Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/e4vVtrt3KFFcmn1Rs_suGHX8vJA.roa
File: e4vVtrt3KFFcmn1Rs_suGHX8vJA.roa (raw, json)
Hash identifier: m9bnDh2srmJiYjccM089VgkPglnBs6ivWxyswx211nQ=
Subject key identifier: 7B:8B:D5:B6:BB:77:28:51:5C:9A:7D:51:B3:FB:2E:18:75:FC:BC:90
Certificate issuer: /CN=be550b8eff90cccee9f8d3134b6438996b7d27cd
Certificate serial: 0184574580F20B81907B816BDE6711FE94E1
Authority key identifier: BE:55:0B:8E:FF:90:CC:CE:E9:F8:D3:13:4B:64:38:99:6B:7D:27:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlULjv-QzM7p-NMTS2Q4mWt9J80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/e4vVtrt3KFFcmn1Rs_suGHX8vJA.roa
Signing time: Tue 08 Nov 2022 12:44:43 +0000
ROA not before: Tue 08 Nov 2022 12:44:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204170
IP address blocks: 178.20.17.0/24 maxlen: 24
178.20.16.0/24 maxlen: 24
178.20.16.0/21 maxlen: 21
178.20.18.0/24 maxlen: 24
178.20.19.0/24 maxlen: 24
178.20.22.0/24 maxlen: 24
178.20.23.0/24 maxlen: 24
178.20.20.0/24 maxlen: 24
178.20.21.0/24 maxlen: 24
84.242.37.0/24 maxlen: 24
84.242.35.0/24 maxlen: 24
84.242.36.0/24 maxlen: 24
84.242.33.0/24 maxlen: 24
84.242.32.0/20 maxlen: 20
84.242.34.0/24 maxlen: 24
84.242.32.0/24 maxlen: 24
84.242.38.0/24 maxlen: 24
84.242.44.0/24 maxlen: 24
84.242.42.0/24 maxlen: 24
84.242.43.0/24 maxlen: 24
84.242.40.0/24 maxlen: 24
84.242.41.0/24 maxlen: 24
84.242.39.0/24 maxlen: 24
84.242.47.0/24 maxlen: 24
84.242.45.0/24 maxlen: 24
84.242.46.0/24 maxlen: 24
206.167.33.0/24 maxlen: 24
141.105.172.0/24 maxlen: 24
141.105.171.0/24 maxlen: 24
185.112.104.0/24 maxlen: 24
141.105.169.0/24 maxlen: 24
185.112.104.0/22 maxlen: 22
141.105.170.0/24 maxlen: 24
141.105.168.0/24 maxlen: 24
141.105.168.0/21 maxlen: 21
185.112.105.0/24 maxlen: 24
185.112.107.0/24 maxlen: 24
141.105.174.0/24 maxlen: 24
141.105.175.0/24 maxlen: 24
141.105.173.0/24 maxlen: 24
185.112.106.0/24 maxlen: 24
78.111.40.0/24 maxlen: 24
78.111.39.0/24 maxlen: 24
78.111.43.0/24 maxlen: 24
78.111.44.0/24 maxlen: 24
78.111.41.0/24 maxlen: 24
78.111.42.0/24 maxlen: 24
78.111.47.0/24 maxlen: 24
78.111.45.0/24 maxlen: 24
78.111.46.0/24 maxlen: 24
96.9.131.0/24 maxlen: 24
96.9.132.0/24 maxlen: 24
96.9.129.0/24 maxlen: 24
96.9.130.0/24 maxlen: 24
96.9.128.0/19 maxlen: 19
96.9.128.0/24 maxlen: 24
96.9.136.0/24 maxlen: 24
96.9.137.0/24 maxlen: 24
