Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/cd4af6-b742-4cdc-b3a0-67a87d8a3b9b/1/Ha9UBzjyta5ryWtISGXRJ4tweVQ.roa
File: Ha9UBzjyta5ryWtISGXRJ4tweVQ.roa (raw, json)
Hash identifier: rmzDD5ZGDlFQNzkmvysZh9TYtpwJvyAO0yGuHemhgj0=
Subject key identifier: 1D:AF:54:07:38:F2:B5:AE:6B:C9:6B:48:48:65:D1:27:8B:70:79:54
Certificate issuer: /CN=d4fdd596267d56f7ce56ebfaec86a32708fede00
Certificate serial: 01856FE710AB7D535B81E520F29C60B6BF3B
Authority key identifier: D4:FD:D5:96:26:7D:56:F7:CE:56:EB:FA:EC:86:A3:27:08:FE:DE:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1P3VliZ9VvfOVuv67IajJwj-3gA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/cd4af6-b742-4cdc-b3a0-67a87d8a3b9b/1/Ha9UBzjyta5ryWtISGXRJ4tweVQ.roa
Signing time: Mon 02 Jan 2023 00:34:52 +0000
ROA not before: Mon 02 Jan 2023 00:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206206
IP address blocks: 213.32.252.0/23 maxlen: 24
213.32.254.0/23 maxlen: 24
185.187.77.0/24 maxlen: 24
185.187.76.0/22 maxlen: 24
185.187.76.0/24 maxlen: 24
185.187.78.0/24 maxlen: 24
185.187.79.0/24 maxlen: 24
185.244.152.0/22 maxlen: 24
185.244.152.0/24 maxlen: 24
185.244.152.0/23 maxlen: 24
185.244.155.0/24 maxlen: 24
185.244.154.0/23 maxlen: 24
185.244.154.0/24 maxlen: 24
185.244.153.0/24 maxlen: 24
212.237.120.0/23 maxlen: 24
212.237.122.0/23 maxlen: 24
212.237.122.0/24 maxlen: 24
212.237.121.0/24 maxlen: 24
212.237.120.0/22 maxlen: 24
212.237.120.0/24 maxlen: 24
212.237.119.0/24 maxlen: 24
212.237.125.0/24 maxlen: 24
185.106.30.0/23 maxlen: 24
212.237.123.0/24 maxlen: 24
185.106.28.0/23 maxlen: 24
212.237.124.0/22 maxlen: 24
212.237.124.0/24 maxlen: 24
212.237.127.0/24 maxlen: 24
212.237.126.0/24 maxlen: 24
185.136.150.0/24 maxlen: 24
185.136.150.0/23 maxlen: 24
185.136.149.0/24 maxlen: 24
185.136.148.0/23 maxlen: 24
185.136.148.0/24 maxlen: 24
185.136.151.0/24 maxlen: 24
37.156.107.0/24 maxlen: 24
37.156.106.0/24 maxlen: 24
212.237.112.0/24 maxlen: 24
212.237.112.0/23 maxlen: 24
212.237.113.0/24 maxlen: 24
212.237.118.0/24 maxlen: 24
212.237.118.0/23 maxlen: 24
212.237.112.0/21 maxlen: 24
212.237.117.0/24 maxlen: 24
212.237.116.0/24 maxlen: 24
212.237.116.0/23 maxlen: 24
212.237.115.0/24 maxlen: 24
212.237.114.0/24 maxlen: 24
212.237.114.0/23 maxlen: 24
37.156.105.0/24 maxlen: 24
37.156.104.0/24 maxlen: 24
37.156.104.0/22 maxlen: 24
185.24.60.0/23 maxlen: 24
