Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/bl_uYxp07p3kbOaw34-Gz1MGyEg.roa
File: bl_uYxp07p3kbOaw34-Gz1MGyEg.roa (raw, json)
Hash identifier: 5VfVzyZaRdr2T10hYAwq5vwIKYtypMZwIVCKH8g4gAE=
Subject key identifier: 6E:5F:EE:63:1A:74:EE:9D:E4:6C:E6:B0:DF:8F:86:CF:53:06:C8:48
Certificate issuer: /CN=624ad4535ac88dd534199f2a726095af71afe44e
Certificate serial: 072D68E8
Authority key identifier: 62:4A:D4:53:5A:C8:8D:D5:34:19:9F:2A:72:60:95:AF:71:AF:E4:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkrUU1rIjdU0GZ8qcmCVr3Gv5E4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/bl_uYxp07p3kbOaw34-Gz1MGyEg.roa
Signing time: Mon 04 Apr 2022 10:19:00 +0000
ROA not before: Mon 04 Apr 2022 10:19:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197706
IP address blocks: 185.233.124.0/24 maxlen: 24
185.233.125.0/24 maxlen: 24
185.233.127.0/24 maxlen: 24
185.233.126.0/24 maxlen: 24
185.53.100.0/22 maxlen: 24
109.74.31.0/24 maxlen: 24
109.74.29.0/24 maxlen: 24
109.74.30.0/24 maxlen: 24
109.74.28.0/24 maxlen: 24
31.171.152.0/21 maxlen: 21
31.171.152.0/22 maxlen: 22
31.171.159.0/24 maxlen: 24
31.171.158.0/24 maxlen: 24
31.171.156.0/24 maxlen: 24
31.171.157.0/24 maxlen: 24
45.66.252.0/22 maxlen: 22
194.113.80.0/23 maxlen: 23
194.113.94.0/24 maxlen: 24
194.113.95.0/24 maxlen: 24
45.142.24.0/22 maxlen: 22
2a0d:4a40::/29 maxlen: 29
2a04:27c0::/29 maxlen: 29
2a0e:d4c0::/29 maxlen: 29
2a0d:42c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120416488 (0x72d68e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624ad4535ac88dd534199f2a726095af71afe44e
Validity
Not Before: Apr 4 10:19:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e5fee631a74ee9de46ce6b0df8f86cf5306c848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:fa:25:d8:da:ba:86:47:3b:e0:be:c1:d7:6a:
76:0c:8b:c1:43:a4:02:6e:f2:c3:df:35:45:b2:29:
72:9d:ff:a6:89:1b:cf:ac:a0:a1:88:7e:cc:b1:9f:
5e:2b:61:e3:bb:4b:4a:68:b6:23:a0:51:4c:8c:17:
a5:80:e5:f3:59:5f:35:01:36:6c:a9:db:99:12:39:
52:5b:9d:14:56:1c:ca:78:f4:69:14:0e:bc:6a:70:
d6:59:31:cc:b9:28:fa:b7:b5:48:f1:cc:be:e5:61:
70:f5:48:74:ab:34:3e:b6:df:f4:8a:08:2a:a1:87:
81:04:fe:0b:1d:31:a2:4a:41:5e:7f:d8:f8:b5:14:
fd:be:25:f8:0e:03:5e:f9:27:f8:90:ef:76:04:6c:
f5:4c:b0:db:37:1a:8a:b2:4a:dd:46:bc:2e:e9:f2:
e9:fa:79:bd:c6:eb:db:aa:82:e4:4a:d7:0c:90:d1:
78:98:f6:a5:3c:2b:ea:2b:f6:6c:19:ea:55:4f:ec:
cd:e4:b5:56:1a:ae:be:fd:a2:ab:96:2a:d7:8c:49:
6f:9e:c8:be:f3:d1:70:96:7f:d4:c5:b9:c3:b0:3c:
77:43:50:06:3f:a9:5a:c9:46:dd:6d:af:be:a9:41:
90:04:8e:64:bd:27:7a:ad:ad:54:64:19:9a:ca:ff:
be:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:5F:EE:63:1A:74:EE:9D:E4:6C:E6:B0:DF:8F:86:CF:53:06:C8:48
X509v3 Authority Key Identifier:
keyid:62:4A:D4:53:5A:C8:8D:D5:34:19:9F:2A:72:60:95:AF:71:AF:E4:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkrUU1rIjdU0GZ8qcmCVr3Gv5E4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/bl_uYxp07p3kbOaw34-Gz1MGyEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/YkrUU1rIjdU0GZ8qcmCVr3Gv5E4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.171.152.0/21
