Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/N6lP6_g3ioszlSHyjTV6TRK_tD0.roa
File: N6lP6_g3ioszlSHyjTV6TRK_tD0.roa (raw, json)
Hash identifier: 1k3cJ112mmyAjKFsekP3hLmt/srxY0QHWL3VT8Owd3k=
Subject key identifier: 37:A9:4F:EB:F8:37:8A:8B:33:95:21:F2:8D:35:7A:4D:12:BF:B4:3D
Certificate issuer: /CN=b155daddb871b9d6a53cd6b47f776250837f7774
Certificate serial: 018899E094B751816533AE5344EF71EB75B1
Authority key identifier: B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/N6lP6_g3ioszlSHyjTV6TRK_tD0.roa
Signing time: Thu 08 Jun 2023 07:20:12 +0000
ROA not before: Thu 08 Jun 2023 07:20:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9145
IP address blocks: 92.252.0.0/17 maxlen: 24
212.95.96.0/19 maxlen: 24
212.6.64.0/18 maxlen: 24
85.16.0.0/16 maxlen: 24
95.33.0.0/16 maxlen: 24
85.8.64.0/18 maxlen: 24
213.252.128.0/18 maxlen: 24
37.138.0.0/16 maxlen: 24
82.149.160.0/19 maxlen: 24
90.153.0.0/17 maxlen: 24
89.166.128.0/17 maxlen: 24
213.168.192.0/19 maxlen: 24
80.66.0.0/19 maxlen: 24
62.89.160.0/19 maxlen: 24
213.183.160.0/19 maxlen: 24
91.96.0.0/15 maxlen: 24
31.150.0.0/16 maxlen: 24
80.228.0.0/16 maxlen: 24
87.245.0.0/18 maxlen: 24
89.233.64.0/19 maxlen: 24
31.184.0.0/18 maxlen: 24
213.182.96.0/19 maxlen: 24
91.248.0.0/15 maxlen: 24
31.187.112.0/20 maxlen: 24
213.170.160.0/19 maxlen: 24
178.142.0.0/16 maxlen: 24
188.118.128.0/18 maxlen: 24
2a02:8020::/30 maxlen: 48
2a02:8200::/27 maxlen: 48
2a00:1470::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:99:e0:94:b7:51:81:65:33:ae:53:44:ef:71:eb:75:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155daddb871b9d6a53cd6b47f776250837f7774
Validity
Not Before: Jun 8 07:20:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37a94febf8378a8b339521f28d357a4d12bfb43d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d0:f6:48:1a:12:68:21:d4:81:f0:2e:5a:8f:
00:22:b1:da:01:56:c4:37:7f:f1:d9:cf:b2:27:69:
5d:0a:0a:51:6c:73:7b:48:b8:64:f1:d0:32:1b:c6:
79:e5:b5:d5:0c:f5:23:b9:2a:db:51:84:66:41:ca:
d0:c0:51:9b:88:2d:67:05:f5:56:b6:05:e1:f5:95:
21:04:b1:81:8a:b7:cf:a9:39:b9:52:6b:a7:ed:c8:
ef:d8:8a:d2:95:6d:73:38:bb:b5:a8:bf:80:23:bf:
14:9f:54:b1:aa:7b:e8:5d:2d:61:b8:2a:89:aa:9c:
3d:05:d5:89:63:5d:31:25:d3:e2:7d:b6:4a:a9:4b:
1e:10:fc:e0:3c:59:21:ff:8a:cb:e2:5b:21:9f:52:
4a:fc:16:61:f1:30:53:e7:22:6e:97:14:dc:58:c7:
df:16:66:33:57:2c:2a:89:0a:9d:54:4f:2c:ee:c5:
bd:18:d1:b3:47:9d:50:4b:0f:0a:d9:9e:31:55:dc:
89:dc:84:b7:f4:10:d1:88:4b:4e:b5:7e:48:7e:d6:
67:f7:f4:ed:1f:63:84:9e:2f:39:88:f3:96:df:58:
a0:a1:78:dd:66:42:8d:db:17:b5:e7:f8:4b:c3:35:
12:27:94:b1:f3:6e:9e:fc:53:47:0a:46:05:62:40:
25:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A9:4F:EB:F8:37:8A:8B:33:95:21:F2:8D:35:7A:4D:12:BF:B4:3D
X509v3 Authority Key Identifier:
keyid:B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/N6lP6_g3ioszlSHyjTV6TRK_tD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/sVXa3bhxudalPNa0f3diUIN_d3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.150.0.0/16
31.184.0.0/18
31.187.112.0/20
37.138.0.0/16
62.89.160.0/19
80.66.0.0/19
80.228.0.0/16
82.149.160.0/19
85.8.64.0/18
85.16.0.0/16
87.245.0.0/18
