Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/YdGtst_kwraizUroYlfk7CY8JMA.roa
File: YdGtst_kwraizUroYlfk7CY8JMA.roa (raw, json)
Hash identifier: +WH0SOjcKJepMxhnS3k7JjyIDzGkuv54AyD4RI9B8Y8=
Subject key identifier: 61:D1:AD:B2:DF:E4:C2:B6:A2:CD:4A:E8:62:57:E4:EC:26:3C:24:C0
Certificate issuer: /CN=21021b252222997bfe33b7e4b315ac8d5e067954
Certificate serial: 03B9C8BB
Authority key identifier: 21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/YdGtst_kwraizUroYlfk7CY8JMA.roa
Signing time: Sat 01 Jan 2022 14:08:25 +0000
ROA not before: Sat 01 Jan 2022 14:08:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 18530
IP address blocks: 203.17.237.0/24 maxlen: 24
46.243.160.0/24 maxlen: 24
203.78.163.0/24 maxlen: 24
203.78.164.0/24 maxlen: 24
203.78.161.0/24 maxlen: 24
203.78.166.0/23 maxlen: 23
94.156.43.0/24 maxlen: 24
94.156.40.0/23 maxlen: 23
37.61.225.0/24 maxlen: 24
192.175.2.0/24 maxlen: 24
94.156.132.0/23 maxlen: 23
37.60.142.0/24 maxlen: 24
94.156.145.0/24 maxlen: 24
37.61.230.0/24 maxlen: 24
94.156.62.0/23 maxlen: 23
87.120.247.0/24 maxlen: 24
158.120.252.0/23 maxlen: 23
188.212.110.0/24 maxlen: 24
94.156.224.0/23 maxlen: 23
203.25.139.0/24 maxlen: 24
31.13.214.0/24 maxlen: 24
87.121.102.0/24 maxlen: 24
93.123.25.0/24 maxlen: 24
87.120.58.0/24 maxlen: 24
87.120.62.0/24 maxlen: 24
93.123.111.0/24 maxlen: 24
198.160.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62507195 (0x3b9c8bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21021b252222997bfe33b7e4b315ac8d5e067954
Validity
Not Before: Jan 1 14:08:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61d1adb2dfe4c2b6a2cd4ae86257e4ec263c24c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:05:7e:d7:83:e4:15:d2:5f:8b:d8:97:3c:93:
81:df:ee:b6:b6:96:2e:18:14:8b:b5:fd:13:26:cb:
64:69:b2:e9:c3:af:f8:c1:cc:f3:2c:43:7d:1f:0e:
fc:4e:48:b5:31:54:1f:bc:f5:3e:e2:9f:29:e7:dc:
69:dc:34:90:49:92:02:67:d1:94:59:3b:83:4c:36:
e1:ce:3d:56:65:b0:75:44:5b:b0:ab:b0:be:a1:fe:
7f:6b:e8:6c:1d:94:6b:2e:c3:01:2b:13:cb:67:af:
c0:d1:7f:5d:db:23:f3:8b:0d:ee:f4:0b:86:8f:0e:
34:55:b6:4e:b8:a5:f2:ac:f2:ae:4f:a4:2e:de:f4:
6d:c3:fc:e9:49:3d:a8:7a:53:d8:ea:4b:27:3c:90:
2c:5b:5e:4e:ad:c9:cb:fc:81:a9:13:c2:15:4c:c4:
4d:c5:3c:b9:11:41:06:0f:59:9e:fe:5b:33:51:e7:
a6:8b:bc:9b:49:f5:7b:1f:e4:58:95:7a:1a:47:e4:
98:f3:b7:91:74:a6:45:b8:6d:d4:64:3a:fc:8a:6b:
ef:5b:4b:47:9a:b0:ea:b2:c0:42:e3:9c:7f:96:eb:
93:ec:23:77:f4:37:ba:36:76:bf:a7:d2:bd:02:12:
0b:66:5a:fc:28:c1:d7:2a:cf:cf:4b:31:eb:9d:e5:
9a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:D1:AD:B2:DF:E4:C2:B6:A2:CD:4A:E8:62:57:E4:EC:26:3C:24:C0
X509v3 Authority Key Identifier:
keyid:21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/YdGtst_kwraizUroYlfk7CY8JMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.214.0/24
37.60.142.0/24
37.61.225.0/24
37.61.230.0/24
46.243.160.0/24
87.120.58.0/24
87.120.62.0/24
87.120.247.0/24
87.121.102.0/24
93.123.25.0/24
93.123.111.0/24
94.156.40.0/23
94.156.43.0/24
94.156.62.0/23
94.156.132.0/23
94.156.145.0/24
94.156.224.0/23
158.120.252.0/23
188.212.110.0/24
192.175.2.0/24
198.160.152.0/24
203.17.237.0/24
203.25.139.0/24
203.78.161.0/24
203.78.163.0-203.78.164.255
203.78.166.0/23
Signature Algorithm: sha256WithRSAEncryption
22:10:0c:f9:cc:b6:5f:67:f8:09:04:29:86:40:2a:ae:4d:00:
38:50:76:2b:06:a9:a5:91:49:4c:5d:f5:b3:44:76:49:1d:ec:
ab:51:bc:bc:e9:81:0e:13:cd:20:9a:9c:65:0f:ef:2d:20:59:
28:de:8d:fc:da:97:b6:c3:00:76:81:6a:d1:39:e2:cd:cd:51:
e7:e5:12:10:70:e0:bc:bd:8e:a3:91:95:ba:f1:be:f8:03:60:
23:f6:6f:16:cf:39:c4:4f:e2:af:f8:c6:f9:b2:d9:e2:f7:9a:
37:44:b5:0b:4a:f4:ac:cd:73:d3:49:31:d9:5b:d0:ab:be:a1:
c7:c5:86:40:d8:57:8b:f9:4f:8b:cb:d4:7d:33:bf:f8:5e:b2:
e0:97:ea:43:dc:8f:43:02:eb:a8:27:7c:76:a7:55:96:b2:1d:
8d:2c:e8:9c:8b:32:84:d2:71:bb:19:10:37:5c:b8:20:03:fb:
61:cd:4e:3a:8d:f4:f2:33:05:32:ed:8c:76:b3:1c:43:11:b8:
b2:5a:31:96:90:84:f2:b1:ed:bc:e9:4d:58:26:5c:4a:31:3c:
d6:01:b7:7c:c9:42:bd:f4:a6:d1:1f:fe:f9:09:cd:b3:88:de:
18:cb:7f:e1:cf:b8:05:53:46:4d:17:5f:67:b4:d0:57:8d:87:
cd:76:ba:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 20:15:06 2025 by rpki-client