Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/3ed8dd-d36e-440c-8142-d80c6b85cda4/1/DwiYaBQDc2Vj5y4Ap5AGqvaNmtI.roa
File: DwiYaBQDc2Vj5y4Ap5AGqvaNmtI.roa (raw, json)
Hash identifier: /lMwaFj9XpKL02UqBBXs1PuuC9sUpeVSkNJ2nJoQi3I=
Subject key identifier: 0F:08:98:68:14:03:73:65:63:E7:2E:00:A7:90:06:AA:F6:8D:9A:D2
Certificate issuer: /CN=63d9d1d95c1eb716ee8195045a77cba2181d79ec
Certificate serial: 0184C23A2446EA42593FF2BF157652997DD8
Authority key identifier: 63:D9:D1:D9:5C:1E:B7:16:EE:81:95:04:5A:77:CB:A2:18:1D:79:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y9nR2VwetxbugZUEWnfLohgdeew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/3ed8dd-d36e-440c-8142-d80c6b85cda4/1/DwiYaBQDc2Vj5y4Ap5AGqvaNmtI.roa
Signing time: Tue 29 Nov 2022 07:11:40 +0000
ROA not before: Tue 29 Nov 2022 07:11:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29405
IP address blocks: 185.176.72.0/22 maxlen: 22
46.229.230.0/24 maxlen: 24
81.89.48.0/20 maxlen: 20
86.110.224.0/19 maxlen: 19
176.109.56.0/21 maxlen: 21
86.110.229.0/24 maxlen: 24
92.240.230.0/24 maxlen: 24
92.240.229.0/24 maxlen: 24
92.240.228.0/24 maxlen: 24
92.240.231.0/24 maxlen: 24
92.240.234.0/24 maxlen: 24
92.240.237.0/24 maxlen: 24
92.240.236.0/24 maxlen: 24
92.240.235.0/24 maxlen: 24
92.240.241.0/24 maxlen: 24
92.240.244.0/24 maxlen: 24
92.240.242.0/24 maxlen: 24
92.240.245.0/24 maxlen: 24
92.240.253.0/24 maxlen: 24
92.240.249.0/24 maxlen: 24
92.240.254.0/24 maxlen: 24
217.73.16.0/24 maxlen: 24
217.73.16.0/20 maxlen: 20
217.73.17.0/24 maxlen: 24
93.184.64.0/20 maxlen: 20
46.229.224.0/20 maxlen: 20
109.74.144.0/20 maxlen: 20
2a01:390::/32 maxlen: 32
2a00:10d8::/32 maxlen: 32
2a00:10d8:10::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c2:3a:24:46:ea:42:59:3f:f2:bf:15:76:52:99:7d:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63d9d1d95c1eb716ee8195045a77cba2181d79ec
Validity
Not Before: Nov 29 07:11:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f0898681403736563e72e00a79006aaf68d9ad2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:94:ff:4b:80:b4:6a:60:b7:ae:eb:dc:d5:70:
ee:2a:82:50:cc:a8:89:56:63:92:bb:ef:16:6f:4a:
c8:a7:c8:e5:d2:bf:c3:98:44:73:d1:81:d8:98:67:
2f:82:33:0c:a7:f1:ed:fe:c1:d3:cf:b8:c7:7b:ec:
01:58:28:43:37:44:1e:eb:7a:58:ad:71:7e:16:7d:
b1:da:1c:df:08:7f:90:0f:c2:f0:8e:da:72:47:cc:
74:13:cd:8c:83:66:e9:4b:43:29:a7:f0:74:a8:e4:
6c:81:b6:61:67:00:cf:d8:99:95:b0:c3:9f:7c:9b:
4f:0e:31:b1:79:1f:43:2f:04:ca:fe:06:5c:c7:6f:
61:14:63:75:4a:2a:bf:5c:dd:76:d8:d3:c9:ff:ce:
c8:da:35:6f:c2:57:e9:b4:46:61:bb:0f:9f:11:3f:
1d:cc:46:2d:44:2b:57:f9:db:2f:9c:ef:3e:a6:de:
b3:47:39:ff:1b:80:bc:00:2d:f1:2b:27:ed:e5:e8:
d0:de:55:c8:99:0b:ed:f6:e3:28:0a:52:80:04:ea:
f2:4b:1a:22:8b:90:92:81:13:a1:20:53:95:c7:8b:
24:c8:8f:8c:bb:0a:cb:5d:b4:fb:9d:43:99:25:ff:
34:f3:09:ea:4c:f1:d7:c9:da:f4:58:94:57:9c:27:
b5:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:08:98:68:14:03:73:65:63:E7:2E:00:A7:90:06:AA:F6:8D:9A:D2
X509v3 Authority Key Identifier:
keyid:63:D9:D1:D9:5C:1E:B7:16:EE:81:95:04:5A:77:CB:A2:18:1D:79:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y9nR2VwetxbugZUEWnfLohgdeew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3ed8dd-d36e-440c-8142-d80c6b85cda4/1/DwiYaBQDc2Vj5y4Ap5AGqvaNmtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3ed8dd-d36e-440c-8142-d80c6b85cda4/1/Y9nR2VwetxbugZUEWnfLohgdeew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.229.224.0/20
81.89.48.0/20
86.110.224.0/19
92.240.228.0/22
92.240.234.0-92.240.237.255
92.240.241.0-92.240.242.255
92.240.244.0/23
92.240.249.0/24
92.240.253.0-92.240.254.255
93.184.64.0/20
109.74.144.0/20
176.109.56.0/21
185.176.72.0/22
217.73.16.0/20
IPv6:
2a00:10d8::/32
2a01:390::/32
Signature Algorithm: sha256WithRSAEncryption
63:aa:15:6e:f2:93:20:41:24:d9:99:54:fa:3c:2e:8d:87:9a:
5d:21:8a:b7:bf:56:96:7a:fc:ca:00:55:04:29:58:f9:91:b9:
6b:9e:da:ed:6c:b7:0e:7d:a0:8c:28:72:fa:68:02:a6:5d:e0:
ad:69:a2:7f:da:45:27:60:7e:ef:e6:62:62:63:a6:ec:31:72:
4a:5d:da:a7:f2:a4:d2:05:88:5e:47:e0:e2:26:bb:8d:59:da:
91:8c:0b:66:02:ec:a9:1d:db:a1:d9:24:0f:67:31:33:1d:ba:
e8:b4:c0:7d:90:d3:b6:2b:19:1e:30:35:77:c2:c6:35:d1:af:
be:35:43:d1:9a:5a:93:05:9f:ce:88:a8:36:ce:d3:5c:9a:97:
b5:4b:fa:52:bd:e4:60:ba:ae:ca:75:49:bc:7a:71:a3:73:3e:
07:f4:4d:e4:0f:25:08:1e:1a:26:c8:10:94:98:69:71:d2:e8:
d3:0d:56:fe:60:50:5b:76:c5:79:ce:3f:dd:5f:44:ae:ff:86:
7f:11:29:6a:96:e9:4e:ef:ca:28:36:a1:96:2e:43:0e:55:d8:
6e:a7:90:69:9c:8e:00:cf:2f:41:61:c0:6b:ee:01:83:32:d1:
bb:99:09:de:4c:6d:ef:f4:58:5c:0f:5f:68:bb:40:bc:20:b3:
93:40:e4:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:43:49 2025 by rpki-client