89.166.128.0/17
89.233.64.0/19
90.153.0.0/17
91.96.0.0/15
91.248.0.0/15
92.252.0.0/17
95.33.0.0/16
178.142.0.0/16
188.118.128.0/18
212.6.64.0/18
212.95.96.0/19
213.168.192.0/19
213.170.160.0/19
213.182.96.0/19
213.183.160.0/19
213.252.128.0/18
IPv6:
2a00:1470::/32
2a02:8020::/30
2a02:8200::/27
Signature Algorithm: sha256WithRSAEncryption
14:01:6d:2a:d2:f8:7f:f3:01:9e:d6:fd:fc:28:0a:73:0b:2c:
7f:86:cf:73:ff:07:93:dd:c9:7d:d4:79:d1:34:c8:df:9c:e4:
06:97:63:8f:71:4c:08:86:12:6c:0b:56:9a:4c:c0:f5:18:70:
23:92:60:fb:4d:0c:77:02:e1:4f:a5:74:15:c4:b2:cf:cb:f9:
ce:87:6b:d3:2f:8e:fb:ca:e3:71:04:53:fa:36:b1:91:cf:ca:
ed:4d:a7:d6:a9:b4:72:21:3c:7f:a8:a0:f0:17:99:0e:c2:9c:
37:a5:ed:4b:87:96:87:13:52:ae:06:27:d7:5e:72:63:72:8a:
a6:06:b5:f0:e8:c3:b7:1d:a1:87:8f:13:b5:18:d9:7a:69:d8:
fb:20:29:a9:16:41:f1:04:31:d5:bb:9a:0c:d3:77:00:02:fd:
88:10:04:26:05:da:41:33:9c:44:3b:b8:21:32:32:db:d9:fb:
b8:d3:6a:5e:f4:83:b2:3f:20:e1:cd:74:72:d3:26:e2:60:2c:
0e:19:4d:ce:50:88:65:da:71:b8:68:4f:ba:85:bc:b6:d3:84:
cb:f8:27:8f:c6:43:02:37:82:4b:38:04:47:ed:20:00:34:ff:
0e:67:51:3e:97:2f:ac:cb:07:f8:fa:9d:f6:1e:09:33:b7:28:
9d:61:c5:16
-----BEGIN CERTIFICATE-----
MIIFszCCBJugAwIBAgISAYiZ4JS3UYFlM65TRO9x63WxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTVkYWRkYjg3MWI5ZDZhNTNjZDZiNDdmNzc2MjUwODM3
Zjc3NzQwHhcNMjMwNjA4MDcyMDEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzN2E5NGZlYmY4Mzc4YThiMzM5NTIxZjI4ZDM1N2E0ZDEyYmZiNDNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAntD2SBoSaCHUgfAuWo8AIrHaAVbE
N3/x2c+yJ2ldCgpRbHN7SLhk8dAyG8Z55bXVDPUjuSrbUYRmQcrQwFGbiC1nBfVW
tgXh9ZUhBLGBirfPqTm5Umun7cjv2IrSlW1zOLu1qL+AI78Un1SxqnvoXS1huCqJ
qpw9BdWJY10xJdPifbZKqUseEPzgPFkh/4rL4lshn1JK/BZh8TBT5yJulxTcWMff
FmYzVywqiQqdVE8s7sW9GNGzR51QSw8K2Z4xVdyJ3IS39BDRiEtOtX5IftZn9/Tt
H2OEni85iPOW31igoXjdZkKN2xe15/hLwzUSJ5Sx826e/FNHCkYFYkAlaQIDAQAB
o4ICvzCCArswHQYDVR0OBBYEFDepT+v4N4qLM5Uh8o01ek0Sv7Q9MB8GA1UdIwQY
MBaAFLFV2t24cbnWpTzWtH93YlCDf3d0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZYYTNiaHh1ZGFsUE5hMGYzZGlVSU5fZDNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS84ZmQ2ZTctNDk2Zi00N2NmLTgwZmIt
NTQ2OGIyY2YwYTc3LzEvTjZsUDZfZzNpb3N6bFNIeWpUVjZUUktfdEQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS84ZmQ2ZTctNDk2Zi00N2NmLTgwZmItNTQ2OGIyY2YwYTc3
LzEvc1ZYYTNiaHh1ZGFsUE5hMGYzZGlVSU5fZDNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHUBggrBgEFBQcBBwEB/wSBxDCBwTCBoQQCAAEwgZoDAwAf
lgMEBh+4AAMEBB+7cAMDACWKAwQFPlmgAwQFUEIAAwMAUOQDBAVSlaADBAZVCEAD
AwBVEAMEBlf1AAMEB1mmgAMEBVnpQAMEB1qZAAMDAVtgAwMBW/gDBAdc/AADAwBf
IQMDALKOAwQGvHaAAwQG1AZAAwQF1F9gAwQF1ajAAwQF1aqgAwQF1bZgAwQF1beg
AwQG1fyAMBsEAgACMBUDBQAqABRwAwUCKgKAIAMFBSoCggAwDQYJKoZIhvcNAQEL
BQADggEBABQBbSrS+H/zAZ7W/fwoCnMLLH+Gz3P/B5PdyX3UedE0yN+c5AaXY49x
TAiGEmwLVppMwPUYcCOSYPtNDHcC4U+ldBXEss/L+c6Ha9MvjvvK43EEU/o2sZHP
yu1Np9aptHIhPH+ooPAXmQ7CnDel7UuHlocTUq4GJ9decmNyiqYGtfDow7cdoYeP
E7UY2Xpp2PsgKakWQfEEMdW7mgzTdwAC/YgQBCYF2kEznEQ7uCEyMtvZ+7jTal70
g7I/IOHNdHLTJuJgLA4ZTc5QiGXacbhoT7qFvLbThMv4J4/GQwI3gks4BEftIAA0
/w5nUT6XL6zLB/j6nfYeCTO3KJ1hxRY=
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:51:23 2025 by rpki-client