Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/qJLur9XoTziqT6Khj7_9abGB7DI.roa
File: qJLur9XoTziqT6Khj7_9abGB7DI.roa (raw, json)
Hash identifier: bboQ3a/QS4reqvtQWm5clQnk5ttNLUxmWhKedUILDGU=
Subject key identifier: A8:92:EE:AF:D5:E8:4F:38:AA:4F:A2:A1:8F:BF:FD:69:B1:81:EC:32
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 37B44884
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/qJLur9XoTziqT6Khj7_9abGB7DI.roa
Signing time: Sat 01 Jan 2022 08:55:55 +0000
ROA not before: Sat 01 Jan 2022 08:55:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209079
IP address blocks: 87.107.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 934561924 (0x37b44884)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 08:55:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a892eeafd5e84f38aa4fa2a18fbffd69b181ec32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a7:2d:e9:c0:c6:a4:4e:5a:b0:a4:f4:1b:98:
6e:c7:9e:89:00:98:a0:fb:13:0c:26:70:40:95:c2:
84:d2:18:58:8c:3a:9d:b9:05:a2:b8:50:4b:cb:91:
f8:e8:91:1d:19:ac:c8:a7:35:e4:f6:90:c2:cd:ed:
f5:63:a0:b8:7f:49:cb:48:ef:8e:20:0f:83:6a:86:
63:58:3b:35:a8:74:8e:e6:0e:4b:8f:7b:52:22:63:
60:82:a2:11:b6:a9:53:e8:4f:6f:f4:13:7e:72:81:
77:81:85:75:3d:00:3d:60:04:72:d8:5a:80:92:98:
62:62:78:ee:ad:b2:c1:d2:08:01:24:d8:8a:21:0f:
28:a7:e9:a3:f1:77:90:cf:c0:29:c3:87:27:68:c2:
79:f9:d7:bd:d1:00:ca:51:bf:a3:05:21:b7:76:d9:
16:8f:3a:f4:b0:1f:8e:70:4c:ba:55:45:8e:65:d5:
69:11:bb:6d:6a:5d:a1:f1:5a:1b:c5:71:02:6b:cd:
70:ce:03:25:3a:02:68:0a:0f:b5:3f:54:48:7b:9f:
8b:07:7e:74:24:54:41:ec:83:eb:66:9e:fd:de:c2:
31:9c:62:35:b2:b8:5a:24:60:44:87:77:20:79:4f:
79:7c:ab:5e:fa:e6:10:85:1f:d0:0a:a3:aa:7e:55:
36:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:92:EE:AF:D5:E8:4F:38:AA:4F:A2:A1:8F:BF:FD:69:B1:81:EC:32
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/qJLur9XoTziqT6Khj7_9abGB7DI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.20.0/22
Signature Algorithm: sha256WithRSAEncryption
53:0a:94:07:25:0b:d4:c1:52:7c:b6:c9:08:44:a7:3f:36:09:
bf:5e:41:23:f8:4c:4b:0b:62:a6:af:be:b3:51:e0:4b:87:b2:
6a:e1:43:82:25:d3:0b:4d:90:68:0a:f2:9c:2a:48:53:24:59:
15:bf:2f:da:f4:32:bc:df:33:bd:e7:0a:f4:28:08:a1:3c:26:
15:14:2d:d2:52:cc:91:7e:54:02:45:dc:56:24:90:68:d1:55:
63:75:30:9c:21:44:f5:c2:06:26:6f:9a:80:ed:9a:36:ee:77:
be:36:10:68:59:d9:68:2e:59:cc:8d:af:1a:ab:e5:e4:b4:c7:
56:0b:f4:63:ce:5f:c4:b7:a7:16:1e:6e:7c:54:5e:6b:17:dd:
c2:04:49:84:41:d9:70:8e:a5:af:60:a9:39:50:7d:62:d7:57:
e1:f6:89:0f:07:4d:26:4a:21:d2:03:3b:d7:77:df:62:19:a3:
a7:26:41:f9:ee:a0:b4:d8:0a:9e:d4:bb:8e:95:8d:4a:e6:9f:
09:21:77:89:7e:2b:80:3f:28:ca:67:15:3d:33:e3:62:3e:16:
39:07:4d:e4:90:eb:c7:ae:a9:6b:db:2f:3b:21:22:c0:fe:9c:
77:d9:a8:97:6d:80:34:1b:0d:fc:fb:34:a7:19:2c:54:a7:6f:
d1:58:83:f4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEN7RIhDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MDc3NWQ5NDcxYjg1ZDk2M2ZlZjZkMjgzNTkwZTJkOTQyZGQ1YzIxMB4XDTIyMDEw
MTA4NTU1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTg5MmVlYWZkNWU4
NGYzOGFhNGZhMmExOGZiZmZkNjliMTgxZWMzMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMunLenAxqROWrCk9BuYbseeiQCYoPsTDCZwQJXChNIYWIw6
nbkForhQS8uR+OiRHRmsyKc15PaQws3t9WOguH9Jy0jvjiAPg2qGY1g7Nah0juYO
S497UiJjYIKiEbapU+hPb/QTfnKBd4GFdT0APWAEcthagJKYYmJ47q2ywdIIASTY
iiEPKKfpo/F3kM/AKcOHJ2jCefnXvdEAylG/owUht3bZFo869LAfjnBMulVFjmXV
aRG7bWpdofFaG8VxAmvNcM4DJToCaAoPtT9USHufiwd+dCRUQeyD62ae/d7CMZxi
NbK4WiRgRId3IHlPeXyrXvrmEIUf0Aqjqn5VNpUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSoku6v1ehPOKpPoqGPv/1psYHsMjAfBgNVHSMEGDAWgBQAd12Ucbhdlj/v
bSg1kOLZQt1cITAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FIZGRsSEc0WFpZXzcyMG9OWkRpMlVMZFhDRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjYvNjM3NjBjLWUyMWItNGJhZi1hOWE0LTc2YjMzZTRjZTgyMS8x
L3FKTHVyOVhvVHppcVQ2S2hqN185YWJHQjdESS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjYv
NjM3NjBjLWUyMWItNGJhZi1hOWE0LTc2YjMzZTRjZTgyMS8xL0FIZGRsSEc0WFpZ
XzcyMG9OWkRpMlVMZFhDRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAldrFDANBgkqhkiG9w0BAQsFAAOC
AQEAUwqUByUL1MFSfLbJCESnPzYJv15BI/hMSwtipq++s1HgS4eyauFDgiXTC02Q
aArynCpIUyRZFb8v2vQyvN8zvecK9CgIoTwmFRQt0lLMkX5UAkXcViSQaNFVY3Uw
nCFE9cIGJm+agO2aNu53vjYQaFnZaC5ZzI2vGqvl5LTHVgv0Y85fxLenFh5ufFRe
axfdwgRJhEHZcI6lr2CpOVB9YtdX4faJDwdNJkoh0gM713ffYhmjpyZB+e6gtNgK
ntS7jpWNSuafCSF3iX4rgD8oymcVPTPjYj4WOQdN5JDrx66pa9svOyEiwP6cd9mo
l22ANBsN/Ps0pxksVKdv0ViD9A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-ams.rpki-client.org