Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/899380-ad27-44eb-8c2e-b0bad18f02d0/1/itCVkH_Go_dDC_7fct9ect5mUdU.roa
File: itCVkH_Go_dDC_7fct9ect5mUdU.roa (raw, json)
Hash identifier: fZvBpUyorocqstHZ+e1KrCmvc+Gp07aEtM+eZlMHHCE=
Subject key identifier: 8A:D0:95:90:7F:C6:A3:F7:43:0B:FE:DF:72:DF:5E:72:DE:66:51:D5
Certificate issuer: /CN=0ce1308ead6adb1d085e7e5910a0cb2de56aa32e
Certificate serial: 16BEB429
Authority key identifier: 0C:E1:30:8E:AD:6A:DB:1D:08:5E:7E:59:10:A0:CB:2D:E5:6A:A3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOEwjq1q2x0IXn5ZEKDLLeVqoy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/899380-ad27-44eb-8c2e-b0bad18f02d0/1/itCVkH_Go_dDC_7fct9ect5mUdU.roa
Signing time: Fri 18 Feb 2022 13:23:45 +0000
ROA not before: Fri 18 Feb 2022 13:23:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45011
IP address blocks: 188.120.160.0/19 maxlen: 19
37.17.248.0/21 maxlen: 21
82.117.96.0/19 maxlen: 19
188.122.128.0/19 maxlen: 19
5.44.192.0/20 maxlen: 20
178.251.240.0/21 maxlen: 21
91.232.59.0/24 maxlen: 24
91.232.60.0/23 maxlen: 23
79.138.0.0/17 maxlen: 17
178.132.248.0/21 maxlen: 21
109.225.64.0/18 maxlen: 18
85.238.192.0/19 maxlen: 19
85.8.0.0/18 maxlen: 18
85.30.0.0/18 maxlen: 18
195.78.224.0/22 maxlen: 22
146.247.80.0/21 maxlen: 21
185.18.164.0/22 maxlen: 22
83.209.0.0/16 maxlen: 16
31.192.192.0/20 maxlen: 20
5.172.144.0/21 maxlen: 21
77.53.0.0/16 maxlen: 16
95.155.192.0/18 maxlen: 18
87.241.64.0/18 maxlen: 18
87.96.128.0/17 maxlen: 17
87.236.88.0/21 maxlen: 21
2a02:7b8::/32 maxlen: 32
2a00:8280::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 381596713 (0x16beb429)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce1308ead6adb1d085e7e5910a0cb2de56aa32e
Validity
Not Before: Feb 18 13:23:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ad095907fc6a3f7430bfedf72df5e72de6651d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a5:6b:ba:31:56:24:8f:9e:c1:33:3e:3a:7a:
70:61:44:46:86:68:8b:3a:32:01:70:73:75:39:9c:
25:ee:8e:e7:c4:a4:a9:65:17:cd:ed:c2:fe:9b:63:
d4:13:50:6e:10:a0:84:37:f5:04:e8:74:d1:e1:90:
71:c7:96:03:92:a3:de:64:fb:c0:c2:59:a7:9b:7f:
e2:c7:f4:9c:76:11:14:a1:9f:b5:a4:03:9a:db:98:
6b:bc:a2:7d:c9:73:5f:41:07:de:e0:fe:d3:5f:c0:
3b:69:f8:ee:e3:df:15:c4:b8:45:b5:f6:dd:04:3a:
80:64:b0:d6:e1:cb:0d:5c:cd:67:21:0c:6f:06:54:
b9:8b:11:e1:53:7e:74:a2:15:47:01:8e:50:fd:ed:
cc:39:e4:8c:33:0f:f7:7e:25:cd:34:a4:91:c6:60:
f3:31:be:49:29:a7:71:bf:69:67:5a:12:da:6b:fa:
8c:30:ee:9a:53:a1:02:f5:bc:4b:f0:bd:18:e8:ea:
8e:12:75:64:05:52:d5:24:e9:b8:9f:ea:ba:16:92:
e5:d6:4b:c1:f7:8e:68:74:d9:ec:a0:65:46:32:58:
0e:04:fa:2f:5a:07:43:98:44:ac:28:5f:30:fa:9b:
7c:85:10:f4:20:28:d2:05:c9:df:15:37:29:2c:34:
50:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:D0:95:90:7F:C6:A3:F7:43:0B:FE:DF:72:DF:5E:72:DE:66:51:D5
X509v3 Authority Key Identifier:
keyid:0C:E1:30:8E:AD:6A:DB:1D:08:5E:7E:59:10:A0:CB:2D:E5:6A:A3:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOEwjq1q2x0IXn5ZEKDLLeVqoy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/899380-ad27-44eb-8c2e-b0bad18f02d0/1/itCVkH_Go_dDC_7fct9ect5mUdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/899380-ad27-44eb-8c2e-b0bad18f02d0/1/DOEwjq1q2x0IXn5ZEKDLLeVqoy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.192.0/20
5.172.144.0/21
31.192.192.0/20
37.17.248.0/21
77.53.0.0/16
79.138.0.0/17
82.117.96.0/19
83.209.0.0/16
85.8.0.0/18
85.30.0.0/18
85.238.192.0/19
87.96.128.0/17
87.236.88.0/21
87.241.64.0/18
91.232.59.0-91.232.61.255
95.155.192.0/18
109.225.64.0/18
146.247.80.0/21
178.132.248.0/21
178.251.240.0/21
185.18.164.0/22
188.120.160.0/19
188.122.128.0/19
195.78.224.0/22
IPv6:
2a00:8280::/32
2a02:7b8::/32
Signature Algorithm: sha256WithRSAEncryption
18:38:6d:07:ff:2d:5d:4b:16:12:32:48:41:54:d2:a0:e0:c3:
7d:5b:a2:7a:d0:9d:09:aa:a3:f2:eb:ea:23:74:38:79:c4:88:
06:d0:8f:b4:d8:45:5b:9a:9b:c1:88:d1:65:ca:51:71:c9:22:
51:93:9f:9a:d1:e7:5d:30:03:d9:f0:9b:fd:52:bf:41:b4:c3:
3f:95:4f:f3:e4:e1:89:3a:e1:f4:7e:47:3c:f9:02:50:61:e4:
38:5d:5f:93:f7:4b:58:94:ab:76:cc:8d:38:8b:5e:31:d0:19:
95:59:8c:4a:de:cd:dc:b3:dd:d5:33:ae:87:69:d6:48:53:a8:
3b:02:e6:3f:66:93:81:6a:84:89:ed:51:94:1a:9c:68:2f:d8:
7c:1b:b5:84:40:70:93:51:e8:70:10:c3:e2:56:e4:e9:f6:b6:
07:05:8d:55:46:a6:39:4e:9c:df:28:4f:1b:bb:73:f2:b6:e8:
c7:35:a8:7a:d9:17:1e:dd:e9:ce:6f:94:fd:85:ed:13:dc:1f:
2e:ac:79:09:9d:62:d5:16:ae:37:1b:72:bf:6b:b9:f5:81:50:
02:09:e2:f9:f3:a2:60:d0:3e:d0:a7:a4:21:40:d6:50:02:f7:
a1:0f:ef:85:40:d9:1c:8f:8b:b5:8e:b1:62:99:7e:a9:c1:64:
47:ce:8b:3c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Apr 20 13:09:41 2025 by rpki-client