96.9.134.0/24 maxlen: 24
96.9.135.0/24 maxlen: 24
96.9.133.0/24 maxlen: 24
96.9.138.0/24 maxlen: 24
96.9.139.0/24 maxlen: 24
96.9.143.0/24 maxlen: 24
96.9.144.0/24 maxlen: 24
96.9.141.0/24 maxlen: 24
96.9.142.0/24 maxlen: 24
96.9.140.0/24 maxlen: 24
96.9.145.0/24 maxlen: 24
96.9.150.0/24 maxlen: 24
96.9.151.0/24 maxlen: 24
96.9.148.0/24 maxlen: 24
96.9.149.0/24 maxlen: 24
96.9.147.0/24 maxlen: 24
96.9.146.0/24 maxlen: 24
96.9.152.0/24 maxlen: 24
96.9.157.0/24 maxlen: 24
96.9.158.0/24 maxlen: 24
96.9.155.0/24 maxlen: 24
96.9.156.0/24 maxlen: 24
96.9.154.0/24 maxlen: 24
96.9.153.0/24 maxlen: 24
96.9.159.0/24 maxlen: 24
185.29.141.0/24 maxlen: 24
185.29.140.0/22 maxlen: 22
185.29.142.0/24 maxlen: 24
185.29.140.0/24 maxlen: 24
185.29.143.0/24 maxlen: 24
78.111.32.0/24 maxlen: 24
78.111.33.0/24 maxlen: 24
78.111.34.0/24 maxlen: 24
78.111.32.0/20 maxlen: 20
78.111.38.0/24 maxlen: 24
78.111.36.0/24 maxlen: 24
78.111.37.0/24 maxlen: 24
78.111.35.0/24 maxlen: 24
199.48.224.0/24 maxlen: 24
94.176.17.0/24 maxlen: 24
94.176.16.0/20 maxlen: 20
94.176.16.0/24 maxlen: 24
94.176.20.0/24 maxlen: 24
94.176.21.0/24 maxlen: 24
94.176.18.0/24 maxlen: 24
94.176.19.0/24 maxlen: 24
94.176.24.0/24 maxlen: 24
94.176.22.0/24 maxlen: 24
94.176.23.0/24 maxlen: 24
94.176.27.0/24 maxlen: 24
94.176.28.0/24 maxlen: 24
94.176.25.0/24 maxlen: 24
94.176.26.0/24 maxlen: 24
94.176.31.0/24 maxlen: 24
94.176.29.0/24 maxlen: 24
94.176.30.0/24 maxlen: 24
5.102.179.0/24 maxlen: 24
5.102.176.0/21 maxlen: 21
5.102.178.0/24 maxlen: 24
5.102.176.0/24 maxlen: 24
5.102.177.0/24 maxlen: 24
5.102.181.0/24 maxlen: 24
5.102.182.0/24 maxlen: 24
5.102.180.0/24 maxlen: 24
5.102.183.0/24 maxlen: 24
2a0a:c740:100::/48 maxlen: 48
2a0a:c740:8::/48 maxlen: 48
2a0a:c740:5::/48 maxlen: 48
2a0a:c740:2::/48 maxlen: 48
2a0a:c740:7::/48 maxlen: 48
2a0a:c740:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:57:45:80:f2:0b:81:90:7b:81:6b:de:67:11:fe:94:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be550b8eff90cccee9f8d3134b6438996b7d27cd
Validity
Not Before: Nov 8 12:44:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b8bd5b6bb7728515c9a7d51b3fb2e1875fcbc90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:17:a9:38:89:96:41:a7:c8:4e:ee:58:4d:3e:
7a:c9:0b:ac:c2:e4:1b:7a:57:08:8f:3e:ce:f1:40:
98:bb:e7:66:44:df:76:e8:0d:89:18:d4:51:c7:42:
