Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/cOPzMI6JiD79BuS1T1YiQxnoi-8.roa
File: cOPzMI6JiD79BuS1T1YiQxnoi-8.roa (raw, json)
Hash identifier: Uq3rXMskY6s8KrPJWtjdeYd6kC1ze7eYSA1y7ebanWY=
Subject key identifier: 70:E3:F3:30:8E:89:88:3E:FD:06:E4:B5:4F:56:22:43:19:E8:8B:EF
Certificate issuer: /CN=b155daddb871b9d6a53cd6b47f776250837f7774
Certificate serial: 018450C098B01F8EB8EA46BBBD003E8916F6
Authority key identifier: B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/cOPzMI6JiD79BuS1T1YiQxnoi-8.roa
Signing time: Mon 07 Nov 2022 06:21:50 +0000
ROA not before: Mon 07 Nov 2022 06:21:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9145
IP address blocks: 92.252.0.0/17 maxlen: 17
212.95.96.0/19 maxlen: 19
212.6.64.0/18 maxlen: 18
85.16.0.0/16 maxlen: 16
95.33.0.0/16 maxlen: 16
85.8.64.0/18 maxlen: 18
213.252.128.0/18 maxlen: 24
37.138.0.0/16 maxlen: 16
82.149.160.0/19 maxlen: 19
90.153.0.0/17 maxlen: 17
89.166.128.0/17 maxlen: 17
213.168.192.0/19 maxlen: 19
80.66.0.0/19 maxlen: 24
62.89.160.0/19 maxlen: 24
213.183.160.0/19 maxlen: 19
91.96.0.0/15 maxlen: 15
31.150.0.0/16 maxlen: 16
80.228.0.0/16 maxlen: 24
87.245.0.0/18 maxlen: 18
89.233.64.0/19 maxlen: 19
31.184.0.0/18 maxlen: 18
91.248.0.0/15 maxlen: 15
213.182.96.0/19 maxlen: 19
31.187.112.0/20 maxlen: 20
213.170.160.0/19 maxlen: 19
178.142.0.0/16 maxlen: 16
188.118.128.0/18 maxlen: 18
2a02:8200::/27 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:50:c0:98:b0:1f:8e:b8:ea:46:bb:bd:00:3e:89:16:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155daddb871b9d6a53cd6b47f776250837f7774
Validity
Not Before: Nov 7 06:21:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70e3f3308e89883efd06e4b54f56224319e88bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:0b:90:c3:34:03:02:02:d9:6f:13:0e:7f:1b:
32:12:ea:05:ea:68:dc:f7:4f:4a:b3:e8:3e:f9:22:
e3:a3:ae:4d:ef:fb:dd:0f:db:73:fc:ba:cc:ca:c4:
d0:86:c7:34:c6:15:7a:d0:41:0e:a7:77:d1:68:40:
20:6b:6a:de:52:ea:85:23:29:aa:b1:8c:57:5b:4e:
b1:22:c3:ae:89:3b:15:e5:71:a6:a6:6e:d1:b4:37:
d3:48:2c:91:7a:0d:d4:e2:64:ed:78:3d:7c:65:b1:
b8:ab:58:29:3e:e0:44:8d:e5:96:6e:f1:ab:80:a4:
f3:9c:41:54:ad:79:12:50:45:af:30:89:23:bb:f1:
23:69:4e:1a:d9:2d:36:b7:4d:8d:68:5e:c7:94:c2:
42:db:96:ab:dc:df:ba:de:3e:83:02:2d:65:48:8e:
d6:f7:5f:22:43:b3:b7:d6:9d:bc:18:10:24:5d:a1:
05:e5:40:50:c7:7d:b1:c9:09:c0:ef:e4:ef:83:78:
f0:d9:0f:a8:30:e3:cf:9a:54:9f:3f:b4:8c:93:26:
b3:59:95:5c:69:0d:f8:d0:10:95:76:e3:ab:b3:ff:
46:42:d9:50:1f:fa:8e:17:87:b7:7a:d3:98:9f:10:
d6:75:bf:7c:17:b4:97:88:bc:7d:b1:9b:93:55:1a:
f8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E3:F3:30:8E:89:88:3E:FD:06:E4:B5:4F:56:22:43:19:E8:8B:EF
X509v3 Authority Key Identifier:
keyid:B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/cOPzMI6JiD79BuS1T1YiQxnoi-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/sVXa3bhxudalPNa0f3diUIN_d3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.150.0.0/16
31.184.0.0/18
31.187.112.0/20
37.138.0.0/16
62.89.160.0/19
80.66.0.0/19
80.228.0.0/16
82.149.160.0/19
85.8.64.0/18
85.16.0.0/16
87.245.0.0/18
89.166.128.0/17
89.233.64.0/19
90.153.0.0/17
91.96.0.0/15
91.248.0.0/15
92.252.0.0/17
95.33.0.0/16
178.142.0.0/16
188.118.128.0/18
212.6.64.0/18
212.95.96.0/19
213.168.192.0/19
213.170.160.0/19
213.182.96.0/19
213.183.160.0/19
213.252.128.0/18
IPv6:
2a02:8200::/27
Signature Algorithm: sha256WithRSAEncryption
16:87:a7:61:be:1b:e9:20:85:dc:0e:27:b7:5d:e2:0e:52:30:
58:b8:51:7a:92:b1:6f:cb:2c:81:51:7a:01:56:e9:c4:47:84:
18:e5:f5:d4:78:0d:b6:1d:6d:e3:17:12:41:58:fe:ac:c4:97:
5c:b2:71:1c:4b:69:28:13:55:f8:12:8e:fb:1c:dc:31:f1:e4:
c1:7a:77:02:84:f6:ee:2d:78:e1:32:9b:ec:2f:8b:e6:09:eb:
49:1a:70:2e:29:29:d2:90:86:98:bb:c0:a6:c1:07:80:3e:6e:
e4:27:4d:2c:93:b4:ff:40:0f:90:9b:55:1a:95:71:ef:bf:9c:
f3:69:ff:23:0d:24:91:3e:76:45:5d:cf:18:76:2c:b3:8a:e9:
b5:6b:77:03:74:1e:38:e9:f3:7f:01:99:a1:b2:cf:36:98:a1:
10:bb:c2:90:1a:8d:8c:5d:44:8d:18:46:d5:a6:d4:b9:1a:9b:
92:d1:e4:c7:9b:d5:46:6b:90:27:ed:df:46:bb:3f:34:e4:b4:
90:13:6c:0d:8c:17:85:8f:9d:d7:2c:eb:9c:e6:15:f0:94:df:
1c:e8:5c:2d:e0:0b:1c:a0:76:2d:c1:d1:4e:c6:b3:5e:d1:65:
74:fb:40:b7:5a:23:8c:c7:3c:22:08:9a:51:9f:bb:ed:54:77:
1c:09:50:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:07 2025 by rpki-client