Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/4f51ef-adc6-4a1c-82d7-5785b1573a69/1/o1tATfBs0IGSsA9mNLENrKJQyM0.roa
File: o1tATfBs0IGSsA9mNLENrKJQyM0.roa (raw, json)
Hash identifier: ZxlWaKz2MWNm+wmwylv0uajzl7EJhjrYzpnsl27ndj8=
Subject key identifier: A3:5B:40:4D:F0:6C:D0:81:92:B0:0F:66:34:B1:0D:AC:A2:50:C8:CD
Certificate issuer: /CN=6499f71e15c0f38ceba257d30304ed44bea87c50
Certificate serial: 12EC8DEF
Authority key identifier: 64:99:F7:1E:15:C0:F3:8C:EB:A2:57:D3:03:04:ED:44:BE:A8:7C:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZJn3HhXA84zrolfTAwTtRL6ofFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/4f51ef-adc6-4a1c-82d7-5785b1573a69/1/o1tATfBs0IGSsA9mNLENrKJQyM0.roa
Signing time: Sun 20 Mar 2022 09:54:03 +0000
ROA not before: Sun 20 Mar 2022 09:54:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25374
IP address blocks: 195.39.213.0/24 maxlen: 24
195.39.212.0/24 maxlen: 24
195.39.212.0/23 maxlen: 23
109.199.224.0/24 maxlen: 24
109.199.224.0/19 maxlen: 19
109.199.226.0/24 maxlen: 24
109.199.225.0/24 maxlen: 24
109.199.233.0/24 maxlen: 24
109.199.232.0/24 maxlen: 24
109.199.228.0/24 maxlen: 24
109.199.227.0/24 maxlen: 24
109.199.231.0/24 maxlen: 24
109.199.230.0/24 maxlen: 24
109.199.229.0/24 maxlen: 24
109.199.235.0/24 maxlen: 24
109.199.234.0/24 maxlen: 24
109.199.238.0/24 maxlen: 32
109.199.237.0/24 maxlen: 24
109.199.236.0/24 maxlen: 24
109.199.240.0/24 maxlen: 24
109.199.239.0/24 maxlen: 24
109.199.246.0/24 maxlen: 24
109.199.242.0/24 maxlen: 24
109.199.241.0/24 maxlen: 24
109.199.245.0/24 maxlen: 24
109.199.244.0/24 maxlen: 24
109.199.243.0/24 maxlen: 24
109.199.249.0/24 maxlen: 24
109.199.248.0/24 maxlen: 24
109.199.247.0/24 maxlen: 24
109.199.251.0/24 maxlen: 32
109.199.252.0/24 maxlen: 24
109.199.250.0/24 maxlen: 24
109.199.253.0/24 maxlen: 24
109.199.255.0/24 maxlen: 24
109.199.254.0/24 maxlen: 24
195.24.90.0/24 maxlen: 24
195.24.89.0/24 maxlen: 24
195.24.88.0/24 maxlen: 24
195.24.88.0/21 maxlen: 21
195.24.91.0/24 maxlen: 24
195.24.95.0/24 maxlen: 24
195.24.94.0/24 maxlen: 24
195.24.93.0/24 maxlen: 24
195.24.92.0/24 maxlen: 24
185.2.209.0/24 maxlen: 24
185.2.211.0/24 maxlen: 24
185.2.210.0/24 maxlen: 24
185.2.208.0/22 maxlen: 22
185.2.208.0/24 maxlen: 24
93.183.148.0/24 maxlen: 32
93.183.147.0/24 maxlen: 24
93.183.146.0/24 maxlen: 24
93.183.151.0/24 maxlen: 24
93.183.150.0/24 maxlen: 24
93.183.149.0/24 maxlen: 24
93.183.152.0/24 maxlen: 24
93.183.158.0/24 maxlen: 24
93.183.157.0/24 maxlen: 24
93.183.156.0/24 maxlen: 24
93.183.159.0/24 maxlen: 24
93.183.155.0/24 maxlen: 24
93.183.154.0/24 maxlen: 24
93.183.153.0/24 maxlen: 24
93.183.162.0/24 maxlen: 24
93.183.161.0/24 maxlen: 24
93.183.160.0/24 maxlen: 24
93.183.165.0/24 maxlen: 24
93.183.164.0/24 maxlen: 24
93.183.163.0/24 maxlen: 24
93.183.166.0/24 maxlen: 24
93.183.172.0/24 maxlen: 24
93.183.171.0/24 maxlen: 24
93.183.170.0/24 maxlen: 24
93.183.169.0/24 maxlen: 24
93.183.168.0/24 maxlen: 24
93.183.167.0/24 maxlen: 24
93.183.176.0/24 maxlen: 24
93.183.175.0/24 maxlen: 24
93.183.174.0/24 maxlen: 24
93.183.173.0/24 maxlen: 24
93.183.179.0/24 maxlen: 24
93.183.177.0/24 maxlen: 24
93.183.178.0/24 maxlen: 32
93.183.186.0/24 maxlen: 24
93.183.185.0/24 maxlen: 24
93.183.184.0/24 maxlen: 24
93.183.180.0/24 maxlen: 32
93.183.183.0/24 maxlen: 24
93.183.182.0/24 maxlen: 24
93.183.181.0/24 maxlen: 24
93.183.191.0/24 maxlen: 24
93.183.190.0/24 maxlen: 24
