Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/36ba9d-33af-4cf3-a27d-fa718ac9d758/1/rd6ZC2R0ovKRIIkZ09T9lyHHMAU.roa
File: rd6ZC2R0ovKRIIkZ09T9lyHHMAU.roa (raw, json)
Hash identifier: H5w14ITyQfvxmNwG879E4zByAB8WATRbabnxfHd+V0I=
Subject key identifier: AD:DE:99:0B:64:74:A2:F2:91:20:89:19:D3:D4:FD:97:21:C7:30:05
Certificate issuer: /CN=b409168fdb52e9b7d1a7a5e8f518edfbc2c3f9af
Certificate serial: 01856DE672E332938FF2C00883551C8BF37C
Authority key identifier: B4:09:16:8F:DB:52:E9:B7:D1:A7:A5:E8:F5:18:ED:FB:C2:C3:F9:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tAkWj9tS6bfRp6Xo9Rjt-8LD-a8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/36ba9d-33af-4cf3-a27d-fa718ac9d758/1/rd6ZC2R0ovKRIIkZ09T9lyHHMAU.roa
Signing time: Sun 01 Jan 2023 15:14:57 +0000
ROA not before: Sun 01 Jan 2023 15:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41421
IP address blocks: 91.132.112.0/23 maxlen: 23
185.194.212.0/22 maxlen: 24
188.65.40.0/21 maxlen: 21
37.157.200.0/21 maxlen: 21
193.91.4.0/24 maxlen: 24
193.91.12.0/23 maxlen: 23
31.214.137.0/24 maxlen: 24
93.115.39.0/24 maxlen: 24
89.250.192.0/20 maxlen: 20
31.214.138.0/24 maxlen: 24
194.5.180.0/24 maxlen: 24
31.214.140.0/24 maxlen: 24
31.214.145.0/24 maxlen: 24
185.53.132.0/22 maxlen: 24
159.253.240.0/21 maxlen: 21
185.128.156.0/22 maxlen: 22
2a02:4c80::/32 maxlen: 32
2a01:b8e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:72:e3:32:93:8f:f2:c0:08:83:55:1c:8b:f3:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b409168fdb52e9b7d1a7a5e8f518edfbc2c3f9af
Validity
Not Before: Jan 1 15:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=adde990b6474a2f291208919d3d4fd9721c73005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:af:3a:8c:6b:cb:de:4a:13:7b:28:61:0e:0e:
06:4d:5b:95:b0:d5:4b:bc:e0:7d:e0:63:d7:5c:71:
2e:c4:96:a1:d8:ef:1c:c0:01:e3:84:85:bd:ce:6a:
cd:0c:98:22:24:19:d8:4f:15:5c:5f:b4:f6:28:ab:
16:4c:94:c6:81:58:b4:29:82:15:14:8e:4a:2b:d6:
4c:90:63:c4:9e:7d:0b:e7:da:03:71:66:45:1a:e7:
e3:92:57:77:ca:ad:83:5a:32:d1:af:21:15:77:d8:
f6:6c:e6:6a:a4:0d:a9:9f:8a:75:39:d7:ad:24:ba:
f2:f0:6c:6b:ae:bc:4d:72:75:a2:05:7c:10:8b:7a:
cd:a7:92:de:3e:7d:b8:78:db:e6:fa:43:d9:f9:ef:
68:14:c2:ef:f4:45:ae:9d:ee:72:53:3f:5c:56:6a:
72:17:75:d3:0f:86:c9:0a:91:06:51:9d:b1:24:52:
af:d7:63:5b:1a:04:dc:71:d6:a0:a3:c2:70:33:cd:
1b:e6:0c:38:84:2a:6a:0a:07:49:85:8f:79:77:51:
82:63:60:4d:c2:8b:4a:f7:e0:9a:3a:89:bc:e2:2e:
05:09:81:95:30:e0:4b:66:0b:22:74:54:6e:8d:a1:
b6:2d:15:c5:f5:48:9b:5e:a9:62:c3:d5:c6:0c:fd:
36:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:DE:99:0B:64:74:A2:F2:91:20:89:19:D3:D4:FD:97:21:C7:30:05
X509v3 Authority Key Identifier:
keyid:B4:09:16:8F:DB:52:E9:B7:D1:A7:A5:E8:F5:18:ED:FB:C2:C3:F9:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tAkWj9tS6bfRp6Xo9Rjt-8LD-a8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/36ba9d-33af-4cf3-a27d-fa718ac9d758/1/rd6ZC2R0ovKRIIkZ09T9lyHHMAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/36ba9d-33af-4cf3-a27d-fa718ac9d758/1/tAkWj9tS6bfRp6Xo9Rjt-8LD-a8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.214.137.0-31.214.138.255
31.214.140.0/24
31.214.145.0/24
37.157.200.0/21
89.250.192.0/20
91.132.112.0/23
93.115.39.0/24
159.253.240.0/21
185.53.132.0/22
185.128.156.0/22
185.194.212.0/22
188.65.40.0/21
193.91.4.0/24
193.91.12.0/23
194.5.180.0/24
IPv6:
2a01:b8e0::/32
2a02:4c80::/32
Signature Algorithm: sha256WithRSAEncryption
5c:2e:b2:26:31:ff:65:68:e8:e7:d0:05:55:72:d8:af:ad:bd:
08:26:21:3b:b1:af:cc:e1:ac:91:1a:61:2f:02:c9:6a:59:12:
be:14:77:cf:4c:4a:74:57:45:e3:ec:fb:c9:41:f0:1e:bf:9a:
5c:a3:85:e4:5e:a5:ca:e0:2f:3e:6f:fc:1b:55:47:69:18:55:
4b:cd:12:d2:2d:f3:e5:37:4e:19:19:62:35:ea:cd:ec:c7:78:
0f:08:28:bd:9b:58:fb:04:cc:0c:73:2c:d9:50:bd:a6:f4:08:
33:76:89:1e:3f:90:3c:e9:20:75:75:ad:04:7e:ec:dd:fa:65:
09:0d:44:41:6a:83:e2:a6:37:74:3f:2d:54:36:62:9b:9d:55:
ab:5a:09:53:19:20:3e:6c:c4:6e:a4:f5:e8:f3:42:2d:25:8e:
f9:3c:c0:2b:e8:57:04:98:b1:59:e9:d9:6c:48:ea:e9:8f:92:
f6:c9:41:fe:4e:88:88:0a:39:a9:03:56:56:39:2f:74:bb:4a:
70:f2:52:a5:57:ac:71:75:f9:ea:a2:ca:5e:c7:f0:56:fa:8c:
6a:db:b9:db:32:2c:4f:16:1c:69:9e:a3:39:52:7b:bc:27:12:
3b:f0:36:3d:61:7c:39:dd:69:9e:4d:d4:4a:91:ef:12:02:9c:
09:8f:00:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:16 2025 by rpki-client