:b4:b9:c1:d5:96:5c:69:
bf:28:c5:ae:7e:05:38:bc:5d:70:c6:21:b4:62:c8:
51:7d:45:9b:28:16:38:63:5f:76:93:07:f2:05:c2:
c3:b5:f9:a6:3a:0d:ba:09:d8:ff:40:6c:ca:ad:93:
d1:b1:e1:0f:4d:72:0e:d7:bb:8c:66:f5:95:25:f7:
14:1f:bf:96:34:5a:a8:24:8c:fb:bc:7b:f7:ec:31:
64:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B1:88:43:E3:C7:91:BB:05:8D:2B:18:48:DE:95:EC:08:C9:E6:02
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/S7GIQ-PHkbsFjSsYSN6V7AjJ5gI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.96.0/20
62.220.120.0/21
81.12.8.0-81.12.27.255
81.12.48.0-81.12.53.255
81.12.58.0/23
87.107.24.0/22
87.107.34.0/23
87.107.40.0/22
87.107.50.0-87.107.53.255
87.107.68.0/22
87.107.88.0/22
87.107.96.0/22
87.107.112.0-87.107.117.255
87.107.120.0-87.107.135.255
87.107.168.0/22
87.107.173.0/24
185.60.136.0/22
Signature Algorithm: sha256WithRSAEncryption
27:aa:a2:d7:81:ce:4a:4b:04:40:5e:c0:7b:fd:67:1e:80:b2:
ab:e3:bd:b8:a8:ba:d9:70:e0:eb:ed:55:69:e9:9a:aa:cc:82:
45:64:46:bf:df:98:d8:ca:2b:cf:29:f6:77:a9:ac:0c:5c:5c:
dd:d3:b3:3d:d8:2f:fd:37:59:8f:75:f7:d4:b9:55:9a:14:26:
bb:b2:a9:42:fc:ee:e6:9d:70:52:02:de:92:77:4a:2f:ed:06:
6b:1d:39:f2:74:7d:1e:ba:68:6f:22:74:b6:c0:b4:a3:d4:10:
8b:bb:30:6a:81:33:17:07:e4:19:b8:52:8d:ef:f7:3d:a9:06:
94:22:e2:16:d0:8e:8d:f7:e3:d2:c6:00:e6:30:8f:84:fb:33:
7c:4d:b9:68:e7:ac:43:19:90:33:c4:95:34:61:3a:b3:b3:7d:
62:3f:23:04:fa:b2:21:49:4d:75:57:9c:57:7e:d9:c5:a9:24:
50:b9:bc:0a:5c:a9:05:49:23:36:a1:9f:98:b8:fc:a7:81:41:
57:01:6c:bd:b5:7b:ad:29:42:c4:d0:0e:9a:ce:0a:d9:cf:8b:
70:54:71:33:2e:18:9d:ab:69:62:e9:2f:32:c0:e2:80:25:dd:
f3:17:59:72:2a:a5:c1:0f:f3:a9:83:3e:bf:3e:27:45:54:82:
e6:66:2a:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:36 2025 by rpki-client