93.183.189.0/24 maxlen: 24
93.183.188.0/24 maxlen: 24
93.183.187.0/24 maxlen: 24
93.183.131.0/24 maxlen: 32
93.183.130.0/24 maxlen: 24
93.183.129.0/24 maxlen: 24
93.183.128.0/18 maxlen: 18
93.183.128.0/24 maxlen: 24
93.183.132.0/24 maxlen: 24
93.183.137.0/24 maxlen: 24
93.183.136.0/24 maxlen: 24
93.183.135.0/24 maxlen: 24
93.183.139.0/24 maxlen: 24
93.183.138.0/24 maxlen: 24
93.183.134.0/24 maxlen: 24
93.183.133.0/24 maxlen: 24
93.183.144.0/24 maxlen: 24
93.183.143.0/24 maxlen: 24
93.183.142.0/24 maxlen: 32
93.183.145.0/24 maxlen: 24
93.183.141.0/24 maxlen: 32
93.183.140.0/24 maxlen: 24
2a02:4dc0::/48 maxlen: 48
2a02:4dc0::/36 maxlen: 36
2a02:4dc0:1000::/36 maxlen: 36
2a02:4dc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 317492719 (0x12ec8def)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6499f71e15c0f38ceba257d30304ed44bea87c50
Validity
Not Before: Mar 20 09:54:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a35b404df06cd08192b00f6634b10daca250c8cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:84:ca:d9:09:33:2e:29:bf:aa:7c:83:dc:b0:
86:76:62:a5:bd:13:15:3a:20:54:0a:35:5c:23:f6:
05:39:25:18:2d:c2:fc:99:66:7f:90:5e:98:16:a2:
db:c7:48:c6:11:8c:87:61:e3:79:1c:f6:8b:40:28:
f4:46:80:5c:93:89:1f:72:f6:19:af:30:c8:ad:85:
98:1a:73:cb:34:dd:10:c5:f2:1a:fa:f0:d8:81:00:
4e:24:e6:b6:f0:f2:12:3d:44:42:17:79:b5:14:b3:
c2:42:1e:d2:6b:2b:9a:47:21:b2:8c:1b:ea:02:cc:
1f:48:1f:fd:da:30:2b:38:13:fd:5d:c3:55:85:3b:
bf:f6:a2:28:69:0d:d3:fe:84:78:45:8e:e5:bb:71:
d3:c3:ff:42:5b:0e:f7:1a:50:6e:2c:40:f7:02:c0:
d5:6f:07:c2:c7:02:c5:19:54:4a:71:2a:c1:1e:5d:
0b:39:6e:9b:28:51:45:98:10:8d:95:75:ef:2f:8a:
aa:78:f1:95:a0:77:2d:00:03:bf:62:ac:33:15:fb:
a7:d2:4c:2d:8b:6d:ea:f9:9e:da:45:45:71:79:78:
51:8a:e9:e8:8d:ee:ec:67:55:d3:64:f3:e1:30:e7:
62:fe:14:d8:a2:66:a2:71:8f:f3:c1:1a:26:d7:52:
da:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:5B:40:4D:F0:6C:D0:81:92:B0:0F:66:34:B1:0D:AC:A2:50:C8:CD
X509v3 Authority Key Identifier:
keyid:64:99:F7:1E:15:C0:F3:8C:EB:A2:57:D3:03:04:ED:44:BE:A8:7C:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZJn3HhXA84zrolfTAwTtRL6ofFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/4f51ef-adc6-4a1c-82d7-5785b1573a69/1/o1tATfBs0IGSsA9mNLENrKJQyM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/4f51ef-adc6-4a1c-82d7-5785b1573a69/1/ZJn3HhXA84zrolfTAwTtRL6ofFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.183.128.0/18
109.199.224.0/19
185.2.208.0/22
195.24.88.0/21
195.39.212.0/23
IPv6:
2a02:4dc0::/32
Signature Algorithm: sha256WithRSAEncryption
1e:c4:54:46:f7:cd:36:f0:f8:80:7c:76:ac:6e:10:b8:d6:82:
6c:de:7c:47:f4:d5:3a:97:99:12:97:d7:27:66:e5:98:48:a5:
c3:b1:2e:94:a6:d4:57:1d:63:e9:39:88:78:e7:22:a7:74:bf:
8d:96:e1:b4:69:82:6a:ea:0f:3c:8b:a5:2d:ec:fe:8d:b8:06:
59:00:cc:85:84:0f:c1:69:a6:9e:c2:96:6a:6c:bd:ec:ab:8b:
a8:5c:9c:9c:e2:67:1a:74:cf:fe:d2:d9:b4:ab:13:13:40:2f:
89:1f:55:a1:0d:f7:f0:58:1f:cc:09:a5:ca:45:ec:72:b0:2b:
ab:e6:8d:24:6a:15:da:d8:81:77:76:ca:73:fe:17:ff:83:f8:
a5:7f:0a:60:91:07:3b:4d:51:02:67:bf:95:83:5c:ec:ff:a2:
6e:8f:e9:08:6d:18:76:a5:be:0d:e1:7e:74:b1:bf:9d:df:d1:
52:d5:56:58:a7:12:7b:4b:73:97:a8:68:85:dc:7b:45:92:25:
4d:65:3f:1f:0e:cb:14:2a:49:45:23:01:1d:d9:1b:24:d6:3a:
21:5f:47:c0:dd:bd:35:84:dc:ac:3d:40:c3:6d:9b:f4:af:ea:
22:4c:6f:8f:1f:37:29:33:e9:68:b5:97:16:33:9e:a9:ea:d6:
11:01:de:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:01:01 2025 by rpki-client