Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/0ariluWtDHTG4Fu_akWPXlcfmIM.roa
File: 0ariluWtDHTG4Fu_akWPXlcfmIM.roa (raw, json)
Hash identifier: m4jqaprHs/6sDYotF9yNvXqhUujJCPfGOgSZvyBuXTA=
Subject key identifier: D1:AA:E2:96:E5:AD:0C:74:C6:E0:5B:BF:6A:45:8F:5E:57:1F:98:83
Certificate issuer: /CN=27029a36fc0cca2e0a8d045f022dfc831a517308
Certificate serial: 01856EEFFF4A90BC5EBCC6E09A37BCCC5270
Authority key identifier: 27:02:9A:36:FC:0C:CA:2E:0A:8D:04:5F:02:2D:FC:83:1A:51:73:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JwKaNvwMyi4KjQRfAi38gxpRcwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/0ariluWtDHTG4Fu_akWPXlcfmIM.roa
Signing time: Sun 01 Jan 2023 20:05:00 +0000
ROA not before: Sun 01 Jan 2023 20:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203
IP address blocks: 213.133.80.0/20 maxlen: 24
164.215.0.0/19 maxlen: 24
65.18.208.0/20 maxlen: 24
91.184.192.0/19 maxlen: 24
185.162.16.0/22 maxlen: 24
185.7.156.0/22 maxlen: 24
64.59.208.0/20 maxlen: 24
185.42.32.0/22 maxlen: 24
213.140.192.0/19 maxlen: 24
69.6.0.0/19 maxlen: 24
69.94.112.0/20 maxlen: 24
139.138.192.0/19 maxlen: 24
85.132.224.0/19 maxlen: 24
216.241.128.0/19 maxlen: 24
80.244.16.0/20 maxlen: 24
212.50.96.0/19 maxlen: 24
46.251.96.0/19 maxlen: 24
109.110.224.0/19 maxlen: 24
66.205.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:ef:ff:4a:90:bc:5e:bc:c6:e0:9a:37:bc:cc:52:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27029a36fc0cca2e0a8d045f022dfc831a517308
Validity
Not Before: Jan 1 20:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1aae296e5ad0c74c6e05bbf6a458f5e571f9883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3b:9a:48:42:bb:d1:8f:70:16:be:a9:4c:57:
2f:ac:91:94:0f:09:e6:8c:76:4d:f9:71:ad:29:4d:
f7:38:c2:3d:f2:4c:77:08:c5:c7:d5:12:74:e3:87:
05:b1:3a:1e:f5:42:64:43:48:a9:ea:07:17:bd:0e:
b4:30:68:57:a7:3f:f7:4d:f2:dd:44:db:e0:d8:8c:
c2:ed:35:e2:27:00:0f:ee:b6:31:8d:44:8d:5e:93:
99:c1:95:0b:a4:d1:5c:9d:36:59:ec:dc:b4:51:e8:
9f:61:23:45:ca:5e:58:44:2f:0c:74:41:40:62:26:
e3:e9:50:19:8c:71:0b:96:c6:70:da:a2:81:c3:27:
40:15:d8:75:d2:0c:95:05:be:a9:80:9a:45:ba:74:
ab:88:db:94:5a:19:15:8f:bb:f2:90:77:14:c7:9d:
9a:03:6a:29:cf:d3:76:87:54:75:3c:3d:b1:bb:4b:
e1:eb:ca:d0:fc:33:b6:c8:3b:ca:85:cc:8a:91:f7:
9c:ba:57:d7:4b:42:76:bf:98:2e:38:bf:d9:d4:27:
49:36:fb:dd:39:6d:31:b1:60:a6:6d:82:9a:8b:d1:
45:1c:d1:ed:df:a0:01:22:e1:81:6f:64:12:be:0a:
a4:7f:d2:6c:6c:93:b8:18:6e:b8:27:80:16:ee:e4:
11:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:AA:E2:96:E5:AD:0C:74:C6:E0:5B:BF:6A:45:8F:5E:57:1F:98:83
X509v3 Authority Key Identifier:
keyid:27:02:9A:36:FC:0C:CA:2E:0A:8D:04:5F:02:2D:FC:83:1A:51:73:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JwKaNvwMyi4KjQRfAi38gxpRcwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/0ariluWtDHTG4Fu_akWPXlcfmIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/JwKaNvwMyi4KjQRfAi38gxpRcwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.251.96.0/19
64.59.208.0/20
65.18.208.0/20
66.205.64.0/19
69.6.0.0/19
69.94.112.0/20
80.244.16.0/20
85.132.224.0/19
91.184.192.0/19
109.110.224.0/19
139.138.192.0/19
164.215.0.0/19
185.7.156.0/22
185.42.32.0/22
185.162.16.0/22
212.50.96.0/19
213.133.80.0/20
213.140.192.0/19
216.241.128.0/19
Signature Algorithm: sha256WithRSAEncryption
6e:9a:d2:fc:01:19:4b:b4:ac:d5:77:36:e3:08:fb:b8:2a:5a:
03:3c:23:bf:a3:6d:19:46:cc:9a:46:95:3a:21:eb:66:1e:ec:
6d:f2:69:e1:30:2e:f0:32:a2:43:24:85:9b:41:1d:de:17:97:
df:5c:91:0d:b3:32:37:9f:a3:0f:60:b9:87:ca:3e:85:7f:eb:
91:c6:8d:8d:d3:76:b6:2a:77:3c:ab:f8:4e:09:b1:5f:28:9b:
54:c6:25:59:35:60:71:c5:24:a5:3b:17:5c:70:fb:dd:a5:06:
17:f5:e4:30:a1:0c:82:c0:2d:e2:bf:d4:5e:ec:a8:be:87:1d:
31:dd:b8:89:04:07:70:c0:f1:e2:a5:95:ed:3e:dc:04:c0:fb:
04:2e:fb:1d:9c:cb:1f:08:50:aa:83:18:21:90:98:26:02:c9:
50:1a:c9:e9:ca:3f:61:54:a9:24:bc:f9:58:a1:d5:36:1c:4f:
a4:c8:2e:14:69:f5:90:91:d3:a4:95:2c:8c:25:e2:82:ab:f9:
d4:29:0e:86:52:ea:0e:b5:a5:60:8f:36:13:40:57:ed:a2:06:
36:2f:3a:1a:40:09:46:9d:95:29:14:a7:1f:69:a1:23:06:33:
f6:d6:79:90:18:bf:96:49:42:a1:1f:4f:98:96:f4:2b:a8:fe:
bd:8c:04:a7
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:13 2025 by rpki-client