Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/ndl1vokQrMuy01X4U-8_YVX7m7s.roa
File: ndl1vokQrMuy01X4U-8_YVX7m7s.roa (raw, json)
Hash identifier: e9ih4tabhypplt/ScRKI2of60kdliP2Pc3uB04S2DMs=
Subject key identifier: 9D:D9:75:BE:89:10:AC:CB:B2:D3:55:F8:53:EF:3F:61:55:FB:9B:BB
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 018824C78C3E2528E1B7958FF56FC5129FE5
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/ndl1vokQrMuy01X4U-8_YVX7m7s.roa
Signing time: Tue 16 May 2023 13:37:17 +0000
ROA not before: Tue 16 May 2023 13:37:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21341
IP address blocks: 87.107.42.0/23 maxlen: 23
87.107.41.0/24 maxlen: 24
87.107.40.0/24 maxlen: 24
87.107.51.0/24 maxlen: 24
87.107.50.0/24 maxlen: 24
87.107.50.0/23 maxlen: 24
87.107.52.0/23 maxlen: 23
87.107.68.0/22 maxlen: 24
87.107.88.0/22 maxlen: 22
87.107.24.0/22 maxlen: 22
87.107.34.0/23 maxlen: 23
62.220.120.0/22 maxlen: 22
62.220.124.0/23 maxlen: 23
87.107.168.0/22 maxlen: 24
87.107.173.0/24 maxlen: 24
185.60.136.0/24 maxlen: 24
185.60.139.0/24 maxlen: 24
185.60.138.0/24 maxlen: 24
185.60.137.0/24 maxlen: 24
87.107.96.0/22 maxlen: 24
87.107.112.0/22 maxlen: 24
87.107.116.0/23 maxlen: 23
87.107.120.0/21 maxlen: 24
87.107.122.0/24 maxlen: 24
87.107.128.0/22 maxlen: 22
87.107.132.0/22 maxlen: 22
62.220.96.0/21 maxlen: 24
62.220.104.0/21 maxlen: 24
81.12.8.0/22 maxlen: 22
81.12.12.0/22 maxlen: 22
81.12.16.0/21 maxlen: 21
81.12.24.0/22 maxlen: 22
81.12.48.0/22 maxlen: 22
81.12.58.0/24 maxlen: 24
81.12.52.0/23 maxlen: 23
81.12.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:24:c7:8c:3e:25:28:e1:b7:95:8f:f5:6f:c5:12:9f:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: May 16 13:37:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9dd975be8910accbb2d355f853ef3f6155fb9bbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5a:ce:73:5e:7b:e1:96:e6:5e:48:e0:0d:70:
88:ab:ea:ae:88:57:a1:e4:cb:f6:68:3a:87:e9:c3:
ef:03:a6:ce:bb:3f:c8:15:50:bf:b5:a2:29:b5:91:
f2:37:5f:f2:72:03:71:60:88:8a:79:48:92:b0:8b:
39:db:7d:53:f9:ea:4d:c4:f2:0e:a3:ca:99:46:7c:
ff:88:6a:01:68:92:38:3f:d6:79:95:e3:c3:58:5a:
31:62:a9:f6:9e:cd:35:d2:9b:68:31:a2:cd:38:be:
01:3d:d0:3e:d8:88:36:b9:ce:06:77:b7:64:6f:52:
14:12:8a:50:37:d5:fb:a0:07:86:b2:94:12:54:b0:
09:c9:08:e4:b3:0c:23:28:34:96:c2:9e:68:91:bc:
a7:41:0a:39:52:47:de:9e:c7:74:c6:94:24:24:0f:
22:5e:fc:0f:c8:97:1b:c6:13:6a:03:e3:18:73:1d:
64:35:8e:b7:11:13:f7:a4:8c:8f:0a:c3:f6:c8:2d:
ac:3a:59:0f:4f:d4:24:ef:19:48:db:a3:13:39:19:
ee:06:e4:7f:3c:87:d3:51:9f:f2:95:36:c5:db:80:
7d:5f:89:c3:99:7a:5f:71:94:c1:f7:99:09:7d:12:
0a:6c:4d:8d:f4:fb:83:ba:38:8f:78:6c:dc:12:15:
d4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:D9:75:BE:89:10:AC:CB:B2:D3:55:F8:53:EF:3F:61:55:FB:9B:BB
