Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/gzbycmGVPzZMCyyd-w8Z1VH7KZY.roa
File: gzbycmGVPzZMCyyd-w8Z1VH7KZY.roa (raw, json)
Hash identifier: cm9jVPjPahRfgetuYnhQQQZFIzboeQgP6OIAq7NPO+8=
Subject key identifier: 83:36:F2:72:61:95:3F:36:4C:0B:2C:9D:FB:0F:19:D5:51:FB:29:96
Certificate issuer: /CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Certificate serial: 01882BEC6DC10EC7FA6B9EEBA635D31150C3
Authority key identifier: F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/gzbycmGVPzZMCyyd-w8Z1VH7KZY.roa
Signing time: Wed 17 May 2023 22:54:54 +0000
ROA not before: Wed 17 May 2023 22:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5607
IP address blocks: 51.199.224.0/20 maxlen: 20
188.220.0.0/14 maxlen: 14
51.146.0.0/16 maxlen: 16
51.199.240.0/21 maxlen: 21
51.199.248.0/22 maxlen: 22
90.192.0.0/11 maxlen: 11
93.96.224.0/19 maxlen: 19
87.80.0.0/15 maxlen: 15
51.198.0.0/16 maxlen: 16
51.198.0.0/15 maxlen: 15
51.199.192.0/19 maxlen: 19
176.255.240.0/24 maxlen: 24
176.255.242.0/24 maxlen: 24
176.255.241.0/24 maxlen: 24
51.190.0.0/15 maxlen: 15
151.224.0.0/13 maxlen: 13
5.64.0.0/13 maxlen: 13
51.199.0.0/17 maxlen: 17
51.194.0.0/16 maxlen: 16
93.96.0.0/17 maxlen: 17
46.64.0.0/15 maxlen: 15
94.192.0.0/14 maxlen: 14
78.86.0.0/16 maxlen: 16
51.182.0.0/15 maxlen: 15
51.241.0.0/16 maxlen: 16
149.241.0.0/16 maxlen: 16
2.120.0.0/13 maxlen: 13
176.248.0.0/13 maxlen: 13
2.216.0.0/13 maxlen: 13
51.199.128.0/18 maxlen: 18
51.186.0.0/15 maxlen: 15
94.0.0.0/12 maxlen: 12
93.96.128.0/18 maxlen: 18
51.19.0.0/16 maxlen: 16
176.24.0.0/14 maxlen: 14
78.105.0.0/16 maxlen: 16
2a02:c78::/29 maxlen: 29
2a02:c7b::/32 maxlen: 32
2a02:c7a::/32 maxlen: 32
2a02:c7d:8000::/33 maxlen: 33
2a02:c7d::/33 maxlen: 33
2a02:c7c::/30 maxlen: 30
2a02:c7f:8000::/33 maxlen: 33
2a02:c7f::/33 maxlen: 33
2a02:c7e:8000::/33 maxlen: 33
2a02:c7e::/33 maxlen: 33
2a02:c7c:8000::/33 maxlen: 33
2a02:c7c::/33 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2b:ec:6d:c1:0e:c7:fa:6b:9e:eb:a6:35:d3:11:50:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Validity
Not Before: May 17 22:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8336f27261953f364c0b2c9dfb0f19d551fb2996
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:8d:7f:02:aa:d5:25:54:38:6e:67:9b:f1:59:
6c:b4:1e:d1:61:46:a0:f2:4e:a7:e6:09:e6:09:ee:
f5:fa:9d:e2:a0:54:b9:3d:ca:98:d4:85:5d:a2:54:
8c:3d:d2:4e:12:de:6c:54:62:f3:c9:dd:84:2b:49:
11:de:f5:78:eb:ca:19:b4:f0:82:9c:58:0f:89:26:
8b:78:d0:11:c9:09:87:f3:fe:6c:0d:1e:58:3c:30:
1f:82:20:bd:d1:0a:32:54:de:e1:f3:b6:18:0b:da:
bb:3b:fe:6b:b3:78:ba:a0:69:3c:92:67:20:bd:b9:
5e:20:c6:d0:b3:d3:7d:5e:34:c6:c6:49:3c:cc:16:
04:27:9b:0b:3b:9a:4c:96:04:07:38:1f:d6:b6:7a:
04:73:d3:ab:e8:23:e2:40:fa:47:a1:8a:84:01:41:
9b:70:45:87:c8:cc:26:2b:07:9c:7a:73:96:f1:70:
46:06:af:79:3a:80:bd:2b:d0:3e:6d:59:56:e7:24:
43:aa:a2:18:4a:84:55:70:d7:cf:1a:7a:fe:7b:de:
d7:6b:4f:8e:54:ea:9d:c7:e8:57:52:72:a7:f7:d6:
bb:f9:d4:33:4f:1d:88:59:c3:98:70:12:ca:51:5f:
88:78:e7:1f:ae:9a:bf:bc:55:b8:fb:83:01:4a:1d:
01:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:36:F2:72:61:95:3F:36:4C:0B:2C:9D:FB:0F:19:D5:51:FB:29:96
X509v3 Authority Key Identifier:
keyid:F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/gzbycmGVPzZMCyyd-w8Z1VH7KZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/9x1KQ3TfIirDI1uWAiBtlr8drII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.120.0.0/13
2.216.0.0/13
5.64.0.0/13
46.64.0.0/15
51.19.0.0/16
51.146.0.0/16
51.182.0.0/15
51.186.0.0/15
51.190.0.0/15
51.194.0.0/16
51.198.0.0/15
51.241.0.0/16
78.86.0.0/16
78.105.0.0/16
87.80.0.0/15
90.192.0.0/11
93.96.0.0-93.96.191.255
93.96.224.0/19
94.0.0.0/12
94.192.0.0/14
149.241.0.0/16
151.224.0.0/13
176.24.0.0/14
176.248.0.0/13
188.220.0.0/14
IPv6:
2a02:c78::/29
Signature Algorithm: sha256WithRSAEncryption
72:82:8f:55:d8:11:55:94:58:ab:00:1c:fb:a4:14:be:8a:aa:
52:a4:dc:a9:75:b7:5b:7c:9e:c6:16:44:de:28:c6:dc:ba:05:
fd:e6:74:d2:d4:af:0e:97:49:e0:10:13:a2:82:3d:e3:d3:97:
54:4d:78:21:bc:2a:5e:00:0f:f0:25:e0:dd:b1:24:ec:21:4d:
d7:44:ca:bb:cb:fc:2e:dd:53:c2:04:e3:28:02:90:fc:05:6c:
03:5c:c3:67:a8:a2:ab:f7:c9:ab:c9:ee:3c:84:80:7e:94:d1:
05:3b:f8:0a:56:f9:11:76:d7:ab:c9:72:4c:08:8b:ce:b5:ef:
a7:cf:72:d1:41:00:54:00:51:45:3f:43:5b:80:b4:30:bb:37:
d8:81:53:3f:16:c4:51:e8:a0:98:db:df:84:18:8b:e9:74:01:
a7:24:10:47:66:72:26:8f:68:b9:6b:37:57:5c:4c:65:f9:da:
28:9a:aa:00:f6:70:96:63:bc:e8:46:c0:b2:21:61:f9:c1:c6:
c5:46:3d:38:c1:6e:5e:74:12:89:e9:13:d5:8b:36:87:d8:99:
bc:7e:c1:cc:de:a3:78:94:ec:09:77:fa:e1:5e:df:5b:8d:34:
ae:f5:71:63:9b:8a:44:18:a0:65:bf:52:82:09:48:48:28:6c:
db:ad:e3:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:48:00 2025 by rpki-client