Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/quN7AEWEVoXWmAQRwUKQDRkN_os.roa
File: quN7AEWEVoXWmAQRwUKQDRkN_os.roa (raw, json)
Hash identifier: Yc7oRehNAaE/R5ARBJ4F4B5z5dCwseHt1PS3YTycJKg=
Subject key identifier: AA:E3:7B:00:45:84:56:85:D6:98:04:11:C1:42:90:0D:19:0D:FE:8B
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0187D6B160F8F6840548B080479C95618FC1
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/quN7AEWEVoXWmAQRwUKQDRkN_os.roa
Signing time: Mon 01 May 2023 09:42:41 +0000
ROA not before: Mon 01 May 2023 09:42:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42337
IP address blocks: 87.107.44.0/22 maxlen: 24
87.107.48.0/23 maxlen: 23
87.107.72.0/21 maxlen: 24
87.107.80.0/21 maxlen: 24
87.107.16.0/21 maxlen: 24
87.107.28.0/22 maxlen: 24
87.107.32.0/23 maxlen: 23
87.107.36.0/22 maxlen: 24
87.107.148.0/22 maxlen: 24
62.220.118.0/23 maxlen: 24
62.220.113.0/24 maxlen: 24
62.220.112.0/21 maxlen: 21
87.107.92.0/22 maxlen: 24
87.107.104.0/22 maxlen: 24
87.107.100.0/22 maxlen: 22
87.107.136.0/21 maxlen: 24
81.12.0.0/21 maxlen: 24
81.12.32.0/21 maxlen: 24
81.12.40.0/21 maxlen: 24
81.12.54.0/23 maxlen: 24
81.12.56.0/23 maxlen: 23
81.12.60.0/22 maxlen: 24
81.12.72.0/21 maxlen: 24
81.12.80.0/20 maxlen: 24
81.12.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d6:b1:60:f8:f6:84:05:48:b0:80:47:9c:95:61:8f:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: May 1 09:42:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aae37b0045845685d6980411c142900d190dfe8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:c8:9e:25:37:0f:d6:03:92:7a:89:f6:b3:bc:
1a:17:77:27:a4:8a:c1:bc:58:4c:4c:20:51:bd:05:
ad:cf:41:ce:4f:7f:e4:fa:cc:d2:dd:ec:21:04:26:
67:7c:d4:a2:0d:81:c7:cf:10:0b:6d:bb:53:85:ff:
03:e4:a5:ad:86:1d:80:95:c3:e4:23:53:d6:ea:8a:
1b:fd:32:05:8e:34:5c:fd:c8:81:35:40:c6:05:9c:
83:39:a5:8f:54:dc:49:40:de:4f:9b:19:ee:f6:3f:
37:f4:40:3b:ca:a3:ac:aa:b7:ce:23:c1:9f:78:da:
dc:e4:52:32:4e:0e:15:9c:12:a4:36:82:d7:26:4f:
28:e1:d2:f5:d6:f4:fe:69:0f:b5:b6:92:ec:cd:7f:
e1:8d:cd:ac:73:4c:7c:3f:16:70:8b:29:de:29:9d:
c2:95:ed:55:43:d8:b1:9f:18:46:94:98:ca:4f:5c:
95:b1:39:6a:ee:f8:f5:ba:19:c8:35:b2:ca:25:8e:
1d:f4:91:69:91:d7:f9:00:00:4c:16:0f:33:c5:b5:
f5:7a:fa:b8:91:9d:ae:0d:d5:47:a1:33:f5:82:84:
06:c6:3b:ed:8e:d1:d8:d5:2a:17:d0:ae:11:6d:ef:
41:2f:d5:29:14:ae:ea:7a:d2:c0:2f:e3:d2:e2:21:
ce:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E3:7B:00:45:84:56:85:D6:98:04:11:C1:42:90:0D:19:0D:FE:8B
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/quN7AEWEVoXWmAQRwUKQDRkN_os.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.112.0/21
81.12.0.0/21
81.12.32.0/20
81.12.54.0-81.12.57.255
81.12.60.0/22
81.12.72.0-81.12.127.255
87.107.16.0/21
87.107.28.0-87.107.33.255
87.107.36.0/22
87.107.44.0-87.107.49.255
87.107.72.0-87.107.87.255
87.107.92.0/22
87.107.100.0-87.107.107.255
87.107.136.0/21
87.107.148.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:10:76:03:ee:a6:15:8a:eb:74:49:75:d0:91:33:aa:aa:c3:
ad:3c:5c:35:c2:d7:02:8f:96:44:41:0a:cb:2f:43:b3:90:d9:
42:71:d8:e1:52:17:8a:09:05:54:d5:d0:ed:61:8a:ee:8e:d2:
29:1c:3d:a8:1b:9e:d7:1b:ab:2f:d3:05:db:08:ab:bd:e4:f5:
e7:f8:a3:1a:da:60:6b:0d:6f:8e:87:98:cd:40:1e:53:86:07:
5b:67:3f:9c:69:73:83:5e:24:45:4e:fa:5e:69:48:4c:c3:c8:
a5:2f:59:56:42:cc:59:25:09:bf:7e:79:dc:af:ae:cd:47:a7:
24:72:86:ba:df:88:39:b8:1a:52:11:05:0d:1e:3a:a6:b7:18:
f6:90:3c:57:01:1f:10:94:eb:6f:38:6c:23:18:12:52:7d:ce:
6c:47:79:9f:cc:52:e6:1f:f5:0e:a0:d6:ee:82:bf:f3:74:71:
55:5b:16:60:8f:d9:66:d6:79:ea:d6:0c:96:cc:a2:81:3a:23:
2e:07:f7:51:c3:3d:de:c3:25:d2:3a:cf:7c:6b:39:78:75:3b:
07:17:d9:3e:5c:04:2f:2c:aa:0e:1a:e8:03:0e:2f:43:ab:ce:
99:eb:91:9a:de:ea:af:ef:f6:25:e0:84:1d:23:76:11:89:03:
b0:1c:b4:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:19:22 2025 by rpki-client