Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/6u7lTzRryYwRYH2rOhnw_JeXX2g.roa
File: 6u7lTzRryYwRYH2rOhnw_JeXX2g.roa (raw, json)
Hash identifier: g6qbGOxmDZNSDIU15jUslDtsaCFwOBcgGflYXYQWrV4=
Subject key identifier: EA:EE:E5:4F:34:6B:C9:8C:11:60:7D:AB:3A:19:F0:FC:97:97:5F:68
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 0182D2A3ADE549BCC36A552E431AB1FCB73B
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/6u7lTzRryYwRYH2rOhnw_JeXX2g.roa
Signing time: Thu 25 Aug 2022 01:35:18 +0000
ROA not before: Thu 25 Aug 2022 01:35:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58305
IP address blocks: 45.43.64.0/19 maxlen: 24
45.43.80.0/22 maxlen: 24
198.105.96.0/19 maxlen: 24
155.254.32.0/22 maxlen: 24
155.254.32.0/19 maxlen: 24
155.254.48.0/23 maxlen: 23
155.254.63.0/24 maxlen: 24
155.254.61.0/24 maxlen: 24
107.161.160.0/24 maxlen: 24
107.161.165.0/24 maxlen: 24
107.161.166.0/24 maxlen: 24
107.161.161.0/24 maxlen: 24
107.161.162.0/24 maxlen: 24
107.161.164.0/24 maxlen: 24
107.161.172.0/24 maxlen: 24
107.161.168.0/24 maxlen: 24
107.161.169.0/24 maxlen: 24
107.161.170.0/24 maxlen: 24
107.161.171.0/24 maxlen: 24
107.181.128.0/19 maxlen: 24
162.220.240.0/24 maxlen: 24
162.220.242.0/24 maxlen: 24
162.220.240.0/21 maxlen: 24
162.220.241.0/24 maxlen: 24
113.20.156.0/22 maxlen: 24
107.161.173.0/24 maxlen: 24
162.217.248.0/24 maxlen: 24
162.217.249.0/24 maxlen: 24
162.217.250.0/24 maxlen: 24
2a05:9f40::/29 maxlen: 48
2a07:9944:20::/48 maxlen: 48
2a07:9944:40::/48 maxlen: 48
2a07:9942:39d7::/48 maxlen: 48
2a07:9944:1111::/48 maxlen: 48
2a07:9944:2222::/48 maxlen: 48
2a07:9940::/29 maxlen: 48
2a07:9944:10::/48 maxlen: 48
2a07:9944:30::/48 maxlen: 48
2a02:2ca7:2e::/48 maxlen: 48
2a07:9942:39d6::/48 maxlen: 48
2a02:2ca0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d2:a3:ad:e5:49:bc:c3:6a:55:2e:43:1a:b1:fc:b7:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Aug 25 01:35:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eaeee54f346bc98c11607dab3a19f0fc97975f68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:d9:c9:4c:66:8d:a0:33:b3:06:9f:5c:8c:76:
f2:4f:d5:72:e4:b3:b8:6f:f2:2a:15:19:34:12:14:
f6:71:ae:89:f0:87:7e:88:e3:c9:dd:9b:68:28:3f:
21:8f:a8:a3:7f:b7:02:1d:07:3e:0c:5e:28:00:be:
f7:18:aa:55:dc:85:45:eb:c2:f7:97:5e:cf:84:a6:
d4:96:0f:25:29:84:4e:be:f9:0c:b0:58:3e:cb:91:
22:19:e9:20:38:e5:d2:64:91:e6:41:c5:1d:10:3e:
77:17:e4:1c:44:8b:9d:9b:1e:8e:a8:e3:94:3b:05:
0a:69:2d:ec:be:8c:84:83:a6:15:9b:4c:f5:ba:98:
c2:bc:34:f5:04:9e:49:ee:23:ea:e3:e4:5f:e9:0b:
29:33:99:5d:a8:3f:12:05:03:84:9a:98:f8:5a:0d:
dc:cf:2f:71:8e:5e:22:1c:81:46:bf:b7:c7:49:cb:
b4:60:1e:13:35:3f:5b:88:81:4a:44:cc:21:66:7a:
13:63:35:b3:87:2c:60:4d:bf:de:05:fb:7a:18:cd:
83:25:88:ae:be:ef:03:11:b3:0c:3b:2b:f7:89:ef:
03:69:6e:0d:11:fa:09:43:39:a9:2a:2b:90:d8:c2:
f9:5e:22:51:e0:8d:34:1e:36:35:1d:e6:34:5c:19:
55:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:EE:E5:4F:34:6B:C9:8C:11:60:7D:AB:3A:19:F0:FC:97:97:5F:68
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/6u7lTzRryYwRYH2rOhnw_JeXX2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.64.0/19
107.161.160.0-107.161.162.255
107.161.164.0-107.161.166.255
107.161.168.0-107.161.173.255
107.181.128.0/19
113.20.156.0/22
155.254.32.0/19
162.217.248.0-162.217.250.255
162.220.240.0/21
198.105.96.0/19
IPv6:
2a02:2ca0::/29
2a05:9f40::/29
2a07:9940::/29
Signature Algorithm: sha256WithRSAEncryption
9e:a7:33:e4:a8:e4:4b:da:ab:20:4d:95:dd:9e:d5:e3:76:d0:
ea:92:cd:d2:12:6a:c5:5d:87:cc:73:95:c7:aa:51:f0:0e:65:
a8:3d:83:db:1a:47:32:c8:0a:e8:c1:b8:01:bd:30:18:41:ed:
7d:ee:4f:45:bd:a8:68:d0:49:67:e6:63:28:89:f2:60:d8:39:
a6:2c:b0:0a:c3:24:03:6d:42:32:9e:e5:6c:04:15:16:2b:ee:
22:bb:c9:d5:3c:f5:9b:48:fd:e5:e3:ea:1e:d1:ab:74:d2:04:
f9:91:bd:06:a2:b9:44:6a:ad:0a:58:25:b0:3a:4b:25:ba:e3:
62:90:17:6a:eb:5f:a5:f7:da:4c:6d:67:cf:c5:d9:e5:23:10:
d7:ac:95:ed:e9:29:26:b1:47:f9:69:df:72:f4:c1:b2:41:b2:
fc:b5:89:39:36:87:05:f9:e0:f4:7b:31:0f:2e:2a:aa:2a:8e:
d9:8a:7e:99:5f:58:f8:9a:c9:1b:c8:c6:d2:eb:6a:07:1c:bb:
28:da:ac:31:fd:48:01:49:9a:00:c4:be:83:9f:5f:d1:1f:98:
eb:e3:48:cf:d0:1c:38:6c:d1:b2:19:16:fb:3a:c4:a3:bb:40:
58:91:b8:09:c1:ff:05:0d:e1:c5:37:4f:d8:d7:fd:cb:ea:02:
cc:e6:7b:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:25:29 2025 by rpki-client