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/ndl1vokQrMuy01X4U-8_YVX7m7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.96.0/20
62.220.120.0-62.220.125.255
81.12.8.0-81.12.27.255
81.12.48.0-81.12.53.255
81.12.58.0/23
87.107.24.0/22
87.107.34.0/23
87.107.40.0/22
87.107.50.0-87.107.53.255
87.107.68.0/22
87.107.88.0/22
87.107.96.0/22
87.107.112.0-87.107.117.255
87.107.120.0-87.107.135.255
87.107.168.0/22
87.107.173.0/24
185.60.136.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:9c:0f:24:bc:e9:a4:94:0e:6f:02:30:ae:bf:99:23:60:5e:
7f:af:34:41:23:06:f4:f4:03:c5:1f:1a:89:c4:35:33:03:24:
6b:8d:54:6f:f6:e0:87:83:9d:7a:b8:54:2f:e9:08:de:35:c3:
62:fe:31:b6:d4:18:b1:a2:74:03:3c:70:a1:28:1f:6f:ad:e1:
a7:66:f0:88:93:41:c9:8c:c3:7d:04:ba:42:bb:95:69:1c:50:
14:83:e3:3a:48:f4:37:af:15:f1:e4:24:04:45:df:c0:29:66:
20:12:b5:2c:5e:36:ef:00:e1:82:48:82:6e:7c:60:57:fb:b8:
c6:fb:30:91:b4:4b:80:f9:b0:a1:a7:ba:c7:77:4a:ce:13:8d:
44:1c:2c:30:ba:33:e6:e2:3d:57:bd:bf:c3:99:dc:65:84:20:
1f:a8:ff:47:9c:f5:47:7a:42:87:e3:92:17:0d:0f:ef:ec:ea:
25:9b:9d:08:f8:91:5f:a4:63:4b:6c:01:d4:1e:1e:b1:49:a9:
b8:ec:f9:31:af:00:8e:8a:e4:29:c0:53:ea:fb:5e:79:d2:a3:
21:4f:31:97:0d:3f:aa:46:bb:22:07:74:4e:2c:10:29:13:11:
88:e1:b2:e4:8e:ed:6b:71:91:4c:ce:c6:93:ef:d7:74:db:6e:
5c:14:2a:c7
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgISAYgkx4w+JSjht5WP9W/FEp/lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjMwNTE2MTMzNzE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZGQ5NzViZTg5MTBhY2NiYjJkMzU1Zjg1M2VmM2Y2MTU1ZmI5YmJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAylrOc1574ZbmXkjgDXCIq+quiFeh
5Mv2aDqH6cPvA6bOuz/IFVC/taIptZHyN1/ycgNxYIiKeUiSsIs5231T+epNxPIO
o8qZRnz/iGoBaJI4P9Z5lePDWFoxYqn2ns010ptoMaLNOL4BPdA+2Ig2uc4Gd7dk
b1IUEopQN9X7oAeGspQSVLAJyQjkswwjKDSWwp5okbynQQo5Ukfensd0xpQkJA8i
XvwPyJcbxhNqA+MYcx1kNY63ERP3pIyPCsP2yC2sOlkPT9Qk7xlI26MTORnuBuR/
PIfTUZ/ylTbF24B9X4nDmXpfcZTB95kJfRIKbE2N9PuDujiPeGzcEhXU8QIDAQAB
o4ICnjCCApowHQYDVR0OBBYEFJ3Zdb6JEKzLstNV+FPvP2FV+5u7MB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvbmRsMXZva1FyTXV5MDFYNFUtOF9ZVlg3bTdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGzBggrBgEFBQcBBwEB/wSBozCBoDCBnQQCAAEwgZYDBAQ+
3GAwDAMEAz7ceAMEAT7cfDAMAwQDUQwIAwQCUQwYMAwDBARRDDADBAFRDDQDBAFR
DDoDBAJXaxgDBAFXayIDBAJXaygwDAMEAVdrMgMEAVdrNAMEAldrRAMEAldrWAME
AldrYDAMAwQEV2twAwQBV2t0MAwDBANXa3gDBANXa4ADBAJXa6gDBABXa60DBAK5
PIgwDQYJKoZIhvcNAQELBQADggEBALqcDyS86aSUDm8CMK6/mSNgXn+vNEEjBvT0
A8UfGonENTMDJGuNVG/24IeDnXq4VC/pCN41w2L+MbbUGLGidAM8cKEoH2+t4adm
8IiTQcmMw30EukK7lWkcUBSD4zpI9DevFfHkJARF38ApZiAStSxeNu8A4YJIgm58
YFf7uMb7MJG0S4D5sKGnusd3Ss4TjUQcLDC6M+biPVe9v8OZ3GWEIB+o/0ec9Ud6
QofjkhcND+/s6iWbnQj4kV+kY0tsAdQeHrFJqbjs+TGvAI6K5CnAU+r7XnnSoyFP
MZcNP6pGuyIHdE4sECkTEYjhsuSO7WtxkUzOxpPv13TbblwUKsc=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:31 2025 by rpki-client