Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/gWR6Mnt2ZaYO45X31t3lBe1ZcJ4.roa
File: gWR6Mnt2ZaYO45X31t3lBe1ZcJ4.roa (raw, json)
Hash identifier: Hbw2MnRxO8o+i5hfzFTacZGbTzoK3g1HtVdJJEaU1I4=
Subject key identifier: 81:64:7A:32:7B:76:65:A6:0E:E3:95:F7:D6:DD:E5:05:ED:59:70:9E
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 37B5810B
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/gWR6Mnt2ZaYO45X31t3lBe1ZcJ4.roa
Signing time: Sat 01 Jan 2022 08:55:55 +0000
ROA not before: Sat 01 Jan 2022 08:55:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209836
IP address blocks: 87.107.160.0/22 maxlen: 22
87.107.162.0/24 maxlen: 24
87.107.163.0/24 maxlen: 24
87.107.161.0/24 maxlen: 24
87.107.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 934641931 (0x37b5810b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 08:55:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81647a327b7665a60ee395f7d6dde505ed59709e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:11:7c:c6:d7:de:7c:b7:df:8f:b8:5c:f8:18:
b8:1f:a5:35:2a:e6:f7:80:ed:31:9f:3a:19:54:3f:
93:de:9d:26:b7:3c:c5:92:f1:90:c6:c1:94:34:20:
86:cd:7e:94:96:bf:a6:b6:db:06:80:91:d0:19:0c:
9b:57:6d:a7:d9:44:08:00:33:20:a6:2e:22:5c:75:
a8:ae:48:cd:6d:90:89:e3:df:5e:3d:fe:82:d1:7a:
d4:b1:57:51:2f:0c:c4:8c:58:27:49:a1:42:7d:9f:
72:c6:c9:fc:d7:b4:4e:33:1f:c2:45:99:bd:ca:eb:
32:e0:0f:da:26:fa:ef:71:70:fb:56:0e:8a:28:61:
ec:c3:44:89:bf:93:bb:b6:84:1f:5f:c3:85:4e:be:
05:99:f5:0b:bd:86:35:e0:4d:ad:84:a8:c5:de:2f:
5f:e3:94:b7:d3:bb:16:3c:b3:37:7a:2b:4b:34:97:
a8:68:12:3d:5e:f8:61:dd:53:55:fa:74:45:c4:fa:
80:f5:9d:a1:83:55:6b:5a:e4:51:b0:8a:f5:39:92:
0b:ad:80:d0:01:5f:70:92:30:76:05:68:11:b8:6a:
80:de:2b:66:85:b7:d2:0d:1d:b2:ff:6f:fd:ea:3f:
e6:b5:c3:f8:78:c8:ae:e3:ff:0c:3b:d9:e4:88:16:
93:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:64:7A:32:7B:76:65:A6:0E:E3:95:F7:D6:DD:E5:05:ED:59:70:9E
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/gWR6Mnt2ZaYO45X31t3lBe1ZcJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.160.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:e4:9d:a1:5f:bf:2c:f3:11:82:c2:87:3d:12:89:29:93:cd:
70:db:c9:67:b0:a7:f9:78:35:68:35:bb:c1:25:22:2d:67:42:
85:d0:12:68:1b:2c:bb:ba:b4:b7:85:ab:e9:68:a1:07:5d:d4:
6f:03:00:4b:04:d4:d3:2a:d3:dc:eb:01:9c:6e:f7:26:9a:8e:
3d:87:aa:57:25:2c:95:bd:75:b5:dd:d9:39:0d:41:1d:b5:55:
ae:51:17:f9:87:18:34:f5:09:ed:c2:24:54:b5:03:95:14:9d:
7b:5c:a9:ce:98:57:11:5a:72:66:9c:98:a5:28:47:92:a0:c8:
7f:5c:7a:93:82:8e:af:92:46:10:62:0e:88:53:43:b1:c1:98:
15:40:d0:ac:ee:cc:e4:b2:2d:41:41:6d:73:71:3f:10:6a:9a:
a2:69:d9:ef:ca:77:58:37:61:90:0a:6e:e2:f3:b3:4a:ab:3b:
99:0a:53:0f:46:2b:b5:1f:db:a5:de:92:6f:cf:01:4d:c5:fb:
02:ed:9e:7d:8b:43:28:94:c9:49:dc:bb:cd:d7:72:74:c1:06:
3a:8c:b8:48:0a:06:f9:d6:bf:e0:f6:a8:70:30:2b:ef:0b:cb:
2c:1c:87:ea:86:bc:de:78:07:2f:15:18:65:d3:96:92:25:29:
70:b8:ad:03
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEN7WBCzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MDc3NWQ5NDcxYjg1ZDk2M2ZlZjZkMjgzNTkwZTJkOTQyZGQ1YzIxMB4XDTIyMDEw
MTA4NTU1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODE2NDdhMzI3Yjc2
NjVhNjBlZTM5NWY3ZDZkZGU1MDVlZDU5NzA5ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM8RfMbX3ny334+4XPgYuB+lNSrm94DtMZ86GVQ/k96dJrc8
xZLxkMbBlDQghs1+lJa/prbbBoCR0BkMm1dtp9lECAAzIKYuIlx1qK5IzW2QiePf
Xj3+gtF61LFXUS8MxIxYJ0mhQn2fcsbJ/Ne0TjMfwkWZvcrrMuAP2ib673Fw+1YO
iihh7MNEib+Tu7aEH1/DhU6+BZn1C72GNeBNrYSoxd4vX+OUt9O7FjyzN3orSzSX
qGgSPV74Yd1TVfp0RcT6gPWdoYNVa1rkUbCK9TmSC62A0AFfcJIwdgVoEbhqgN4r
ZoW30g0dsv9v/eo/5rXD+HjIruP/DDvZ5IgWk7cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSBZHoye3Zlpg7jlffW3eUF7VlwnjAfBgNVHSMEGDAWgBQAd12Ucbhdlj/v
bSg1kOLZQt1cITAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FIZGRsSEc0WFpZXzcyMG9OWkRpMlVMZFhDRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjYvNjM3NjBjLWUyMWItNGJhZi1hOWE0LTc2YjMzZTRjZTgyMS8x
L2dXUjZNbnQyWmFZTzQ1WDMxdDNsQmUxWmNKNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjYv
NjM3NjBjLWUyMWItNGJhZi1hOWE0LTc2YjMzZTRjZTgyMS8xL0FIZGRsSEc0WFpZ
XzcyMG9OWkRpMlVMZFhDRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAldroDANBgkqhkiG9w0BAQsFAAOC
AQEALOSdoV+/LPMRgsKHPRKJKZPNcNvJZ7Cn+Xg1aDW7wSUiLWdChdASaBssu7q0
t4Wr6WihB13UbwMASwTU0yrT3OsBnG73JpqOPYeqVyUslb11td3ZOQ1BHbVVrlEX
+YcYNPUJ7cIkVLUDlRSde1ypzphXEVpyZpyYpShHkqDIf1x6k4KOr5JGEGIOiFND
scGYFUDQrO7M5LItQUFtc3E/EGqaomnZ78p3WDdhkApu4vOzSqs7mQpTD0YrtR/b
pd6Sb88BTcX7Au2efYtDKJTJSdy7zddydMEGOoy4SAoG+da/4PaocDAr7wvLLByH
6oa83ngHLxUYZdOWkiUpcLitAw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:39 2023 by rpki-client on console-fra.rpki-client.org