Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/h4t1Fz_UINT5uCyLfIKpDT0CsfY.roa
File: h4t1Fz_UINT5uCyLfIKpDT0CsfY.roa (raw, json)
Hash identifier: o279E9tG+1dPKOFW7B0jZSTt4D4LiZbeP0VCdWdUYms=
Subject key identifier: 87:8B:75:17:3F:D4:20:D4:F9:B8:2C:8B:7C:82:A9:0D:3D:02:B1:F6
Certificate issuer: /CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Certificate serial: 0185F47504D4EB8A66C9724CBCDE08586E7F
Authority key identifier: 49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/h4t1Fz_UINT5uCyLfIKpDT0CsfY.roa
Signing time: Fri 27 Jan 2023 18:19:47 +0000
ROA not before: Fri 27 Jan 2023 18:19:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51684
IP address blocks: 185.16.26.0/24 maxlen: 24
5.181.196.0/24 maxlen: 24
89.46.204.0/23 maxlen: 23
89.46.206.0/24 maxlen: 24
89.46.206.0/23 maxlen: 23
89.46.203.0/24 maxlen: 24
89.46.202.0/23 maxlen: 23
89.46.202.0/24 maxlen: 24
89.46.204.0/24 maxlen: 24
89.46.205.0/24 maxlen: 24
89.46.200.0/24 maxlen: 24
89.46.200.0/23 maxlen: 23
89.46.201.0/24 maxlen: 24
89.46.207.0/24 maxlen: 24
223.25.125.0/24 maxlen: 24
223.25.120.0/24 maxlen: 24
223.25.122.0/24 maxlen: 24
223.25.126.0/24 maxlen: 24
185.254.203.0/24 maxlen: 24
185.254.200.0/24 maxlen: 24
185.254.200.0/23 maxlen: 23
185.254.201.0/24 maxlen: 24
82.199.208.0/23 maxlen: 23
82.199.208.0/24 maxlen: 24
82.199.209.0/24 maxlen: 24
82.199.210.0/24 maxlen: 24
82.199.211.0/24 maxlen: 24
82.199.212.0/23 maxlen: 23
82.199.212.0/24 maxlen: 24
82.199.213.0/24 maxlen: 24
82.199.214.0/23 maxlen: 23
82.199.218.0/23 maxlen: 23
82.199.218.0/24 maxlen: 24
82.199.219.0/24 maxlen: 24
82.199.214.0/24 maxlen: 24
82.199.215.0/24 maxlen: 24
82.199.216.0/24 maxlen: 24
82.199.216.0/23 maxlen: 23
82.199.217.0/24 maxlen: 24
82.199.221.0/24 maxlen: 24
82.199.222.0/24 maxlen: 24
82.199.222.0/23 maxlen: 23
82.199.220.0/24 maxlen: 24
82.199.220.0/23 maxlen: 23
185.247.37.0/24 maxlen: 24
185.247.38.0/24 maxlen: 24
185.247.36.0/24 maxlen: 24
185.247.36.0/23 maxlen: 23
185.95.204.0/23 maxlen: 23
185.95.204.0/24 maxlen: 24
185.95.205.0/24 maxlen: 24
185.95.206.0/24 maxlen: 24
185.95.206.0/23 maxlen: 23
185.95.207.0/24 maxlen: 24
185.247.38.0/23 maxlen: 23
185.247.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f4:75:04:d4:eb:8a:66:c9:72:4c:bc:de:08:58:6e:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Validity
Not Before: Jan 27 18:19:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=878b75173fd420d4f9b82c8b7c82a90d3d02b1f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:87:d5:f6:ae:e6:f1:13:e6:bc:bf:f6:ff:f1:
d0:ad:02:52:6a:70:ac:82:d7:b8:14:5c:97:7f:1c:
7e:4b:b5:0b:1f:42:f6:6a:02:8b:bc:a4:77:46:a9:
65:9f:e1:a5:5f:48:ba:a9:e0:ac:ea:60:3c:a8:62:
c9:df:20:bb:c5:a6:4a:8a:be:6a:c4:b7:3f:ac:26:
09:75:81:97:4a:a9:e7:b0:20:be:09:d4:c6:47:12:
26:ea:04:1c:d6:46:37:4d:15:63:a9:d9:6c:62:a4:
eb:ec:35:d4:03:f6:26:52:ef:0b:c1:bb:8c:c3:65:
42:82:05:4c:e9:f4:97:7b:b4:18:38:27:9e:4c:d9:
e0:59:ab:09:c6:28:11:3f:e0:f4:ab:e9:21:6b:ff:
fc:a2:59:08:94:4e:01:1b:2e:19:84:86:83:c5:d3:
62:43:ef:e1:8d:3d:cc:8d:ae:32:08:30:51:bb:95:
2f:fd:d3:8b:89:67:e1:96:92:10:c6:09:a0:ed:be:
d5:a9:67:ec:27:55:97:4e:fc:47:ed:31:7d:91:ae:
ba:fc:8c:9c:61:55:89:5e:fe:cd:ba:95:cd:2a:b6:
c5:e5:6d:f8:ed:75:1a:e7:09:89:22:83:c7:da:dd:
8e:90:f8:1d:74:f0:f7:19:51:13:f1:46:df:7c:da:
a7:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:8B:75:17:3F:D4:20:D4:F9:B8:2C:8B:7C:82:A9:0D:3D:02:B1:F6
X509v3 Authority Key Identifier:
keyid:49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/h4t1Fz_UINT5uCyLfIKpDT0CsfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/Sd2PGmKl1_gCEt4PPv51svozj_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.196.0/24
82.199.208.0/20
89.46.200.0/21
185.16.26.0/24
185.95.204.0/22
185.247.36.0/22
185.254.200.0/23
185.254.203.0/24
223.25.120.0/24
223.25.122.0/24
223.25.125.0-223.25.126.255
Signature Algorithm: sha256WithRSAEncryption
17:fa:d0:12:8c:6f:29:3b:0b:c5:cc:34:c1:88:ce:f8:67:fb:
36:fd:04:63:eb:4a:ea:e8:b6:9f:56:f0:22:10:51:8e:db:ad:
e1:28:b4:e6:61:55:a6:1a:50:5c:0f:84:53:58:33:09:61:6e:
33:f5:e5:f4:17:89:01:64:c9:99:18:02:d3:04:a4:48:e3:51:
16:08:9d:42:e7:ff:21:2e:40:46:71:78:6e:e9:65:44:a0:36:
2f:7b:5d:02:c8:0d:f4:36:4a:b7:b5:57:d6:de:af:6f:49:6d:
5c:5a:c3:a1:4a:81:81:73:73:93:e6:a3:35:9d:15:09:38:3c:
42:97:7e:2c:43:7b:31:47:ad:64:d7:a4:e8:16:bc:8f:38:61:
60:3c:ff:71:64:57:90:93:86:c7:5f:13:e4:34:3b:3a:67:db:
04:d2:b1:03:1d:62:82:32:e8:e8:8e:38:08:be:ac:48:0c:0d:
26:9d:bb:2c:28:03:0f:9f:d1:75:8b:46:c8:c5:91:4f:a8:42:
81:19:fb:08:ee:e7:9a:d8:ec:cd:a6:3c:4a:d7:d4:31:b1:77:
45:3e:19:96:f7:66:52:26:db:1d:50:19:23:52:fd:5f:cf:d5:
69:7a:29:fa:f0:b0:e6:24:92:2a:02:70:c7:7a:17:0f:12:3b:
77:1e:e2:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:05 2025 by rpki-client