Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/yn37I8x1Zi_2mM14lwvZ4ppping.roa
File: yn37I8x1Zi_2mM14lwvZ4ppping.roa (raw, json)
Hash identifier: rMSM/L/efb5jghxVixLOlbuWMAA2YzmNigEwY6qSxnY=
Subject key identifier: CA:7D:FB:23:CC:75:66:2F:F6:98:CD:78:97:0B:D9:E2:9A:69:8A:78
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01849E1AEEBB7389EF9F17CDBC3A8CC15CDD
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/yn37I8x1Zi_2mM14lwvZ4ppping.roa
Signing time: Tue 22 Nov 2022 06:51:15 +0000
ROA not before: Tue 22 Nov 2022 06:51:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16322
IP address blocks: 87.107.134.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9e:1a:ee:bb:73:89:ef:9f:17:cd:bc:3a:8c:c1:5c:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Nov 22 06:51:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca7dfb23cc75662ff698cd78970bd9e29a698a78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:df:8d:05:70:9e:7c:d1:75:1d:7d:ba:c5:ae:
d5:58:7c:8b:75:62:b1:60:1f:74:42:dc:37:ac:77:
d7:5c:f0:0f:6b:61:f2:b7:98:10:a2:3c:61:fb:61:
f1:7c:da:f6:48:61:93:e3:f2:7c:77:32:b7:a6:95:
51:7d:9d:81:2b:25:53:b4:68:55:71:56:64:91:15:
4f:ae:7f:a4:0b:2d:f4:64:b1:f3:45:42:dd:f5:66:
89:0a:12:5a:22:27:93:cf:43:0d:fe:fd:a1:0e:eb:
2d:f6:c2:1e:df:ca:0e:5f:8a:f0:f7:ad:2d:c2:16:
fe:98:c0:3a:85:43:e5:da:a5:35:ae:35:64:1f:d4:
eb:d9:3d:d2:a4:df:80:dd:b9:35:31:7d:d9:f6:bd:
2b:22:f8:5b:cc:ff:ce:d4:8a:ea:c8:05:86:9c:3c:
55:e3:e2:76:c7:70:a1:6a:ea:1c:14:95:39:26:89:
a5:cc:3d:43:40:11:30:7b:3b:a4:67:01:43:a0:9d:
8a:d0:f8:87:b4:6f:b2:96:89:de:c2:c9:e3:4f:3b:
3f:e0:e1:ff:d6:d8:33:11:72:cb:3d:4c:70:9a:10:
e0:c0:8f:71:87:4c:5a:3d:fd:a5:82:b4:28:1a:34:
0f:e4:c0:b1:85:c9:4b:03:41:a6:33:7b:a7:95:84:
7f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:7D:FB:23:CC:75:66:2F:F6:98:CD:78:97:0B:D9:E2:9A:69:8A:78
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/yn37I8x1Zi_2mM14lwvZ4ppping.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.134.0/23
Signature Algorithm: sha256WithRSAEncryption
97:9f:b8:8a:4d:3c:a3:e0:a4:d5:4f:9d:61:23:c2:42:ce:82:
3f:ee:27:58:3a:c2:58:fd:e2:d8:52:fd:15:33:00:61:c9:da:
e0:c2:5b:c2:1c:8c:74:38:e9:3a:b9:cc:8c:15:ac:28:96:3e:
01:d8:c2:12:4d:67:f4:e4:6b:08:ed:f2:2b:a0:3c:f7:c6:4f:
33:d8:ab:74:30:87:d4:1a:f1:6a:f3:fc:9e:b6:2f:ac:6a:f6:
53:89:23:b0:e5:7c:a6:cd:cc:0a:57:41:86:8b:28:04:22:2c:
d7:af:60:f3:da:6e:de:6a:f3:22:81:8e:65:3d:33:a5:7f:04:
b6:d5:29:89:9b:cf:62:7e:e5:94:a7:98:ee:54:46:52:b4:92:
4a:c1:cc:bd:04:56:10:5c:94:d9:c6:0b:d3:b0:e3:b5:78:ac:
79:0a:84:2d:31:eb:6e:39:e1:77:2c:52:f8:03:03:ec:32:c2:
d3:45:72:90:cc:e3:83:c8:8a:45:64:b0:05:90:61:ce:4b:b8:
ab:ad:8d:7b:88:21:aa:31:c6:c0:78:1f:f7:ce:d7:e2:20:0c:
eb:fb:48:4d:b3:97:c8:2a:45:9c:de:2a:e2:3a:d7:5e:2f:ee:
81:3d:dc:77:b5:26:27:e2:13:cf:2b:b9:90:cc:df:5c:37:b1:
71:13:ef:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:59 2024 by rpki-client on console-ams.rpki-client.org