ca:96:a0:b8:a8:53:98:03:2a:48:23:29:6a:da:83:
bd:1a:b6:03:d6:7f:4e:17:4f:a1:de:07:9c:45:0a:
d6:0e:4f:39:e8:10:20:61:27:17:87:47:a5:48:b1:
92:e8:33:63:9a:13:95:f2:1d:fe:3a:92:dd:fe:3f:
4f:98:27:fa:34:ac:4b:66:55:e9:65:a9:3a:7b:6c:
d0:0f:b9:f3:07:4c:32:34:1c:79:50:9d:24:f9:a1:
18:bb:3c:a6:09:d7:c4:8d:eb:37:a9:52:34:25:6c:
88:e6:20:f6:d6:9a:70:9d:ec:f9:2a:f7:1d:10:7a:
48:83:21:10:2f:af:d0:ab:d8:0a:25:ec:04:f3:88:
a0:ef:ad:72:5e:fb:bb:cf:ad:ca:e0:4b:9d:02:7e:
d3:04:55:d7:84:b6:15:c2:e3:ca:a3:82:d7:ee:93:
59:ce:9e:61:11:49:62:92:83:bc:68:b7:7c:4d:43:
f8:89:5d:67:41:d2:b5:b1:ed:b9:aa:4f:e3:81:7b:
6e:c5:e6:02:de:db:d6:8e:38:a5:69:c8:67:71:98:
eb:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:8B:D5:B6:BB:77:28:51:5C:9A:7D:51:B3:FB:2E:18:75:FC:BC:90
X509v3 Authority Key Identifier:
keyid:BE:55:0B:8E:FF:90:CC:CE:E9:F8:D3:13:4B:64:38:99:6B:7D:27:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlULjv-QzM7p-NMTS2Q4mWt9J80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/e4vVtrt3KFFcmn1Rs_suGHX8vJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/vlULjv-QzM7p-NMTS2Q4mWt9J80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.176.0/21
78.111.32.0/20
84.242.32.0/20
94.176.16.0/20
96.9.128.0/19
141.105.168.0/21
178.20.16.0/21
185.29.140.0/22
185.112.104.0/22
199.48.224.0/24
206.167.33.0/24
IPv6:
2a0a:c740:2::/48
2a0a:c740:4::/47
2a0a:c740:7::-2a0a:c740:8:ffff:ffff:ffff:ffff:ffff
2a0a:c740:100::/48
Signature Algorithm: sha256WithRSAEncryption
52:82:a5:d2:e1:7e:17:19:38:bf:52:36:6b:26:16:cf:82:7b:
1a:5b:83:26:77:85:51:6c:56:ae:a2:a5:f4:8a:ee:79:fb:34:
fe:43:aa:c1:eb:d5:bd:a0:7c:59:f6:5e:d5:c5:10:0a:3b:23:
06:3f:8d:9d:24:af:d9:81:4a:fe:4f:62:eb:91:8b:e1:63:d2:
ab:5a:00:f9:c7:20:f1:36:30:88:87:e2:24:cd:1e:5d:d1:42:
76:b0:32:38:da:04:45:0c:3e:52:f1:8c:b2:ea:4d:e4:bc:d4:
4a:9e:ae:a3:b8:eb:25:3a:0f:de:89:1a:76:b4:7a:3b:3b:b0:
18:01:a5:f6:4d:72:d7:32:90:d4:09:da:0b:14:82:28:02:72:
ce:c6:22:ba:71:ce:02:d4:e1:1e:5a:38:74:ec:c8:be:e2:86:
f7:d3:18:b1:54:4f:f1:f2:ac:4f:2d:78:25:8b:0b:3b:2c:4f:
7a:7f:9e:d2:71:5d:47:0e:59:f6:8d:02:df:e0:39:a4:97:16:
5a:ae:78:95:47:65:5e:02:11:37:93:5f:a1:ed:14:1d:9a:c2:
e9:cb:65:0c:4d:de:18:f7:e8:0b:21:43:68:aa:6c:e7:85:9e:
8f:ba:8c:e0:14:e1:7d:68:68:14:25:2a:73:30:24:5c:5e:23:
a0:9e:26:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:16 2025 by rpki-client