185.24.60.0/22 maxlen: 24
185.24.60.0/24 maxlen: 24
185.24.63.0/24 maxlen: 24
185.24.62.0/23 maxlen: 24
185.24.62.0/24 maxlen: 24
185.24.61.0/24 maxlen: 24
2a06:fd80::/48 maxlen: 48
2a06:fd80::/64 maxlen: 64
2a06:fd80:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:10:ab:7d:53:5b:81:e5:20:f2:9c:60:b6:bf:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4fdd596267d56f7ce56ebfaec86a32708fede00
Validity
Not Before: Jan 2 00:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1daf540738f2b5ae6bc96b484865d1278b707954
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fe:d4:8a:70:63:b2:c5:23:1d:03:4a:16:b1:
31:ab:f7:00:7d:a2:28:43:95:8a:c4:cb:04:ba:bc:
89:88:36:c0:10:ba:f1:26:61:d4:22:cf:ac:65:25:
70:65:b2:41:43:2e:55:8e:29:10:94:24:05:ba:c8:
1c:67:8d:d2:74:85:45:3f:5f:c5:9b:51:8e:3b:43:
fa:30:70:1f:4c:e4:bf:12:a8:20:6d:6d:7f:1e:b1:
5b:c3:58:64:c9:29:c7:d2:f6:f6:aa:a2:23:9a:76:
3e:31:78:1a:08:c7:96:e5:9a:f6:46:73:ec:3d:4a:
3c:83:c8:c2:dd:63:19:19:68:66:40:64:63:fe:8b:
78:36:0d:0e:a3:b2:95:a5:68:12:3f:ed:6e:fb:b1:
51:1d:a9:19:7b:62:ca:5c:9e:dc:4f:c8:c5:5d:e2:
c8:05:5a:8e:25:8f:aa:15:7f:89:ec:c4:5b:63:36:
03:3a:e9:8a:53:2f:ff:4e:0f:65:e2:29:28:1d:a8:
06:5d:6c:7b:cc:1f:cb:cb:c0:93:32:14:27:db:1a:
98:58:28:e0:c8:3a:d0:37:ff:c1:3f:03:c2:a2:b6:
1b:2b:ae:ae:25:23:90:ad:cc:7a:01:e0:4d:81:9a:
ab:af:0c:bd:8d:f3:e6:6b:ca:44:bb:24:0f:fe:a5:
19:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:AF:54:07:38:F2:B5:AE:6B:C9:6B:48:48:65:D1:27:8B:70:79:54
X509v3 Authority Key Identifier:
keyid:D4:FD:D5:96:26:7D:56:F7:CE:56:EB:FA:EC:86:A3:27:08:FE:DE:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1P3VliZ9VvfOVuv67IajJwj-3gA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/cd4af6-b742-4cdc-b3a0-67a87d8a3b9b/1/Ha9UBzjyta5ryWtISGXRJ4tweVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/cd4af6-b742-4cdc-b3a0-67a87d8a3b9b/1/1P3VliZ9VvfOVuv67IajJwj-3gA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.104.0/22
185.24.60.0/22
185.106.28.0/22
185.136.148.0/22
185.187.76.0/22
185.244.152.0/22
212.237.112.0/20
213.32.252.0/22
IPv6:
2a06:fd80::/47
Signature Algorithm: sha256WithRSAEncryption
1f:23:8b:93:a9:18:4e:08:ba:22:d9:98:c5:bf:65:dc:95:8e:
ce:40:60:06:19:9f:a8:f6:23:18:1b:51:07:91:4b:e6:e6:d4:
21:b5:46:0e:32:92:7f:c2:6a:7a:b7:43:c0:16:39:3e:59:92:
ba:3a:3a:67:74:c9:95:a9:19:56:32:2e:fd:f4:65:f4:c5:35:
