Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/OGUXwwB994BaU_X4G88bC10iSm4.roa
File: OGUXwwB994BaU_X4G88bC10iSm4.roa (raw, json)
Hash identifier: zxjq8TjJZol4zUNdDhIDlVpZdyzV0W29y8LPAwBjDlo=
Subject key identifier: 38:65:17:C3:00:7D:F7:80:5A:53:F5:F8:1B:CF:1B:0B:5D:22:4A:6E
Certificate issuer: /CN=e2110acce33ac85011ca8c22d2001666e45b9377
Certificate serial: 01856B37D6CB53B660448BC875821EA08AC5
Authority key identifier: E2:11:0A:CC:E3:3A:C8:50:11:CA:8C:22:D2:00:16:66:E4:5B:93:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4hEKzOM6yFARyowi0gAWZuRbk3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/OGUXwwB994BaU_X4G88bC10iSm4.roa
Signing time: Sun 01 Jan 2023 02:44:59 +0000
ROA not before: Sun 01 Jan 2023 02:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34762
IP address blocks: 188.211.170.0/23 maxlen: 24
87.238.160.0/21 maxlen: 24
89.36.74.0/23 maxlen: 24
188.93.152.0/21 maxlen: 24
77.73.96.0/21 maxlen: 24
5.134.0.0/21 maxlen: 24
194.150.225.0/24 maxlen: 24
194.150.224.0/23 maxlen: 23
194.150.224.0/24 maxlen: 24
188.208.36.0/23 maxlen: 24
178.208.32.0/19 maxlen: 24
79.174.128.0/21 maxlen: 24
217.19.224.0/20 maxlen: 24
217.19.228.0/22 maxlen: 24
217.19.232.0/23 maxlen: 24
217.19.234.0/23 maxlen: 24
195.13.56.0/23 maxlen: 24
195.13.56.0/24 maxlen: 24
37.72.160.0/21 maxlen: 24
176.62.160.0/20 maxlen: 24
31.193.176.0/21 maxlen: 24
83.217.80.0/20 maxlen: 24
89.42.54.0/23 maxlen: 24
185.86.16.0/22 maxlen: 24
188.93.96.0/21 maxlen: 24
194.26.24.0/24 maxlen: 24
77.241.80.0/20 maxlen: 24
77.241.83.0/24 maxlen: 24
77.241.87.0/24 maxlen: 24
77.241.95.0/24 maxlen: 24
185.2.52.0/22 maxlen: 24
77.241.93.0/24 maxlen: 24
195.234.184.0/24 maxlen: 24
93.115.168.0/23 maxlen: 23
185.18.8.0/22 maxlen: 24
94.176.98.0/23 maxlen: 24
89.44.166.0/23 maxlen: 24
217.21.176.0/20 maxlen: 24
217.21.176.0/21 maxlen: 24
217.21.179.0/24 maxlen: 24
217.21.184.0/22 maxlen: 24
217.21.188.0/22 maxlen: 24
83.217.64.0/19 maxlen: 24
83.217.64.0/20 maxlen: 20
193.111.95.0/24 maxlen: 24
62.182.56.0/21 maxlen: 21
88.151.240.0/21 maxlen: 24
194.165.51.0/24 maxlen: 24
193.239.210.0/23 maxlen: 24
195.47.215.0/24 maxlen: 24
31.14.50.0/23 maxlen: 24
185.162.28.0/22 maxlen: 24
37.148.176.0/21 maxlen: 24
185.111.196.0/22 maxlen: 24
2a07:ca80::/29 maxlen: 64
2a00:1c98::/32 maxlen: 64
2a02:d08::/32 maxlen: 64
2a00:7000::/32 maxlen: 64
2a03:a800::/32 maxlen: 32
2a00:1c98:fff0::/44 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:37:d6:cb:53:b6:60:44:8b:c8:75:82:1e:a0:8a:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2110acce33ac85011ca8c22d2001666e45b9377
Validity
Not Before: Jan 1 02:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=386517c3007df7805a53f5f81bcf1b0b5d224a6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:dd:3f:fa:f2:26:6f:d2:c3:9b:a5:94:57:74:
