Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/yI4nBbbkgWLMOyO90MrQL4GWTb0.roa
File: yI4nBbbkgWLMOyO90MrQL4GWTb0.roa (raw, json)
Hash identifier: WMwM8ZP/Fi5uXzZAMFDghEP9wSccIHnm/UYnk7DRDkU=
Subject key identifier: C8:8E:27:05:B6:E4:81:62:CC:3B:23:BD:D0:CA:D0:2F:81:96:4D:BD
Certificate issuer: /CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Certificate serial: 0185FC4460EB82AEC7DBC5A74A92BDB716CA
Authority key identifier: 49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/yI4nBbbkgWLMOyO90MrQL4GWTb0.roa
Signing time: Sun 29 Jan 2023 06:43:37 +0000
ROA not before: Sun 29 Jan 2023 06:43:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51684
IP address blocks: 185.16.26.0/24 maxlen: 24
185.16.26.0/23 maxlen: 23
5.181.196.0/24 maxlen: 24
89.46.204.0/23 maxlen: 23
89.46.206.0/24 maxlen: 24
89.46.206.0/23 maxlen: 23
89.46.203.0/24 maxlen: 24
89.46.202.0/24 maxlen: 24
89.46.202.0/23 maxlen: 23
89.46.204.0/24 maxlen: 24
89.46.205.0/24 maxlen: 24
89.46.200.0/24 maxlen: 24
89.46.200.0/23 maxlen: 23
89.46.201.0/24 maxlen: 24
89.46.207.0/24 maxlen: 24
223.25.125.0/24 maxlen: 24
223.25.120.0/24 maxlen: 24
223.25.122.0/24 maxlen: 24
223.25.126.0/24 maxlen: 24
91.217.185.0/24 maxlen: 24
185.254.203.0/24 maxlen: 24
185.254.200.0/24 maxlen: 24
185.254.200.0/23 maxlen: 23
185.254.201.0/24 maxlen: 24
82.199.208.0/23 maxlen: 23
82.199.208.0/24 maxlen: 24
82.199.209.0/24 maxlen: 24
82.199.210.0/24 maxlen: 24
82.199.211.0/24 maxlen: 24
82.199.212.0/24 maxlen: 24
82.199.212.0/23 maxlen: 23
82.199.213.0/24 maxlen: 24
82.199.214.0/23 maxlen: 23
82.199.218.0/23 maxlen: 23
82.199.218.0/24 maxlen: 24
82.199.219.0/24 maxlen: 24
82.199.214.0/24 maxlen: 24
82.199.215.0/24 maxlen: 24
82.199.216.0/24 maxlen: 24
82.199.216.0/23 maxlen: 23
82.199.217.0/24 maxlen: 24
82.199.221.0/24 maxlen: 24
82.199.222.0/24 maxlen: 24
82.199.222.0/23 maxlen: 23
82.199.223.0/24 maxlen: 24
82.199.220.0/24 maxlen: 24
82.199.220.0/23 maxlen: 23
185.247.37.0/24 maxlen: 24
185.247.38.0/24 maxlen: 24
185.247.36.0/24 maxlen: 24
185.247.36.0/23 maxlen: 23
185.95.204.0/23 maxlen: 23
185.95.204.0/24 maxlen: 24
185.95.205.0/24 maxlen: 24
185.95.206.0/24 maxlen: 24
185.95.206.0/23 maxlen: 23
185.95.207.0/24 maxlen: 24
91.213.191.0/24 maxlen: 24
185.247.38.0/23 maxlen: 23
185.247.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:fc:44:60:eb:82:ae:c7:db:c5:a7:4a:92:bd:b7:16:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Validity
