Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/cSDm0b3FYxgHy8GyKtrGAEiWB2E.roa
File: cSDm0b3FYxgHy8GyKtrGAEiWB2E.roa (raw, json)
Hash identifier: 6NvH8KQWqfO4ZeFzC47/N9On3+fOOzADCEA9/iHUZ6k=
Subject key identifier: 71:20:E6:D1:BD:C5:63:18:07:CB:C1:B2:2A:DA:C6:00:48:96:07:61
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 37A9DE88
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/cSDm0b3FYxgHy8GyKtrGAEiWB2E.roa
Signing time: Sat 01 Jan 2022 08:55:49 +0000
ROA not before: Sat 01 Jan 2022 08:55:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59961
IP address blocks: 87.107.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 933879432 (0x37a9de88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 08:55:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7120e6d1bdc5631807cbc1b22adac60048960761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:48:c6:59:5c:b8:51:7b:83:dd:53:ac:f6:61:
94:dd:79:9c:44:83:18:94:2e:9c:a2:59:a1:dc:a0:
76:cf:b9:01:cc:be:a9:29:b3:c2:b3:e4:e0:ff:34:
2b:54:8e:5c:97:87:69:16:b5:42:36:11:4f:ef:cc:
da:2f:c5:8e:54:d2:9d:84:75:84:9a:1c:f6:e8:03:
c6:19:8a:ea:c5:43:a3:15:df:c6:4e:d1:f7:23:68:
a3:a4:6d:c9:e5:c0:16:83:6b:86:6a:0f:ec:b1:02:
f0:e8:61:96:bf:54:09:66:84:79:08:29:13:f6:60:
cb:ba:87:ae:96:41:7c:59:7f:17:a9:02:9b:61:3b:
f4:0d:5f:40:7a:4a:ed:33:9d:6d:dd:be:d6:3c:4b:
64:93:b0:3b:6b:01:23:7f:76:50:78:46:7c:3a:00:
e4:e0:c2:f4:7b:be:7c:13:f9:71:f1:42:81:0e:a5:
1c:07:27:58:cb:73:b6:d1:4e:78:09:3c:30:fc:60:
06:71:bd:7c:92:cf:08:98:7e:84:15:8e:6e:94:33:
bb:dc:5a:fa:6a:08:9a:1d:9e:4a:61:34:d9:24:f1:
8f:74:06:70:cb:db:e2:e9:75:6b:a5:1d:d9:fa:ad:
11:28:e5:79:f7:09:24:ff:69:36:60:36:31:21:bf:
fb:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:20:E6:D1:BD:C5:63:18:07:CB:C1:B2:2A:DA:C6:00:48:96:07:61
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/cSDm0b3FYxgHy8GyKtrGAEiWB2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.50.0/24
Signature Algorithm: sha256WithRSAEncryption
87:b0:e5:3f:79:d4:e0:dd:33:20:57:a8:86:46:08:29:79:01:
47:c5:26:b3:2b:32:29:24:ee:05:4d:f5:ae:64:d0:b9:f0:86:
8c:a3:3e:b1:38:e3:52:03:52:72:24:2e:5c:2a:5c:67:c5:ec:
1d:e9:c7:3d:3e:34:19:75:f0:ee:17:7d:8f:5f:74:69:e4:be:
c8:b7:e4:67:af:bc:ad:ad:42:22:77:e6:d6:6f:8a:a1:31:aa:
7d:b4:67:7f:2e:5b:c8:64:b8:54:14:42:20:6e:0f:6c:89:a5:
a7:01:21:0a:b8:43:0e:48:be:00:ec:7a:ef:60:56:70:c8:2d:
0a:ba:8d:a7:e9:20:3b:bb:21:4c:af:5b:54:82:8c:bb:da:ef:
b5:c0:03:38:ac:50:7a:c3:bd:ff:99:4c:fa:6a:f8:af:1a:ec:
bd:d0:be:94:61:f2:8e:8e:71:31:5c:95:4a:7f:00:22:58:88:
f0:b0:f4:bb:d7:af:62:4d:e5:ff:9a:74:25:3e:35:b5:11:a6:
73:d1:df:87:fb:0f:41:81:b8:22:87:ca:3d:f6:d8:35:a0:80:
19:17:9c:f7:a0:1e:bc:fe:09:e1:aa:30:03:75:54:09:96:b8:
9d:cb:29:c0:0e:c4:45:fa:13:67:89:1f:3b:73:24:7a:23:ca:
d1:ae:1a:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:39 2023 by rpki-client on console-fra.rpki-client.org