Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/xEmTqvVRX0GCvwdEp3Z2FFo6Uxc.roa
File: xEmTqvVRX0GCvwdEp3Z2FFo6Uxc.roa (raw, json)
Hash identifier: mcxGR/8o/WNM3QQyDLfqyvBCMZ41TMm0DS/3hN+iT/U=
Subject key identifier: C4:49:93:AA:F5:51:5F:41:82:BF:07:44:A7:76:76:14:5A:3A:53:17
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01856F5DBD422BD52618A86A74F8F6BA81C9
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/xEmTqvVRX0GCvwdEp3Z2FFo6Uxc.roa
Signing time: Sun 01 Jan 2023 22:04:52 +0000
ROA not before: Sun 01 Jan 2023 22:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201634
IP address blocks: 87.107.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:bd:42:2b:d5:26:18:a8:6a:74:f8:f6:ba:81:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 22:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c44993aaf5515f4182bf0744a77676145a3a5317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f3:6f:dd:89:e4:5c:14:ef:4e:71:07:e2:88:
5e:97:e6:48:e2:b7:bd:9e:1d:cb:42:4c:05:90:b8:
bf:74:da:48:ec:c8:3a:6b:fa:32:94:89:b9:d6:a9:
b9:81:7b:e3:5b:a8:d0:74:1c:eb:6e:65:d1:2c:19:
d1:bb:de:3a:3f:66:9b:44:be:15:88:88:57:f2:e9:
3a:a8:01:fd:ab:c2:30:94:53:47:d7:ba:99:6e:fa:
7d:ff:28:50:d8:f7:40:73:19:ab:38:76:57:ca:91:
74:70:ab:e7:78:d9:f3:d5:cb:e7:cc:b6:9a:47:e1:
bc:c0:c9:ae:7c:4d:75:e9:d4:09:ed:50:35:fe:c8:
ea:5a:47:74:f0:9c:4d:fa:82:26:56:97:5f:00:e3:
1b:85:e5:60:a8:d6:62:d0:2f:8f:9e:42:45:21:92:
ac:6a:ba:53:f5:fe:23:b4:cf:29:7d:c1:ab:ff:81:
6f:49:57:86:73:18:0b:a9:14:da:7f:1f:40:24:3e:
3d:df:8a:73:5c:ab:e5:21:23:98:8f:af:4b:e4:ae:
07:33:f4:29:fd:33:23:b4:10:d2:0d:eb:54:13:1f:
ab:70:00:8b:1f:77:c0:3a:f3:18:4f:88:f2:20:dd:
d4:10:64:c1:b7:70:be:97:84:69:d2:90:b6:38:6d:
5a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:49:93:AA:F5:51:5F:41:82:BF:07:44:A7:76:76:14:5A:3A:53:17
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/xEmTqvVRX0GCvwdEp3Z2FFo6Uxc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.190.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:39:ba:2c:cc:b2:70:6f:de:6d:f3:94:01:11:b4:7b:47:84:
7a:32:46:f5:0e:47:10:bd:f3:93:b3:0f:2e:8e:2d:1b:27:3f:
40:38:e3:51:80:2b:cc:be:78:34:e2:26:8e:84:ca:73:81:b6:
a3:70:b5:66:6f:eb:66:df:c9:2f:67:32:37:49:91:1c:c4:7a:
6a:8a:ee:83:a2:ee:77:38:03:13:95:3c:75:27:66:86:02:2d:
be:b0:9d:cd:79:17:fd:3a:8e:94:21:c4:b0:c5:10:32:d9:bc:
f1:d8:37:06:ca:bf:72:00:93:9b:3c:5b:36:67:65:1a:2f:cb:
24:f3:0e:22:4f:5e:f1:2f:df:6c:ac:a7:14:06:98:79:2e:87:
d0:5b:ca:52:9e:a0:27:4d:c8:f1:d7:b8:54:bd:9d:76:73:1e:
1d:c2:bf:cb:3a:cb:ec:37:73:d6:c1:44:54:d0:ad:ca:5f:67:
58:3b:1e:72:92:00:13:6d:a1:20:db:61:1a:b0:c7:28:ca:a1:
be:84:f8:78:41:9f:39:43:9d:b1:78:50:b8:88:a8:c0:33:68:
aa:03:01:b2:bf:7b:da:93:d3:91:38:43:2e:66:84:98:88:34:
82:06:c5:7d:1b:38:8a:cd:a6:f8:a3:bd:08:98:6a:26:66:72:
3f:1e:b2:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:22 2025 by rpki-client