Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/q6DW9m0TakBCi1RtUrlAeH3c9zw.roa
File: q6DW9m0TakBCi1RtUrlAeH3c9zw.roa (raw, json)
Hash identifier: OsZL1F55mK214NvD9MdHuydb6f/ySMhBkNSjDxSavpQ=
Subject key identifier: AB:A0:D6:F6:6D:13:6A:40:42:8B:54:6D:52:B9:40:78:7D:DC:F7:3C
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 37B6866A
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/q6DW9m0TakBCi1RtUrlAeH3c9zw.roa
Signing time: Sat 01 Jan 2022 08:55:56 +0000
ROA not before: Sat 01 Jan 2022 08:55:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211990
IP address blocks: 87.107.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 934708842 (0x37b6866a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 08:55:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aba0d6f66d136a40428b546d52b940787ddcf73c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:73:1f:d8:b1:01:97:03:76:90:b8:f4:bb:26:
16:a7:db:21:d0:f0:96:cd:8c:d6:7d:f8:4a:c4:63:
da:1c:88:4e:2d:1b:00:36:0b:35:b2:58:0d:f4:8d:
45:fa:7f:0d:e5:e2:36:d4:ab:2d:b3:3f:4c:31:7a:
20:d7:57:65:33:2d:42:0a:ff:82:45:1b:c1:5f:89:
1a:85:b1:3e:0f:a4:f2:25:cd:5e:94:d6:8f:48:57:
77:85:ce:df:0d:32:0a:66:fa:ba:a1:a8:e1:52:3d:
2e:ac:fb:90:c7:f0:b8:5b:3e:58:99:1f:50:43:84:
bc:35:f0:ec:e4:50:35:9b:84:6b:49:99:b9:01:da:
4e:22:27:51:1e:22:c0:72:f6:65:ac:8a:83:54:06:
a8:3c:45:d5:7e:1d:d6:b2:ab:43:29:c0:e8:ab:91:
51:8e:cf:28:04:94:b1:54:05:2c:3f:a0:4d:17:4e:
d2:2a:04:8e:d5:6c:a7:e2:2d:3d:14:78:3d:61:9e:
3f:d4:ba:fc:fc:0c:34:0e:e9:c3:4c:70:dd:5f:6a:
bf:77:47:30:bf:b5:52:8a:77:cb:e4:d3:9b:db:c0:
58:59:f0:95:3f:6a:3a:0b:f2:30:e7:9a:42:d5:49:
ee:6a:df:da:2f:81:89:02:cb:af:ec:fe:6e:61:0c:
5c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A0:D6:F6:6D:13:6A:40:42:8B:54:6D:52:B9:40:78:7D:DC:F7:3C
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/q6DW9m0TakBCi1RtUrlAeH3c9zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.145.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:1d:1e:57:58:8d:52:49:76:88:91:76:71:19:a5:d5:01:75:
30:b9:22:f3:e8:ff:2b:18:29:27:3f:4b:8a:5e:c6:58:0c:98:
a4:10:1e:96:02:af:57:e8:ae:cc:17:de:05:4e:33:82:c4:1d:
a2:dd:bb:e1:5d:1c:be:c3:3a:4e:06:00:d3:b7:66:01:3e:c2:
82:27:fa:be:24:55:05:6a:05:40:e1:9f:17:fd:89:20:49:2a:
13:6a:c3:41:a3:9f:6a:c8:c0:24:de:c9:4f:91:f6:d6:e1:ef:
ee:ef:4c:79:c5:2e:38:d4:c9:53:bf:05:30:d1:93:32:21:2f:
2f:72:a7:65:c4:d0:4f:b3:f9:0d:fb:4d:52:95:20:37:fd:52:
d0:d0:91:91:31:93:19:10:8b:bb:68:a8:3b:ca:5d:a7:37:d1:
80:76:e8:d5:3f:55:76:04:6a:42:39:e3:67:5a:35:93:4a:e8:
d4:a5:42:e2:f3:03:1e:a0:a8:42:2f:37:46:38:17:51:cd:63:
fa:f1:49:cc:f2:e9:38:2b:b4:90:ba:66:9b:bb:7c:e1:33:e9:
ef:20:d9:ad:9d:1a:0c:7f:38:47:d2:9c:09:4c:33:59:a0:6d:
34:b3:e0:5a:fe:4d:69:e7:3d:fe:18:f3:9f:1a:49:0b:d7:c6:
38:91:2f:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:39 2023 by rpki-client on console-fra.rpki-client.org