0d:6d:e5:a7:3d:32:b5:ac:b2:2d:24:51:d5:ba:c6:93:61:1e:
52:2a:a8:c8:79:6c:af:53:05:e0:8b:1b:6e:23:4b:86:55:41:
c7:77:fc:f9:1f:16:f7:ff:2f:c0:43:e7:58:28:0e:ed:b9:7e:
29:29:cc:71:82:c0:e0:58:de:9f:79:fb:bd:0d:cc:78:ce:fa:
47:7d:bd:a0:48:31:eb:ae:66:cb:42:12:c6:f8:f1:66:f6:46:
02:3c:74:d3:54:8d:50:33:3b:52:12:ba:26:85:7b:44:6f:c1:
cf:71:fb:fa:95:4b:e7:d1:93:c9:be:9b:91:91:4a:5d:41:54:
d9:09:bd:c2:f8:20:b9:fd:36:9f:62:20:d1:63:d5:73:4e:7c:
df:c7:4f:76:07:47:54:34:c6:79:17:44:d4:04:a6:53:5d:73:
83:e3:f4:d3:05:0d:19:76:b6:66:9c:72:39:92:42:59:38:d5:
31:b1:36:6d
-----BEGIN CERTIFICATE-----
MIIFODCCBCCgAwIBAgISAYVv5xCrfVNbgeUg8pxgtr87MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0ZmRkNTk2MjY3ZDU2ZjdjZTU2ZWJmYWVjODZhMzI3MDhm
ZWRlMDAwHhcNMjMwMTAyMDAzNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGFmNTQwNzM4ZjJiNWFlNmJjOTZiNDg0ODY1ZDEyNzhiNzA3OTU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmf7UinBjssUjHQNKFrExq/cAfaIo
Q5WKxMsEuryJiDbAELrxJmHUIs+sZSVwZbJBQy5VjikQlCQFusgcZ43SdIVFP1/F
m1GOO0P6MHAfTOS/EqggbW1/HrFbw1hkySnH0vb2qqIjmnY+MXgaCMeW5Zr2RnPs
PUo8g8jC3WMZGWhmQGRj/ot4Ng0Oo7KVpWgSP+1u+7FRHakZe2LKXJ7cT8jFXeLI
BVqOJY+qFX+J7MRbYzYDOumKUy//Tg9l4ikoHagGXWx7zB/Ly8CTMhQn2xqYWCjg
yDrQN//BPwPCorYbK66uJSOQrcx6AeBNgZqrrwy9jfPma8pEuyQP/qUZpQIDAQAB
o4ICRDCCAkAwHQYDVR0OBBYEFB2vVAc48rWua8lrSEhl0SeLcHlUMB8GA1UdIwQY
MBaAFNT91ZYmfVb3zlbr+uyGoycI/t4AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVAzVmxpWjlWdmZPVnV2NjdJYWpKd2otM2dBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9jZDRhZjYtYjc0Mi00Y2RjLWIzYTAt
NjdhODdkOGEzYjliLzEvSGE5VUJ6anl0YTVyeVd0SVNHWFJKNHR3ZVZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS9jZDRhZjYtYjc0Mi00Y2RjLWIzYTAtNjdhODdkOGEzYjli
LzEvMVAzVmxpWjlWdmZPVnV2NjdJYWpKd2otM2dBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFoGCCsGAQUFBwEHAQH/BEswSTA2BAIAATAwAwQCJZxoAwQC
uRg8AwQCuWocAwQCuYiUAwQCubtMAwQCufSYAwQE1O1wAwQC1SD8MA8EAgACMAkD
BwEqBv2AAAAwDQYJKoZIhvcNAQELBQADggEBAB8ji5OpGE4IuiLZmMW/ZdyVjs5A
YAYZn6j2IxgbUQeRS+bm1CG1Rg4ykn/Canq3Q8AWOT5Zkro6Omd0yZWpGVYyLv30
ZfTFNQ1t5ac9MrWssi0kUdW6xpNhHlIqqMh5bK9TBeCLG24jS4ZVQcd3/PkfFvf/
L8BD51goDu25fikpzHGCwOBY3p95+70NzHjO+kd9vaBIMeuuZstCEsb48Wb2RgI8
dNNUjVAzO1ISuiaFe0Rvwc9x+/qVS+fRk8m+m5GRSl1BVNkJvcL4ILn9Np9iINFj
1XNOfN/HT3YHR1Q0xnkXRNQEplNdc4Pj9NMFDRl2tmaccjmSQlk41TGxNm0=
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:38:28 2025 by rpki-client