Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/tp9b3DIe-5dsLgib_o0BYzLQeYI.roa
File: tp9b3DIe-5dsLgib_o0BYzLQeYI.roa (raw, json)
Hash identifier: xahIel7Y9gHzrzwt5gh4F3rNJPlBqHR7sDIWudj0Wfk=
Subject key identifier: B6:9F:5B:DC:32:1E:FB:97:6C:2E:08:9B:FE:8D:01:63:32:D0:79:82
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 379F12C6
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/tp9b3DIe-5dsLgib_o0BYzLQeYI.roa
Signing time: Sat 01 Jan 2022 08:55:45 +0000
ROA not before: Sat 01 Jan 2022 08:55:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43395
IP address blocks: 81.12.120.0/24 maxlen: 24
87.107.85.0/24 maxlen: 24
81.12.90.0/23 maxlen: 23
87.107.31.0/24 maxlen: 24
87.107.142.0/23 maxlen: 23
87.107.32.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 933171910 (0x379f12c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 08:55:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b69f5bdc321efb976c2e089bfe8d016332d07982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:98:1f:6b:c6:91:8d:6a:ce:4c:87:04:ae:7f:
53:57:ec:61:00:e8:b7:47:fb:07:31:c1:e7:8d:b7:
b6:11:c6:42:f2:33:8c:85:b3:e8:71:d2:0e:30:a2:
24:2e:ae:c5:7e:d9:64:9e:e6:a4:8f:4f:88:68:fa:
71:64:f3:c3:78:a1:1c:b0:7d:54:14:c2:1a:02:8f:
5d:16:86:d1:37:ee:4a:1e:ab:f1:95:67:e0:bc:22:
ed:7a:ec:32:c8:3e:3b:0e:dd:3e:1b:41:c7:c0:30:
6c:c5:f8:7f:c7:82:6e:89:2c:91:33:bb:9d:87:41:
51:16:2d:f2:16:4a:92:59:e5:f3:0a:b4:3b:1c:aa:
c0:da:23:0c:50:89:e5:fe:b7:16:27:37:67:e4:be:
8b:a7:b6:65:8d:d9:50:c6:bb:0b:58:81:e6:4c:77:
43:c1:fd:b9:d0:1a:e7:2f:af:18:14:7f:64:37:40:
99:b5:63:fe:0f:61:bd:b0:b2:e0:ce:51:5f:ce:70:
25:8c:53:e8:d8:0d:69:09:54:c9:62:33:53:40:5d:
92:58:c4:b2:d9:64:b8:8a:05:bb:00:26:94:1c:b6:
85:86:04:6d:1d:d6:bc:40:fc:bf:b2:ea:cd:74:8c:
7f:7e:54:a3:32:26:a4:a6:68:73:4c:f3:c2:d1:25:
80:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:9F:5B:DC:32:1E:FB:97:6C:2E:08:9B:FE:8D:01:63:32:D0:79:82
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/tp9b3DIe-5dsLgib_o0BYzLQeYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.12.90.0/23
81.12.120.0/24
87.107.31.0-87.107.33.255
87.107.85.0/24
87.107.142.0/23
Signature Algorithm: sha256WithRSAEncryption
a7:e7:68:f2:76:97:81:38:c6:03:d1:47:ae:0c:44:21:8e:0f:
b6:cc:40:30:61:d7:28:11:9a:e3:f7:19:f9:11:ff:2c:f6:a6:
4d:be:e8:a9:7c:58:fa:8d:b9:d4:28:e7:83:53:27:ff:cd:38:
a6:00:60:f1:4a:d3:a8:3e:1f:d6:12:ae:49:5d:52:4f:41:cf:
99:8f:b8:c2:df:41:fa:fc:14:3c:31:65:ad:a1:74:e4:46:84:
97:09:df:33:39:c5:61:2a:d5:31:93:2f:34:18:fc:4a:1c:94:
2b:86:7f:df:70:5c:7c:8c:73:af:fb:d0:0e:e8:2c:5f:12:12:
c6:5c:98:e5:d3:5c:cd:21:61:25:69:8d:cf:b1:b2:78:12:ca:
a1:0e:58:30:eb:55:07:ee:dc:77:a5:66:ee:d5:3f:14:d6:2f:
1f:52:22:d7:1f:ff:0d:ed:52:03:fe:7f:bd:f4:d7:c9:d2:51:
6f:18:99:73:38:59:d9:1c:ce:14:43:fc:13:33:6c:5d:eb:57:
89:27:5a:0d:6a:09:cc:50:8d:6b:69:a5:11:14:6b:1f:d1:4c:
84:cb:e1:f6:76:9f:46:88:f5:de:c4:83:b0:c0:15:3a:39:23:
b4:ff:a9:01:8c:cf:90:c7:7a:60:c1:fb:7d:8c:d4:06:54:d0:
3a:e0:f0:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-ams.rpki-client.org