Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/fztfm0a6p1gCQbTLkh7fE1ABqik.roa
File: fztfm0a6p1gCQbTLkh7fE1ABqik.roa (raw, json)
Hash identifier: ZmuF60eiADEsL2RkhgnvTYS7p+QIS1tuskzcoXxbVtU=
Subject key identifier: 7F:3B:5F:9B:46:BA:A7:58:02:41:B4:CB:92:1E:DF:13:50:01:AA:29
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0183FB294E5E94E514273C87A8D0800FF888
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/fztfm0a6p1gCQbTLkh7fE1ABqik.roa
Signing time: Fri 21 Oct 2022 15:28:51 +0000
ROA not before: Fri 21 Oct 2022 15:28:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42337
IP address blocks: 87.107.44.0/22 maxlen: 24
87.107.48.0/23 maxlen: 23
87.107.72.0/21 maxlen: 24
87.107.80.0/21 maxlen: 24
87.107.16.0/21 maxlen: 21
87.107.18.0/24 maxlen: 24
87.107.20.0/22 maxlen: 22
87.107.30.0/24 maxlen: 24
87.107.28.0/22 maxlen: 22
87.107.37.0/24 maxlen: 24
87.107.32.0/23 maxlen: 23
87.107.36.0/24 maxlen: 24
87.107.36.0/22 maxlen: 22
62.220.118.0/23 maxlen: 24
62.220.113.0/24 maxlen: 24
62.220.112.0/21 maxlen: 21
87.107.92.0/22 maxlen: 24
87.107.100.0/22 maxlen: 22
87.107.136.0/21 maxlen: 24
81.12.0.0/21 maxlen: 24
81.12.32.0/21 maxlen: 21
81.12.37.0/24 maxlen: 24
81.12.40.0/21 maxlen: 21
81.12.44.0/24 maxlen: 24
81.12.39.0/24 maxlen: 24
81.12.40.0/24 maxlen: 24
81.12.46.0/24 maxlen: 24
81.12.47.0/24 maxlen: 24
81.12.45.0/24 maxlen: 24
81.12.54.0/23 maxlen: 24
81.12.56.0/23 maxlen: 23
81.12.60.0/22 maxlen: 24
81.12.64.0/18 maxlen: 18
81.12.72.0/21 maxlen: 24
81.12.80.0/20 maxlen: 24
81.12.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fb:29:4e:5e:94:e5:14:27:3c:87:a8:d0:80:0f:f8:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Oct 21 15:28:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f3b5f9b46baa7580241b4cb921edf135001aa29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ae:0a:8f:48:4a:c8:be:10:2d:0d:f6:12:01:
0a:9a:2c:d0:7b:10:af:b6:b3:c3:85:f4:2c:7e:21:
66:13:87:b3:82:cd:15:94:1e:b9:2f:69:63:15:bb:
c9:72:42:72:f5:ae:bf:35:cf:ea:d9:30:52:60:f6:
b5:73:fc:6b:02:5e:c9:2f:91:ee:c5:27:69:f1:cc:
ad:29:9f:a2:b9:39:42:48:39:6d:fe:12:d3:1d:ae:
4f:55:14:91:4c:67:fe:90:46:8d:e2:97:08:26:36:
c5:66:f2:f2:57:07:d7:7a:b0:25:72:88:cf:0d:65:
bf:3d:2b:7f:0f:94:7a:a5:a1:c1:72:8f:a2:94:74:
2c:0c:ae:de:06:2a:30:c7:fa:53:3a:26:62:c0:6c:
39:bb:8b:3c:7f:10:ad:4f:62:b9:a5:fd:9c:fd:5b:
59:57:5a:f6:2c:ea:d9:27:1b:d3:a7:6a:5a:70:d5:
70:6c:89:83:6e:6d:b7:8d:42:13:eb:1c:f5:2e:13:
c5:2e:86:f1:dd:75:60:fe:63:b2:77:35:3f:06:e1:
01:d0:73:27:e6:1c:da:61:a5:48:4a:f3:74:62:df:
79:f6:38:dc:1f:47:13:a6:f5:8f:16:16:3a:f8:7d:
e4:6f:72:4c:2f:71:42:c4:9c:bc:25:37:40:b8:6a:
fa:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:3B:5F:9B:46:BA:A7:58:02:41:B4:CB:92:1E:DF:13:50:01:AA:29
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/fztfm0a6p1gCQbTLkh7fE1ABqik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.112.0/21
81.12.0.0/21
81.12.32.0/20
81.12.54.0-81.12.57.255
81.12.60.0-81.12.127.255
87.107.16.0/21
87.107.28.0-87.107.33.255
87.107.36.0/22
87.107.44.0-87.107.49.255
87.107.72.0-87.107.87.255
87.107.92.0/22
87.107.100.0/22
87.107.136.0/21
Signature Algorithm: sha256WithRSAEncryption
3d:e6:a8:e2:8d:25:40:12:af:f0:c5:bc:77:5a:b6:7c:61:1a:
d6:05:59:0a:5b:d2:91:14:55:32:a6:a2:00:12:ee:70:c2:d8:
b3:2d:d7:e7:44:98:f8:67:06:ba:9d:6f:82:26:9f:a8:86:2a:
9c:5f:1d:15:b8:23:7a:f9:f4:3c:ae:ee:5d:0d:ca:3c:72:40:
74:d6:4b:ee:ae:2c:9d:e4:1b:08:68:fc:1d:19:37:f5:1f:2a:
2d:61:58:05:8e:41:90:e8:52:2b:90:0c:0e:7b:0d:d4:9e:6a:
a2:14:9f:fd:89:fd:9a:1b:f2:7e:9e:7a:03:3d:be:4f:12:82:
fa:ec:15:94:f4:ce:33:78:b6:6f:60:f0:43:b6:6a:28:db:95:
54:05:1e:7d:7d:1b:6d:eb:7f:c3:06:38:47:0c:54:0e:f5:e3:
62:ce:66:49:e1:b0:c1:aa:97:9f:3a:ff:66:03:2c:c4:85:3d:
3d:c7:ad:bd:b0:05:4f:35:f4:a3:7a:0b:fc:99:e2:80:ab:33:
c6:e7:b1:90:f8:4c:a0:b8:49:c3:f9:4a:b4:48:36:c2:5a:18:
bc:24:45:2f:1d:e7:ca:a8:05:53:78:13:39:b0:f9:fd:57:49:
e0:47:e5:45:54:b8:21:90:75:5c:ec:57:e0:3c:c1:01:c8:cd:
d7:c4:72:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-ams.rpki-client.org