Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/17e663-eb10-45ed-81f2-bfbe1bc15fc2/1/w0WC4sVQwkDYKmZe0isqrggj11s.roa
File: w0WC4sVQwkDYKmZe0isqrggj11s.roa (raw, json)
Hash identifier: S7W6H7BvFYKt2qaWUID9hDnDuuwmpMf+C7+h+R65NUA=
Subject key identifier: C3:45:82:E2:C5:50:C2:40:D8:2A:66:5E:D2:2B:2A:AE:08:23:D7:5B
Certificate issuer: /CN=384872e817b3a45f98d4b15b65dd452b5da2d611
Certificate serial: 01856D93FF4083147BEF55EFD51338D566B2
Authority key identifier: 38:48:72:E8:17:B3:A4:5F:98:D4:B1:5B:65:DD:45:2B:5D:A2:D6:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OEhy6BezpF-Y1LFbZd1FK12i1hE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/17e663-eb10-45ed-81f2-bfbe1bc15fc2/1/w0WC4sVQwkDYKmZe0isqrggj11s.roa
Signing time: Sun 01 Jan 2023 13:44:53 +0000
ROA not before: Sun 01 Jan 2023 13:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56329
IP address blocks: 194.233.152.0/21 maxlen: 21
88.202.240.0/20 maxlen: 20
188.95.40.0/21 maxlen: 21
195.180.16.0/20 maxlen: 20
195.180.32.0/21 maxlen: 21
195.180.48.0/20 maxlen: 20
213.18.128.0/18 maxlen: 18
216.213.128.0/18 maxlen: 18
216.213.172.0/24 maxlen: 24
194.233.224.0/20 maxlen: 20
83.151.200.0/21 maxlen: 21
82.163.184.0/21 maxlen: 21
88.202.128.0/19 maxlen: 19
212.237.220.0/22 maxlen: 22
185.82.156.0/22 maxlen: 22
82.163.144.0/20 maxlen: 20
46.227.144.0/21 maxlen: 21
88.202.192.0/20 maxlen: 20
185.111.224.0/22 maxlen: 22
88.202.232.0/22 maxlen: 22
185.147.88.0/22 maxlen: 22
88.212.164.0/22 maxlen: 22
88.212.168.0/21 maxlen: 21
88.212.176.0/21 maxlen: 21
88.212.184.0/22 maxlen: 22
78.143.192.0/19 maxlen: 19
82.163.252.0/22 maxlen: 22
2a06:61c0::/29 maxlen: 29
2a02:fb8::/32 maxlen: 32
2a00:d200::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:93:ff:40:83:14:7b:ef:55:ef:d5:13:38:d5:66:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=384872e817b3a45f98d4b15b65dd452b5da2d611
Validity
Not Before: Jan 1 13:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c34582e2c550c240d82a665ed22b2aae0823d75b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:48:0e:cc:d0:57:dc:bc:04:6c:f0:ca:5b:8c:
44:d8:e1:9d:f6:a0:87:0e:05:06:37:d7:5f:ab:8f:
05:b7:da:6f:b8:7a:c7:66:1f:1d:28:46:06:e8:27:
b4:17:89:af:48:92:36:9e:c1:47:25:5c:61:28:94:
48:8e:38:da:5b:54:ff:42:11:e8:b6:08:b6:1b:8c:
bd:71:d2:e9:4b:1b:01:c3:9e:65:02:42:8e:ff:aa:
2b:bd:e2:73:0c:56:43:a2:c9:0c:0c:73:f4:d9:13:
7e:ef:e9:0f:06:f6:06:26:bc:86:cc:38:46:24:d2:
c9:8a:dd:c1:90:90:9e:6e:46:36:60:6a:3a:c5:b1:
07:45:1f:07:d5:73:07:1a:bd:ae:d5:ba:31:6a:88:
57:4c:69:28:13:c1:97:eb:a7:33:48:c9:d8:4b:4a:
4c:36:59:fe:a2:9b:a5:d4:bb:bd:ad:57:ce:14:e7:
67:4a:87:76:dc:56:17:27:c3:c1:6e:6a:d3:fb:9e:
0a:95:f5:f1:20:67:0c:78:26:30:a1:f8:1f:aa:ba:
14:21:13:4f:f6:f6:ef:9d:ef:e7:94:10:75:6d:53:
e8:42:81:97:8e:01:b4:d0:10:73:bb:10:1b:b6:36:
82:ba:19:29:60:01:5f:f1:29:7c:27:5f:54:84:3d:
f5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:45:82:E2:C5:50:C2:40:D8:2A:66:5E:D2:2B:2A:AE:08:23:D7:5B
X509v3 Authority Key Identifier:
keyid:38:48:72:E8:17:B3:A4:5F:98:D4:B1:5B:65:DD:45:2B:5D:A2:D6:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OEhy6BezpF-Y1LFbZd1FK12i1hE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/17e663-eb10-45ed-81f2-bfbe1bc15fc2/1/w0WC4sVQwkDYKmZe0isqrggj11s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/17e663-eb10-45ed-81f2-bfbe1bc15fc2/1/OEhy6BezpF-Y1LFbZd1FK12i1hE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.144.0/21
78.143.192.0/19
82.163.144.0/20
82.163.184.0/21
82.163.252.0/22
83.151.200.0/21
88.202.128.0/19
88.202.192.0/20
88.202.232.0/22
88.202.240.0/20
88.212.164.0-88.212.187.255
185.82.156.0/22
185.111.224.0/22
185.147.88.0/22
188.95.40.0/21
194.233.152.0/21
194.233.224.0/20
195.180.16.0-195.180.39.255
195.180.48.0/20
212.237.220.0/22
213.18.128.0/18
216.213.128.0/18
IPv6:
2a00:d200::/29
2a02:fb8::/32
2a06:61c0::/29
Signature Algorithm: sha256WithRSAEncryption
36:af:16:a6:89:f8:46:82:84:46:4b:cb:ae:87:df:4e:b6:8c:
a0:a7:26:cb:48:f9:6c:7a:27:3d:3b:a3:d9:6c:8d:a3:59:5b:
59:fa:37:8d:f1:2f:81:75:44:58:9f:b3:cd:3c:21:38:bf:8a:
55:45:35:ce:be:c9:70:71:83:d1:6c:01:51:45:8c:22:12:d9:
03:2a:fe:8a:5f:2e:72:2e:1a:f1:8b:72:e2:91:4c:e2:8d:c0:
02:8b:29:8d:52:54:c0:6e:56:81:0f:9d:3c:7b:93:84:d8:93:
b2:85:ee:61:54:3d:17:69:26:82:1d:78:eb:1f:64:0c:68:12:
8e:df:88:10:fb:a2:3a:05:69:0a:d9:60:39:28:54:5d:09:2b:
3b:df:05:31:eb:57:07:bf:58:79:46:a1:36:a9:d4:b5:19:d9:
a2:bc:ab:12:43:83:ce:27:0a:cb:0e:c5:29:01:15:b6:2f:55:
b5:9a:d3:7f:1c:4a:6a:f6:ef:d4:b2:b5:05:b8:71:b2:1e:d3:
8c:f8:86:65:b2:5b:77:83:a9:dc:6d:53:45:5e:3b:cc:cc:c4:
b6:43:bc:80:47:d9:7f:ec:ce:5e:16:5c:ff:a5:00:7e:35:b6:
a7:cd:89:92:3e:62:3c:50:22:63:1c:a1:92:ae:85:74:bf:24:
87:14:10:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 18:27:18 2025 by rpki-client