Not Before: Jan 29 06:43:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c88e2705b6e48162cc3b23bdd0cad02f81964dbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:89:99:c5:67:8e:fc:65:25:e0:51:16:b1:f7:
5a:63:a5:89:ab:cd:b6:d6:45:4b:f3:6a:7e:6d:d2:
c7:c6:5d:26:b2:f3:fa:51:9e:05:63:85:eb:5c:95:
d6:fd:f9:62:eb:5c:15:5d:39:eb:de:b5:2a:4e:22:
8d:3f:0d:af:44:23:63:29:1e:c4:f8:f0:9c:12:7f:
7c:91:bc:9f:86:00:a9:aa:6f:64:14:58:cc:76:88:
53:25:96:24:be:f7:2e:ac:4f:6c:9d:90:be:5b:8c:
30:61:42:74:74:2c:80:2b:29:19:91:35:f8:16:a1:
5f:49:e6:46:d8:09:58:51:44:e7:e0:e3:69:f8:2e:
0e:8f:2a:3a:c9:78:62:f8:e4:0f:58:40:05:99:7b:
14:4c:b1:b5:1a:f2:97:37:80:3f:a2:78:b5:d7:62:
59:bc:7d:94:52:7b:51:35:84:36:7a:c5:e1:2e:e8:
03:62:00:0b:dd:2c:8e:85:58:17:8a:26:62:43:a1:
ab:29:90:94:c3:12:ff:98:b9:a8:b1:24:ca:c0:e0:
65:b0:35:14:4f:49:d9:f4:b7:a9:25:db:89:ee:cd:
f4:59:d2:89:47:4a:05:56:40:94:8f:6e:95:11:9d:
d8:c7:61:db:85:38:c2:c3:ff:80:2e:5d:1d:31:fc:
c0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:8E:27:05:B6:E4:81:62:CC:3B:23:BD:D0:CA:D0:2F:81:96:4D:BD
X509v3 Authority Key Identifier:
keyid:49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/yI4nBbbkgWLMOyO90MrQL4GWTb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/Sd2PGmKl1_gCEt4PPv51svozj_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.196.0/24
82.199.208.0/20
89.46.200.0/21
91.213.191.0/24
91.217.185.0/24
185.16.26.0/23
185.95.204.0/22
185.247.36.0/22
185.254.200.0/23
185.254.203.0/24
223.25.120.0/24
223.25.122.0/24
223.25.125.0-223.25.126.255
Signature Algorithm: sha256WithRSAEncryption
16:ef:e2:45:c1:14:81:bb:ee:31:6e:82:70:e7:bb:83:2d:97:
c2:f8:b0:3f:9c:a3:fb:37:93:5d:44:f0:75:cb:a4:34:09:8c:
3a:9e:f8:1c:44:17:f3:91:1d:14:d4:ec:c7:d8:f2:42:da:b8:
72:e3:e3:95:bf:ca:9c:67:69:3e:5d:75:23:31:03:13:12:70:
41:c3:3a:81:bf:e4:d7:e6:4b:d4:fb:e9:8c:92:40:bd:07:3c:
17:74:46:0f:a7:0d:a2:a7:4c:48:56:26:94:b2:67:e2:4e:c2:
c6:f2:4f:4b:5f:20:c4:62:e7:6d:e0:85:71:37:9a:ce:2c:cf:
11:c9:65:55:6a:78:e5:91:a3:25:59:73:7c:69:48:98:97:9f:
ea:cf:26:b9:92:0a:fd:63:20:8c:70:98:4a:56:17:23:e5:5e:
bf:06:ea:cb:f1:ba:02:88:03:3c:65:63:58:c0:4a:6f:ba:9f:
45:94:27:6f:b0:c3:90:88:76:78:17:9b:1f:5f:53:37:2c:c0:
fc:a9:6e:3f:9b:1f:cf:14:2e:f9:e9:97:75:6f:7c:86:74:6a:
d4:bc:79:75:b2:80:1a:ae:f2:7a:5c:5e:41:a3:aa:9b:f1:11:
e8:54:1f:fe:70:bf:52:07:34:3e:8f:8d:80:da:f4:e1:77:da:
80:75:f2:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:33 2025 by rpki-client