Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/et8XeklAwuh4QUK6V4gxBI7xh-c.roa
File: et8XeklAwuh4QUK6V4gxBI7xh-c.roa (raw, json)
Hash identifier: stXiQaNjEmkZ+1q/SrQmUyfT8+wlr7x3orMrcBpxd+I=
Subject key identifier: 7A:DF:17:7A:49:40:C2:E8:78:41:42:BA:57:88:31:04:8E:F1:87:E7
Certificate issuer: /CN=21021b252222997bfe33b7e4b315ac8d5e067954
Certificate serial: 018571D78E80E446E9CFCD18EF545DD51F2C
Authority key identifier: 21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/et8XeklAwuh4QUK6V4gxBI7xh-c.roa
Signing time: Mon 02 Jan 2023 09:37:10 +0000
ROA not before: Mon 02 Jan 2023 09:37:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 18530
IP address blocks: 203.17.237.0/24 maxlen: 24
46.243.160.0/24 maxlen: 24
203.78.163.0/24 maxlen: 24
203.78.164.0/24 maxlen: 24
203.78.161.0/24 maxlen: 24
203.78.166.0/23 maxlen: 23
94.156.43.0/24 maxlen: 24
94.156.40.0/23 maxlen: 23
37.61.225.0/24 maxlen: 24
192.175.2.0/24 maxlen: 24
94.156.132.0/23 maxlen: 23
37.60.142.0/24 maxlen: 24
94.156.145.0/24 maxlen: 24
37.61.230.0/24 maxlen: 24
94.156.62.0/23 maxlen: 23
87.120.247.0/24 maxlen: 24
158.120.252.0/23 maxlen: 23
188.212.110.0/24 maxlen: 24
94.156.224.0/23 maxlen: 23
203.25.139.0/24 maxlen: 24
31.13.214.0/24 maxlen: 24
87.121.102.0/24 maxlen: 24
93.123.25.0/24 maxlen: 24
87.120.58.0/24 maxlen: 24
87.120.62.0/24 maxlen: 24
93.123.111.0/24 maxlen: 24
198.160.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:8e:80:e4:46:e9:cf:cd:18:ef:54:5d:d5:1f:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21021b252222997bfe33b7e4b315ac8d5e067954
Validity
Not Before: Jan 2 09:37:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7adf177a4940c2e8784142ba578831048ef187e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a1:72:d8:99:88:68:91:05:1f:bb:75:2c:ae:
b2:64:6e:b3:e6:30:00:1d:9e:e4:2a:a5:59:55:ba:
7b:63:14:12:71:b5:c2:bf:69:d4:fd:fc:22:f1:47:
2d:e2:a9:18:51:a3:52:35:36:d0:43:a1:83:84:c2:
d1:5a:ea:82:f6:08:bd:84:5e:fa:37:24:d8:b9:f1:
b3:20:a9:56:17:97:87:0e:7e:ca:dc:56:2b:43:2c:
67:04:bb:55:43:93:36:fd:83:43:fe:8a:27:0a:f1:
e2:47:91:2e:13:3b:89:bf:b2:d9:16:6d:77:c9:c6:
64:15:3f:d9:77:c5:8e:21:46:9c:a8:de:c2:22:a2:
77:c3:36:fe:00:6e:ab:2a:14:21:d5:68:7a:ac:d2:
d8:21:ca:ad:f1:22:a3:82:dd:04:76:ec:0a:cf:30:
83:a2:cd:a0:0d:85:d0:07:ef:37:e2:7a:fb:f0:a7:
5e:6e:02:a0:ce:21:c7:08:c1:d1:f9:13:a0:e6:db:
cf:a0:e5:fa:29:fd:db:ce:55:e8:ab:d9:e2:c1:56:
1e:06:04:7b:9a:c6:0d:01:c7:55:e7:83:05:56:49:
16:15:54:cc:e7:7e:5e:ba:dc:ac:bf:f2:47:cf:22:
87:81:93:97:93:ad:bf:5c:fb:b3:40:de:4f:48:8a:
4e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:DF:17:7A:49:40:C2:E8:78:41:42:BA:57:88:31:04:8E:F1:87:E7
X509v3 Authority Key Identifier:
keyid:21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/et8XeklAwuh4QUK6V4gxBI7xh-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.214.0/24
37.60.142.0/24
37.61.225.0/24
37.61.230.0/24
46.243.160.0/24
87.120.58.0/24
87.120.62.0/24
87.120.247.0/24
87.121.102.0/24
93.123.25.0/24
93.123.111.0/24
94.156.40.0/23
94.156.43.0/24
94.156.62.0/23
94.156.132.0/23
94.156.145.0/24
94.156.224.0/23
158.120.252.0/23
188.212.110.0/24
192.175.2.0/24
198.160.152.0/24
203.17.237.0/24
203.25.139.0/24
203.78.161.0/24
203.78.163.0-203.78.164.255
203.78.166.0/23
Signature Algorithm: sha256WithRSAEncryption
34:91:18:7b:03:b3:e0:b7:81:4f:24:78:76:bc:ac:1d:c2:a3:
0d:0b:ef:95:03:9d:a2:74:e0:08:40:21:68:75:12:90:cd:01:
4e:fd:7e:58:e1:ba:cf:23:d1:4a:98:ba:ee:14:55:d8:41:d5:
e0:98:6d:2d:1f:6b:05:66:2e:da:f5:7c:75:b8:5b:19:d8:99:
c4:5e:4b:26:7b:41:3d:53:b3:1f:21:06:01:e2:d2:e1:40:62:
a2:21:ca:2a:df:ea:72:06:b6:ad:b0:ab:91:d1:45:33:cb:fa:
f5:3a:1e:1b:0d:8c:15:6b:80:b3:f0:a5:27:65:4b:ac:9c:ef:
36:e0:86:d7:49:fd:09:5a:30:22:61:1e:80:86:91:1a:d6:f8:
93:23:56:df:5e:fa:ec:f0:f2:4e:1a:51:8e:b9:77:46:3e:94:
02:a4:d4:8a:4f:0a:76:20:62:d2:38:85:50:1f:8a:63:99:30:
96:86:ef:55:32:90:35:a4:be:fe:de:df:f2:99:f5:a4:c0:86:
1c:69:a5:40:e8:b6:8b:4d:30:54:14:3c:d8:35:5b:41:a6:f5:
85:48:6f:39:5e:ce:72:04:74:f6:85:9e:aa:27:4e:44:a6:f4:
ed:d2:31:a1:1c:37:98:24:d1:df:10:68:68:87:8d:18:aa:28:
50:c8:40:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 20:03:54 2025 by rpki-client