45.66.252.0/22
45.142.24.0/22
109.74.28.0/22
185.53.100.0/22
185.233.124.0/22
194.113.80.0/23
194.113.94.0/23
IPv6:
2a04:27c0::/29
2a0d:42c0::/29
2a0d:4a40::/29
2a0e:d4c0::/29
Signature Algorithm: sha256WithRSAEncryption
5b:e3:85:94:96:dc:b5:3e:e1:37:7e:02:b7:dc:07:fd:41:ca:
5b:b3:87:28:90:39:7e:76:3e:83:2d:9d:e1:7b:85:fc:ba:59:
c6:dc:19:d7:24:c9:95:6f:b9:97:03:bc:07:6b:bf:02:ad:fa:
de:13:b5:10:80:9b:eb:5b:43:a0:fa:6d:75:c3:82:9f:88:b2:
6a:e5:27:89:c9:50:f0:4a:b1:94:e8:68:53:a2:1b:c2:b7:30:
3b:e8:64:dd:d3:05:1b:12:7c:ed:bb:29:08:12:8e:d4:e3:73:
87:a3:8a:72:47:22:47:4b:a9:bc:43:53:a1:43:e1:24:5d:98:
5a:e9:b5:ea:8c:69:2e:86:af:ea:2c:81:59:a5:c9:64:fe:a9:
eb:f5:a6:fd:82:38:82:5e:1e:ec:21:39:60:c7:fa:b6:02:25:
57:7c:4c:15:1e:a0:f7:60:af:0f:5d:31:f1:cb:2e:3c:7d:63:
1f:0d:3e:94:9e:72:af:af:77:e7:cc:e2:c7:55:a9:89:9f:3f:
4c:07:ba:94:17:71:48:e5:e4:a6:c0:a1:49:f9:b7:e6:09:e8:
cb:43:44:5d:a1:cf:83:97:55:bf:67:23:45:7a:94:bb:c3:f5:
c4:a2:93:0f:fc:7a:83:9f:b5:07:8f:fe:ed:1e:39:13:03:ef:
53:92:70:43
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIEBy1o6DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MjRhZDQ1MzVhYzg4ZGQ1MzQxOTlmMmE3MjYwOTVhZjcxYWZlNDRlMB4XDTIyMDQw
NDEwMTkwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmU1ZmVlNjMxYTc0
ZWU5ZGU0NmNlNmIwZGY4Zjg2Y2Y1MzA2Yzg0ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMz6JdjauoZHO+C+wddqdgyLwUOkAm7yw981RbIpcp3/pokb
z6ygoYh+zLGfXith47tLSmi2I6BRTIwXpYDl81lfNQE2bKnbmRI5UludFFYcynj0
aRQOvGpw1lkxzLko+re1SPHMvuVhcPVIdKs0Prbf9IoIKqGHgQT+Cx0xokpBXn/Y
+LUU/b4l+A4DXvkn+JDvdgRs9Uyw2zcairJK3Ua8Luny6fp5vcbr26qC5ErXDJDR
eJj2pTwr6iv2bBnqVU/szeS1Vhquvv2iq5Yq14xJb57IvvPRcJZ/1MW5w7A8d0NQ
Bj+pWslG3W2vvqlBkASOZL0neq2tVGQZmsr/vkECAwEAAaOCAlcwggJTMB0GA1Ud
DgQWBBRuX+5jGnTuneRs5rDfj4bPUwbISDAfBgNVHSMEGDAWgBRiStRTWsiN1TQZ
nypyYJWvca/kTjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lrclVVMXJJamRVMEdaOHFjbUNWcjNHdjVFNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDAvYWExMDE5LTU2NGYtNGM0Ni1hMjE3LWZiNTk0OTgwOGRkYy8x
L2JsX3VZeHAwN3Aza2JPYXczNC1HejFNR3lFZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDAv
YWExMDE5LTU2NGYtNGM0Ni1hMjE3LWZiNTk0OTgwOGRkYy8xL1lrclVVMXJJamRV
MEdaOHFjbUNWcjNHdjVFNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBt
BggrBgEFBQcBBwEB/wReMFwwNgQCAAEwMAMEAx+rmAMEAi1C/AMEAi2OGAMEAm1K
HAMEArk1ZAMEArnpfAMEAcJxUAMEAcJxXjAiBAIAAjAcAwUDKgQnwAMFAyoNQsAD
BQMqDUpAAwUDKg7UwDANBgkqhkiG9w0BAQsFAAOCAQEAW+OFlJbctT7hN34Ct9wH
/UHKW7OHKJA5fnY+gy2d4XuF/LpZxtwZ1yTJlW+5lwO8B2u/Aq363hO1EICb61tD
oPptdcOCn4iyauUniclQ8EqxlOhoU6IbwrcwO+hk3dMFGxJ87bspCBKO1ONzh6OK
ckciR0upvENToUPhJF2YWum16oxpLoav6iyBWaXJZP6p6/Wm/YI4gl4e7CE5YMf6
tgIlV3xMFR6g92CvD10x8csuPH1jHw0+lJ5yr69358zix1WpiZ8/TAe6lBdxSOXk
psChSfm35gnoy0NEXaHPg5dVv2cjRXqUu8P1xKKTD/x6g5+1B4/+7R45EwPvU5Jw
Qw==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:38:23 2025 by rpki-client