16:16:84:71:c1:d0:a3:18:82:74:89:cc:7b:e5:30:
6f:f9:da:50:3f:72:2f:d4:d8:09:d3:52:3a:63:ce:
26:e3:46:61:87:dd:4f:ce:51:ee:f3:27:50:63:23:
b6:3d:9e:fa:a5:e6:01:72:c7:0a:2c:95:5c:84:85:
09:8c:a3:3a:c9:e6:df:bb:94:d0:10:83:ed:ea:54:
fb:ce:40:49:ce:bb:da:49:0e:11:df:38:bf:22:2b:
10:c5:ec:34:65:a5:d7:55:7d:57:60:36:1b:8b:ba:
b1:b6:01:52:c4:b5:95:a2:58:24:d5:73:e4:be:1a:
f2:d9:19:5b:97:f9:02:2f:63:23:7b:45:35:9b:6d:
30:7b:f3:f2:38:bb:39:62:3b:d9:6c:76:6a:b5:d2:
ef:db:97:cc:46:68:fe:10:cf:d2:51:40:eb:48:9a:
18:1a:b1:0d:71:5e:4f:e2:55:25:5f:b0:f0:68:78:
a2:f4:43:05:6b:27:bb:f1:2a:09:2e:d6:fa:2d:31:
57:4b:cf:bc:08:3f:57:b4:d4:ba:4e:f0:59:66:55:
f7:6d:b1:ef:8c:90:b9:2b:2e:56:54:98:bc:1e:8a:
e7:7a:c9:b8:67:b4:bd:97:6c:b1:c5:88:e6:f6:c2:
26:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:65:17:C3:00:7D:F7:80:5A:53:F5:F8:1B:CF:1B:0B:5D:22:4A:6E
X509v3 Authority Key Identifier:
keyid:E2:11:0A:CC:E3:3A:C8:50:11:CA:8C:22:D2:00:16:66:E4:5B:93:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4hEKzOM6yFARyowi0gAWZuRbk3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/OGUXwwB994BaU_X4G88bC10iSm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/4hEKzOM6yFARyowi0gAWZuRbk3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.0.0/21
31.14.50.0/23
31.193.176.0/21
37.72.160.0/21
37.148.176.0/21
62.182.56.0/21
77.73.96.0/21
77.241.80.0/20
79.174.128.0/21
83.217.64.0/19
87.238.160.0/21
88.151.240.0/21
89.36.74.0/23
89.42.54.0/23
89.44.166.0/23
93.115.168.0/23
94.176.98.0/23
176.62.160.0/20
178.208.32.0/19
185.2.52.0/22
185.18.8.0/22
185.86.16.0/22
185.111.196.0/22
185.162.28.0/22
188.93.96.0/21
188.93.152.0/21
188.208.36.0/23
188.211.170.0/23
193.111.95.0/24
193.239.210.0/23
194.26.24.0/24
194.150.224.0/23
194.165.51.0/24
195.13.56.0/23
195.47.215.0/24
195.234.184.0/24
217.19.224.0/20
217.21.176.0/20
IPv6:
2a00:1c98::/32
2a00:7000::/32
2a02:d08::/32
2a03:a800::/32
2a07:ca80::/29
Signature Algorithm: sha256WithRSAEncryption
23:84:d6:1a:22:a6:5f:c7:c8:bc:27:8f:88:51:0a:16:9d:e5:
9b:24:ea:ca:f6:df:2a:e5:e2:30:a5:b3:70:32:18:00:55:c2:
08:54:81:5b:71:03:fc:ca:e4:f1:bc:9b:a8:c4:25:95:a8:c5:
96:be:1c:5e:54:96:dc:a0:49:3f:5e:c7:e1:c1:fa:d4:8d:89:
90:be:41:b6:b4:93:03:3e:07:e0:40:a8:a0:18:3c:9e:3c:9d:
55:61:66:21:d6:a6:3b:13:ce:2f:74:b5:76:14:a7:36:b9:64:
b0:cc:66:80:9b:70:51:62:12:13:b3:53:91:b1:82:d5:13:a2:
f2:21:19:14:b7:96:ad:c8:de:67:a0:da:1a:a3:c6:99:30:f5:
63:77:53:c9:30:02:62:ad:e2:f2:52:86:35:3e:ad:8f:cb:9e:
99:08:7a:9e:9c:55:f7:9d:02:4d:96:55:75:32:3f:f6:42:13:
62:65:8e:0e:29:a6:68:4b:26:b3:9c:1c:f1:d3:96:72:15:1a:
26:ff:f7:10:10:95:a6:5e:26:62:bc:96:b9:64:6d:5c:bf:bb:
9c:8f:80:52:b6:aa:84:c8:bc:eb:90:c3:28:6a:47:c9:bb:7b:
8f:77:3c:34:5b:2e:3d:38:d4:f8:0c:4b:98:0c:2b:97:e0:93:
0d:45:b1:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:55 2025 by rpki-client