Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/gQiAzdQ2ucjyGTpx0lTKcHyGYmg.roa
File: gQiAzdQ2ucjyGTpx0lTKcHyGYmg.roa (raw, json)
Hash identifier: 8bmzbDP4bObvfZK6AbC1HwHNH8a6rrEYE2EwIghNG2M=
Subject key identifier: 81:08:80:CD:D4:36:B9:C8:F2:19:3A:71:D2:54:CA:70:7C:86:62:68
Certificate issuer: /CN=27029a36fc0cca2e0a8d045f022dfc831a517308
Certificate serial: 01856EF001A42E1A2FAD2E9735D38B2BC70C
Authority key identifier: 27:02:9A:36:FC:0C:CA:2E:0A:8D:04:5F:02:2D:FC:83:1A:51:73:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JwKaNvwMyi4KjQRfAi38gxpRcwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/gQiAzdQ2ucjyGTpx0lTKcHyGYmg.roa
Signing time: Sun 01 Jan 2023 20:05:00 +0000
ROA not before: Sun 01 Jan 2023 20:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35432
IP address blocks: 164.215.0.0/19 maxlen: 24
91.184.192.0/19 maxlen: 24
64.59.208.0/20 maxlen: 24
185.7.156.0/22 maxlen: 24
213.140.192.0/19 maxlen: 24
69.6.0.0/19 maxlen: 24
85.132.224.0/19 maxlen: 24
212.50.96.0/19 maxlen: 24
80.244.16.0/20 maxlen: 24
66.205.95.0/24 maxlen: 24
109.110.224.0/19 maxlen: 24
77.83.248.0/22 maxlen: 24
66.205.64.0/19 maxlen: 24
213.133.80.0/20 maxlen: 24
65.18.208.0/20 maxlen: 24
185.162.16.0/22 maxlen: 24
185.42.32.0/24 maxlen: 24
185.42.32.0/22 maxlen: 24
69.94.112.0/20 maxlen: 24
194.233.16.0/22 maxlen: 24
139.138.192.0/19 maxlen: 24
216.241.128.0/19 maxlen: 24
194.233.24.0/22 maxlen: 24
194.233.60.0/22 maxlen: 24
46.251.96.0/19 maxlen: 24
194.64.144.0/22 maxlen: 24
2a02:540:8::/48 maxlen: 48
2a02:540:7::/48 maxlen: 48
2a02:540:5::/48 maxlen: 48
2a02:540::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f0:01:a4:2e:1a:2f:ad:2e:97:35:d3:8b:2b:c7:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27029a36fc0cca2e0a8d045f022dfc831a517308
Validity
Not Before: Jan 1 20:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=810880cdd436b9c8f2193a71d254ca707c866268
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:5b:ce:47:c0:43:12:5e:71:72:ec:09:10:0c:
31:37:ca:2e:4f:84:2c:75:d2:78:8f:f4:2e:eb:79:
19:2b:4f:78:d3:e3:56:c5:71:ef:d5:63:90:08:23:
d5:ff:6f:39:eb:9f:d8:4a:2b:dd:3b:ec:d4:37:0f:
0c:73:49:df:4a:a4:8c:e9:96:d2:3b:af:f0:76:54:
9f:8b:ff:da:67:6f:53:2f:95:a0:dd:18:6a:a6:e2:
f3:77:70:23:cc:b2:db:3e:91:4b:9a:38:e9:65:a0:
fd:de:b0:93:8e:6d:a5:f6:47:4a:c5:fc:6a:27:e4:
a0:bb:f0:fa:ed:30:61:5c:e5:65:39:7b:0e:16:bd:
a1:97:dc:f2:8e:2f:ab:6a:0a:d5:a1:ea:ae:0d:56:
95:fc:67:97:c2:89:42:91:e1:58:26:e7:a0:21:83:
3b:c2:35:e4:d2:88:23:b3:02:52:cf:2c:ae:49:56:
b7:fc:6a:b6:10:3a:29:5d:61:13:34:e1:ec:d4:a4:
f0:d9:48:d8:dc:b4:69:bb:10:3a:8e:5b:1b:a3:ce:
e5:b3:15:52:59:25:03:72:88:7d:f5:4a:d3:94:7a:
c5:9c:74:a7:d3:31:67:69:73:2e:0f:39:59:25:f1:
9d:69:ca:32:55:ff:06:d5:01:13:57:91:24:7b:50:
fd:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:08:80:CD:D4:36:B9:C8:F2:19:3A:71:D2:54:CA:70:7C:86:62:68
X509v3 Authority Key Identifier:
keyid:27:02:9A:36:FC:0C:CA:2E:0A:8D:04:5F:02:2D:FC:83:1A:51:73:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JwKaNvwMyi4KjQRfAi38gxpRcwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/gQiAzdQ2ucjyGTpx0lTKcHyGYmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/JwKaNvwMyi4KjQRfAi38gxpRcwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.251.96.0/19
64.59.208.0/20
65.18.208.0/20
66.205.64.0/19
69.6.0.0/19
69.94.112.0/20
77.83.248.0/22
80.244.16.0/20
85.132.224.0/19
91.184.192.0/19
109.110.224.0/19
139.138.192.0/19
164.215.0.0/19
185.7.156.0/22
185.42.32.0/22
185.162.16.0/22
194.64.144.0/22
194.233.16.0/22
194.233.24.0/22
194.233.60.0/22
212.50.96.0/19
213.133.80.0/20
213.140.192.0/19
216.241.128.0/19
IPv6:
2a02:540::/32
Signature Algorithm: sha256WithRSAEncryption
10:58:41:24:be:e6:22:5c:73:f3:48:48:53:1a:51:ae:f0:ad:
c8:31:e8:88:d2:01:74:e6:ae:fd:10:15:2d:7f:cf:2e:4e:87:
d5:c7:5f:47:8f:af:6e:c0:bd:75:5a:5f:6b:e6:3b:58:a5:84:
2e:05:60:7d:95:e6:4f:09:3c:5d:3d:0a:05:b4:74:e0:e6:dc:
52:57:0c:50:23:cf:ec:21:92:77:ed:9a:f1:b5:4a:15:6a:26:
0e:8c:ea:b8:ac:0a:a9:c6:78:fb:38:e8:d9:7d:a4:74:b6:43:
26:2f:d4:9c:3d:d4:5a:60:3f:ca:53:64:0b:e8:25:d2:c8:80:
3d:4e:e5:54:c3:1f:a6:87:03:f7:ba:b5:01:a1:ff:05:37:c0:
d1:43:80:24:ce:c0:1c:ac:dc:88:69:30:71:48:97:c5:2b:17:
04:77:a6:39:92:94:b3:d3:ac:7e:92:10:b2:67:f5:1b:c0:06:
be:97:d2:e7:c4:9e:52:61:ef:5b:c8:9f:79:a1:e5:a3:36:96:
1f:d4:6e:00:96:ad:79:28:a5:c5:2f:26:a7:eb:be:6c:aa:d7:
d7:ae:78:c0:ab:3a:39:a9:0a:f1:eb:1e:2f:ee:c0:8f:87:bf:
49:a6:90:d3:5a:5b:a0:6d:ad:e7:06:f3:ec:7d:fe:8e:2b:bb:
5f:93:cc:c8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Apr 22 11:31:40 2025 by rpki-client