Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Z9vIH7g3uskQVlm59ncNnZJv7Jo.roa
File: Z9vIH7g3uskQVlm59ncNnZJv7Jo.roa (raw, json)
Hash identifier: E+24J42sPISvPwI59SA+KoIdAhaU2SKpv5njoF8UUGE=
Subject key identifier: 67:DB:C8:1F:B8:37:BA:C9:10:56:59:B9:F6:77:0D:9D:92:6F:EC:9A
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0184C91F46A176BC0B0D276C3B23E1E392BF
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Z9vIH7g3uskQVlm59ncNnZJv7Jo.roa
Signing time: Wed 30 Nov 2022 15:19:40 +0000
ROA not before: Wed 30 Nov 2022 15:19:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208161
IP address blocks: 87.107.146.0/23 maxlen: 24
87.107.154.0/23 maxlen: 24
87.107.164.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c9:1f:46:a1:76:bc:0b:0d:27:6c:3b:23:e1:e3:92:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Nov 30 15:19:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67dbc81fb837bac9105659b9f6770d9d926fec9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:59:ee:37:cb:37:20:c7:5a:4e:00:f6:34:73:
9a:a1:9b:31:30:ce:e8:61:11:98:da:44:8d:d4:bb:
3d:f1:cd:8a:9e:e9:3e:db:25:16:b0:1d:25:26:c9:
92:a5:82:51:d7:da:cd:0a:b8:c4:ae:85:aa:ba:72:
17:08:54:c6:fb:b4:dd:31:22:2c:26:98:e5:eb:b9:
5f:c6:89:dd:f7:95:1b:04:23:90:9d:32:b2:f7:93:
b7:52:dd:49:53:98:23:8f:b9:e9:b3:23:fe:66:c6:
56:0e:79:eb:89:6d:c9:96:84:cf:42:f5:85:39:74:
ff:22:f2:ee:11:60:34:8e:27:a4:5e:36:76:55:55:
8c:e8:74:b9:7a:14:76:33:8a:fd:a2:1d:c0:96:80:
31:a7:18:d4:0e:f6:85:89:08:cc:16:86:40:f6:15:
88:01:d1:8c:77:f2:bd:bf:d9:01:1c:d7:b6:13:30:
1c:04:af:cb:be:23:93:80:de:d3:16:0d:08:1a:a4:
ff:38:ff:a1:9a:d9:1e:53:cf:f4:54:12:36:40:f8:
eb:b1:4a:59:b8:67:5d:f2:04:7b:2e:2c:9f:77:96:
a8:d6:34:2e:90:94:4c:16:0e:5d:c2:2f:13:3c:1a:
fa:57:06:4d:6f:93:58:43:1b:0a:55:b0:ad:f6:2e:
d4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:DB:C8:1F:B8:37:BA:C9:10:56:59:B9:F6:77:0D:9D:92:6F:EC:9A
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Z9vIH7g3uskQVlm59ncNnZJv7Jo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.146.0/23
87.107.154.0/23
87.107.164.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:25:36:ff:3d:e6:ed:79:ee:e8:db:64:a0:af:98:14:55:61:
96:b0:66:0e:44:7a:90:77:84:5e:ee:06:d8:6a:bb:c6:26:07:
b0:93:8b:50:25:3f:e4:21:a5:42:f3:ea:5a:2b:84:03:c2:1c:
ec:02:6e:be:d7:94:63:8b:d9:8a:b3:7d:78:ad:2a:b5:40:f8:
ae:c2:60:6a:52:21:01:1b:62:6f:b4:63:4c:1c:66:8d:fa:2f:
6b:ce:4b:88:10:d0:7f:e7:57:56:4f:e7:ed:bf:e4:d1:66:cd:
36:3d:26:6a:5f:5f:3a:4c:5f:58:d0:33:49:6f:62:d8:80:17:
be:eb:a5:e9:b9:0f:94:32:3e:77:33:cb:e7:66:49:bc:50:d5:
e2:36:1a:5e:6d:f5:82:59:fe:ed:ee:93:6d:c6:3a:7e:8f:78:
20:0e:36:c4:cb:b2:9b:ac:b2:9a:5c:98:03:17:29:68:16:28:
f6:95:1b:7d:15:57:7d:97:06:78:96:fe:60:69:13:79:e2:27:
5c:a1:7a:70:84:9c:2c:5e:19:3a:10:13:d6:2b:22:93:87:ae:
61:54:25:be:50:8f:cd:a2:29:c5:65:47:72:3f:de:c2:5c:83:
27:bd:18:15:35:d6:ca:0c:7c:b5:02:ff:62:91:0d:07:9b:76:
94:b1:ae:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:39 2023 by rpki-client on console-fra.rpki-client.org