Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/vjT-VGZMcYojctPbhvXy4fKZGH8.roa
File: vjT-VGZMcYojctPbhvXy4fKZGH8.roa (raw, json)
Hash identifier: K0RSf8Ow00nsGH86xx29dNCItraGXoQs8qvKSjWNBrg=
Subject key identifier: BE:34:FE:54:66:4C:71:8A:23:72:D3:DB:86:F5:F2:E1:F2:99:18:7F
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0183C721FB6F1B99DAD037573DB3004EAAAE
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/vjT-VGZMcYojctPbhvXy4fKZGH8.roa
Signing time: Tue 11 Oct 2022 13:00:36 +0000
ROA not before: Tue 11 Oct 2022 13:00:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21341
IP address blocks: 87.107.42.0/23 maxlen: 23
87.107.41.0/24 maxlen: 24
87.107.40.0/24 maxlen: 24
87.107.50.0/23 maxlen: 23
87.107.51.0/24 maxlen: 24
87.107.50.0/24 maxlen: 24
87.107.52.0/22 maxlen: 22
87.107.52.0/23 maxlen: 23
87.107.68.0/22 maxlen: 22
87.107.88.0/22 maxlen: 22
87.107.24.0/22 maxlen: 22
87.107.34.0/23 maxlen: 23
62.220.120.0/22 maxlen: 22
62.220.124.0/22 maxlen: 22
185.60.136.0/24 maxlen: 24
185.60.139.0/24 maxlen: 24
185.60.138.0/24 maxlen: 24
185.60.137.0/24 maxlen: 24
87.107.173.0/24 maxlen: 24
87.107.96.0/22 maxlen: 22
87.107.116.0/23 maxlen: 23
87.107.122.0/24 maxlen: 24
87.107.120.0/21 maxlen: 21
87.107.132.0/22 maxlen: 22
87.107.128.0/22 maxlen: 22
62.220.96.0/21 maxlen: 21
62.220.104.0/21 maxlen: 21
81.12.8.0/22 maxlen: 22
81.12.12.0/22 maxlen: 22
81.12.16.0/21 maxlen: 21
81.12.24.0/22 maxlen: 22
81.12.48.0/22 maxlen: 22
81.12.58.0/24 maxlen: 24
81.12.52.0/23 maxlen: 23
81.12.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c7:21:fb:6f:1b:99:da:d0:37:57:3d:b3:00:4e:aa:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Oct 11 13:00:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be34fe54664c718a2372d3db86f5f2e1f299187f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cd:4a:e9:15:9d:35:11:fe:36:81:b5:04:e9:
f1:d5:e1:0e:fa:ca:e1:ae:e6:0e:3a:58:fa:9e:fc:
8d:d1:c5:f9:80:40:05:62:f9:b3:f1:45:3a:19:8b:
fb:42:8a:bf:12:72:64:75:a1:f5:78:7e:0c:e5:17:
1c:b8:2e:55:5b:9b:c3:a4:04:05:0e:cb:fa:d9:f6:
78:ca:58:87:63:a1:31:83:14:38:e1:86:d2:58:e6:
a0:bf:33:e1:99:fb:01:42:2e:e6:2c:55:15:f2:f3:
29:87:8a:a7:64:07:c4:11:09:e1:da:53:9b:e6:fb:
be:8f:da:8e:3e:30:91:8e:c7:7b:aa:d0:e6:2d:ea:
4e:13:d3:c8:7c:1b:43:65:25:19:dc:5b:8c:af:ca:
d4:96:bf:4b:3b:e5:b0:4e:4e:03:9c:d7:6d:c5:5d:
d2:1d:7e:65:49:6d:8a:e2:8f:c4:c7:3f:1a:7e:69:
46:4e:2f:d8:eb:58:df:27:1d:c4:8d:cc:2a:17:0f:
51:4e:27:2a:fb:ba:ff:e6:1f:27:e9:9d:87:b8:e7:
29:36:11:ac:70:fe:94:b6:41:5a:b3:82:af:7a:35:
1d:73:59:bd:92:6b:42:2c:aa:3b:14:00:e5:59:06:
7d:8f:de:96:10:0b:a3:25:40:a5:87:af:82:ab:72:
eb:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:34:FE:54:66:4C:71:8A:23:72:D3:DB:86:F5:F2:E1:F2:99:18:7F
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/vjT-VGZMcYojctPbhvXy4fKZGH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.96.0/20
62.220.120.0/21
81.12.8.0-81.12.27.255
81.12.48.0-81.12.53.255
81.12.58.0/23
87.107.24.0/22
87.107.34.0/23
87.107.40.0/22
87.107.50.0-87.107.55.255
87.107.68.0/22
87.107.88.0/22
87.107.96.0/22
87.107.116.0/23
87.107.120.0-87.107.135.255
87.107.173.0/24
185.60.136.0/22
Signature Algorithm: sha256WithRSAEncryption
98:6a:3c:d9:10:1a:f4:3a:74:db:19:99:15:db:19:d1:b7:f9:
a0:64:d6:eb:18:9b:df:8b:f6:55:2e:bf:a8:fd:9c:30:92:4e:
ad:7a:21:60:80:41:8a:02:63:68:2b:54:1a:76:d5:ff:48:eb:
4b:d3:ec:b2:85:2e:9a:e7:64:77:57:31:1e:94:ef:9c:21:37:
97:5f:88:e7:02:70:75:a4:c4:b0:58:06:44:0c:b6:c9:05:fa:
ff:30:62:23:5b:cd:f4:c1:e7:b1:c1:06:6c:60:f9:a0:d6:00:
6f:e5:68:f2:08:8e:3f:fa:c5:92:57:36:16:f2:8d:12:a7:08:
4c:c1:91:64:ee:3f:36:f7:6c:30:fd:02:73:d2:6b:3f:64:ee:
e9:4e:1b:4a:1b:70:19:bf:58:7c:50:1a:ed:08:e0:c4:4f:da:
d4:7d:ee:27:f4:9f:7e:61:b6:bc:24:ef:1b:1f:fd:91:2e:c0:
1b:21:bc:54:34:b5:00:74:17:83:47:bc:de:44:5f:cf:7b:92:
f3:fe:73:f3:7f:58:e5:2d:b1:f8:53:5d:c9:49:24:36:f3:92:
bf:94:6a:fd:7d:17:df:f3:10:f0:a7:fd:d4:7b:36:ac:7c:25:
5b:dd:ad:65:be:59:60:57:51:b3:1d:76:b7:14:bf:ed:86:f0:
f5:5a:d6:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:59 2024 by rpki-client on console-ams.rpki-client.org