Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/ft5QlSstUOc6NgSAF63i9BaN6Gc.roa
File: ft5QlSstUOc6NgSAF63i9BaN6Gc.roa (raw, json)
Hash identifier: 8S10MKKxK+SSf9c5Ezzg0WSf8ctyiyLZTkqyAhNzL6M=
Subject key identifier: 7E:DE:50:95:2B:2D:50:E7:3A:36:04:80:17:AD:E2:F4:16:8D:E8:67
Certificate issuer: /CN=27029a36fc0cca2e0a8d045f022dfc831a517308
Certificate serial: 01882907C1302CE838B293E01B1141DA9EF7
Authority key identifier: 27:02:9A:36:FC:0C:CA:2E:0A:8D:04:5F:02:2D:FC:83:1A:51:73:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JwKaNvwMyi4KjQRfAi38gxpRcwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/ft5QlSstUOc6NgSAF63i9BaN6Gc.roa
Signing time: Wed 17 May 2023 09:25:54 +0000
ROA not before: Wed 17 May 2023 09:25:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35432
IP address blocks: 164.215.0.0/19 maxlen: 24
91.184.192.0/19 maxlen: 24
195.179.96.0/20 maxlen: 24
185.7.156.0/22 maxlen: 24
64.59.208.0/20 maxlen: 24
69.6.0.0/19 maxlen: 24
213.140.192.0/19 maxlen: 24
85.132.224.0/19 maxlen: 24
80.244.16.0/20 maxlen: 24
212.50.96.0/19 maxlen: 24
109.110.224.0/19 maxlen: 24
77.83.248.0/22 maxlen: 24
66.205.64.0/19 maxlen: 24
213.133.80.0/20 maxlen: 24
65.18.208.0/20 maxlen: 24
185.162.16.0/22 maxlen: 24
185.42.32.0/22 maxlen: 24
69.94.112.0/20 maxlen: 24
194.233.16.0/22 maxlen: 24
139.138.192.0/19 maxlen: 24
194.233.24.0/22 maxlen: 24
216.241.128.0/19 maxlen: 24
194.233.60.0/22 maxlen: 24
46.251.96.0/19 maxlen: 24
194.64.144.0/22 maxlen: 24
2a02:540:8::/48 maxlen: 48
2a02:540:7::/48 maxlen: 48
2a02:540:5::/48 maxlen: 48
2a02:540::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:29:07:c1:30:2c:e8:38:b2:93:e0:1b:11:41:da:9e:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27029a36fc0cca2e0a8d045f022dfc831a517308
Validity
Not Before: May 17 09:25:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ede50952b2d50e73a36048017ade2f4168de867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c6:89:b8:3f:0b:a3:c7:d6:67:4b:56:f2:71:
2d:0c:11:5a:b5:b0:cd:7b:50:d9:42:35:ad:c6:73:
40:69:ea:9c:3d:be:41:f3:af:69:6d:e8:94:6d:68:
69:bb:7f:25:9b:93:8a:42:15:1e:da:02:00:86:0d:
9f:d1:06:fb:61:c4:87:23:9d:d8:78:3b:00:db:ce:
d8:b3:92:60:d5:da:44:1c:cf:8a:c5:87:89:90:84:
36:5e:5e:f4:38:b9:b5:32:4a:32:6d:50:d8:74:25:
1c:ba:bb:19:06:57:0c:e4:45:06:13:56:98:f7:95:
61:64:7b:c9:d7:ec:c2:6b:bd:e2:34:1d:76:3e:12:
c9:5e:87:25:65:b6:4b:b3:f2:9a:2d:82:69:79:08:
ab:1a:10:97:cd:f5:bd:c3:a4:d0:95:65:6a:18:33:
48:7d:e3:64:29:ef:85:6c:79:27:ae:7c:87:84:09:
9a:f2:5f:6d:4c:0c:01:87:0d:cf:b9:97:35:7b:39:
ec:87:fd:55:e1:96:f9:ca:fa:1a:6a:c4:70:49:e0:
67:24:60:3c:51:70:64:4b:44:2c:03:fb:da:e2:21:
31:cd:6e:0a:88:d2:d8:c8:3e:c9:f1:a8:b0:34:36:
5d:b0:b3:2d:9d:8b:d6:8b:5a:b1:bd:b2:26:2e:32:
4b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:DE:50:95:2B:2D:50:E7:3A:36:04:80:17:AD:E2:F4:16:8D:E8:67
X509v3 Authority Key Identifier:
keyid:27:02:9A:36:FC:0C:CA:2E:0A:8D:04:5F:02:2D:FC:83:1A:51:73:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JwKaNvwMyi4KjQRfAi38gxpRcwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/ft5QlSstUOc6NgSAF63i9BaN6Gc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/JwKaNvwMyi4KjQRfAi38gxpRcwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.251.96.0/19
64.59.208.0/20
65.18.208.0/20
66.205.64.0/19
69.6.0.0/19
69.94.112.0/20
77.83.248.0/22
80.244.16.0/20
85.132.224.0/19
91.184.192.0/19
109.110.224.0/19
139.138.192.0/19
164.215.0.0/19
185.7.156.0/22
185.42.32.0/22
185.162.16.0/22
194.64.144.0/22
194.233.16.0/22
194.233.24.0/22
194.233.60.0/22
195.179.96.0/20
212.50.96.0/19
213.133.80.0/20
213.140.192.0/19
216.241.128.0/19
IPv6:
2a02:540::/32
Signature Algorithm: sha256WithRSAEncryption
77:db:21:ab:6d:c2:b4:15:f3:61:a5:98:3f:6f:05:d0:32:9b:
26:81:9b:a1:4e:3d:70:04:15:7d:8c:e8:4d:d2:04:17:01:f8:
b0:e6:d4:0e:ca:b5:dd:42:82:bb:2f:e6:39:8e:5d:98:ea:20:
83:eb:29:45:af:b9:52:cb:42:aa:ee:aa:0e:5f:11:a7:05:9f:
7b:ea:80:9b:41:9c:57:bc:3f:59:92:be:0d:40:a7:09:da:19:
e1:08:e7:cb:73:d4:1b:99:c1:6b:20:bc:0c:22:3a:1d:58:17:
b6:20:2b:f1:08:6e:f3:ae:7e:55:74:7e:30:6f:dd:24:24:4d:
31:06:3a:7e:cc:bf:e6:69:59:b1:f8:1f:e6:14:de:17:9b:1d:
e9:1e:16:c1:ab:95:81:b4:03:c7:7d:01:83:71:91:75:fa:53:
2b:d4:79:0b:66:55:c4:a4:8f:ca:8d:4a:65:c9:5e:a5:1b:38:
7c:98:79:68:e6:fc:2e:23:02:51:28:30:0a:13:fd:81:2e:f4:
31:3c:7c:4e:ae:3c:81:1c:32:ce:6a:58:15:3d:ee:66:06:ab:
33:7d:8a:f4:00:1d:21:d8:e2:6d:7c:05:70:6a:d5:ea:fc:02:
1d:19:a2:e2:72:c9:ba:4e:b2:6c:f7:d9:2d:bb:d9:5d:98:cd:
33:a1:8e:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:49:48 2025 by rpki-client