Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/VRQCUs3PiIVZ4PTsVlvdmc5SnIY.roa
File: VRQCUs3PiIVZ4PTsVlvdmc5SnIY.roa (raw, json)
Hash identifier: LOZui5DapPutYZNEQOtS2zLC9xU0Q+nj5q+hBCugL6Y=
Subject key identifier: 55:14:02:52:CD:CF:88:85:59:E0:F4:EC:56:5B:DD:99:CE:52:9C:86
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0183F9B40D65FD7980FEFF119F082FB80D84
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/VRQCUs3PiIVZ4PTsVlvdmc5SnIY.roa
Signing time: Fri 21 Oct 2022 08:41:10 +0000
ROA not before: Fri 21 Oct 2022 08:41:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200370
IP address blocks: 87.107.0.0/21 maxlen: 24
87.107.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f9:b4:0d:65:fd:79:80:fe:ff:11:9f:08:2f:b8:0d:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Oct 21 08:41:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55140252cdcf888559e0f4ec565bdd99ce529c86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:10:0d:92:27:e2:eb:ef:ec:5c:2f:0a:c9:0e:
e5:4e:2e:fb:18:78:c3:d8:ab:7f:b3:d7:60:d5:be:
63:f9:cc:ca:32:ff:db:db:3c:d0:f7:b7:1b:50:16:
3f:b7:e7:62:6b:79:c9:d7:84:2d:16:8b:c9:76:b0:
e3:c2:b8:be:80:09:db:0f:9f:1b:58:df:53:9e:39:
42:f8:f3:3d:2f:7f:d9:cd:3d:4b:21:6c:96:85:c2:
0b:ff:39:e1:64:61:7b:86:66:74:f7:4f:20:90:ee:
9a:35:4f:7e:f1:ec:37:bd:0c:5c:28:96:b5:7d:84:
30:c9:fd:5c:ad:c4:44:a2:99:8f:d5:40:0b:42:5f:
46:c5:bd:61:96:44:9d:2e:ed:4e:a2:93:30:32:6b:
8a:0b:db:9f:b9:91:d2:19:5e:23:32:a7:05:27:eb:
16:9e:96:99:f1:8b:5c:9f:09:48:9e:7b:35:d0:3f:
75:c3:a2:ae:48:21:6f:9b:d0:85:16:da:24:c8:60:
ff:65:7d:62:ec:30:45:45:80:c6:85:65:fa:77:a8:
9c:28:38:7b:3b:a6:54:a4:d3:c3:f7:05:b4:a5:56:
dc:3a:60:6c:75:5f:0d:ac:46:90:5b:57:5a:8e:9c:
e6:01:e2:0f:1e:90:37:d3:99:dd:a7:de:f6:f4:18:
4b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:14:02:52:CD:CF:88:85:59:E0:F4:EC:56:5B:DD:99:CE:52:9C:86
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/VRQCUs3PiIVZ4PTsVlvdmc5SnIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.0.0/21
87.107.131.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:62:61:de:90:99:28:30:f4:7c:a7:1f:59:62:5c:51:a1:26:
e7:22:f7:9e:1f:69:85:6a:ab:18:1d:14:86:69:5e:35:3e:98:
f9:12:e6:ae:e4:ec:58:f2:a6:7d:13:f4:dd:38:d7:fe:e3:25:
40:42:76:4c:72:19:a0:aa:12:55:0a:69:49:a6:0a:03:c4:af:
4e:d0:ed:ef:16:61:47:f9:8b:7e:c1:55:53:d8:65:6c:65:df:
ce:bb:63:58:41:17:af:9a:16:db:76:b5:16:ca:c3:e9:b5:84:
f7:3d:d1:50:5e:48:75:fb:b8:23:06:90:b4:e4:98:f4:c5:b5:
b6:06:2f:03:04:84:d9:a4:5b:77:a6:81:5e:59:00:e4:05:b6:
d2:2c:55:35:48:18:b0:ee:a9:6f:58:a2:78:28:f1:50:4f:02:
0e:83:8f:90:4a:2d:01:56:5e:13:eb:e0:01:c8:36:d9:e7:08:
16:9d:c2:cf:46:27:71:1b:c7:ec:a7:9a:ea:da:fc:d0:2a:77:
7a:31:7f:1b:8e:b5:ac:b0:ff:0c:54:f8:24:df:ca:f0:7e:dc:
23:a3:8f:b1:ef:7c:52:3e:0d:09:a5:39:e5:68:ed:04:82:9e:
bb:a1:dd:a4:4b:8e:51:bc:e7:0e:83:42:68:b0:6a:c7:cb:61:
da:a8:22:22
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYP5tA1l/XmA/v8RnwgvuA2EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjIxMDIxMDg0MTEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NTE0MDI1MmNkY2Y4ODg1NTllMGY0ZWM1NjViZGQ5OWNlNTI5Yzg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjRANkifi6+/sXC8KyQ7lTi77GHjD
2Kt/s9dg1b5j+czKMv/b2zzQ97cbUBY/t+dia3nJ14QtFovJdrDjwri+gAnbD58b
WN9TnjlC+PM9L3/ZzT1LIWyWhcIL/znhZGF7hmZ0908gkO6aNU9+8ew3vQxcKJa1
fYQwyf1crcREopmP1UALQl9Gxb1hlkSdLu1OopMwMmuKC9ufuZHSGV4jMqcFJ+sW
npaZ8YtcnwlInns10D91w6KuSCFvm9CFFtokyGD/ZX1i7DBFRYDGhWX6d6icKDh7
O6ZUpNPD9wW0pVbcOmBsdV8NrEaQW1dajpzmAeIPHpA305ndp9729BhLMwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFUUAlLNz4iFWeD07FZb3ZnOUpyGMB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvVlJRQ1VzM1BpSVZaNFBUc1ZsdmRtYzVTbklZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDV2sAAwQA
V2uDMA0GCSqGSIb3DQEBCwUAA4IBAQCeYmHekJkoMPR8px9ZYlxRoSbnIveeH2mF
aqsYHRSGaV41Ppj5Euau5OxY8qZ9E/TdONf+4yVAQnZMchmgqhJVCmlJpgoDxK9O
0O3vFmFH+Yt+wVVT2GVsZd/Ou2NYQRevmhbbdrUWysPptYT3PdFQXkh1+7gjBpC0
5Jj0xbW2Bi8DBITZpFt3poFeWQDkBbbSLFU1SBiw7qlvWKJ4KPFQTwIOg4+QSi0B
Vl4T6+AByDbZ5wgWncLPRidxG8fsp5rq2vzQKnd6MX8bjrWssP8MVPgk38rwftwj
o4+x73xSPg0JpTnlaO0Egp67od2kS45RvOcOg0JosGrHy2HaqCIi
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:33:53 2025 by rpki-client