Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/30cd0a-93cf-45dc-9356-14a09993d671/1/4ylHE6IJb3TrbfCyuMvsaL0q-cY.roa
File: 4ylHE6IJb3TrbfCyuMvsaL0q-cY.roa (raw, json)
Hash identifier: 2jkMwmUdulNIasKvff/xxGUVtL5o3/GF5eqZISiJKYM=
Subject key identifier: E3:29:47:13:A2:09:6F:74:EB:6D:F0:B2:B8:CB:EC:68:BD:2A:F9:C6
Certificate issuer: /CN=510b419f0c17b4c8be217f64388d268d14dc261e
Certificate serial: 03A755B2
Authority key identifier: 51:0B:41:9F:0C:17:B4:C8:BE:21:7F:64:38:8D:26:8D:14:DC:26:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UQtBnwwXtMi-IX9kOI0mjRTcJh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/30cd0a-93cf-45dc-9356-14a09993d671/1/4ylHE6IJb3TrbfCyuMvsaL0q-cY.roa
Signing time: Mon 20 Jun 2022 11:35:06 +0000
ROA not before: Mon 20 Jun 2022 11:35:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 109.198.32.0/20 maxlen: 32
109.198.48.0/20 maxlen: 32
43.252.28.0/22 maxlen: 32
89.184.192.0/19 maxlen: 32
103.211.184.0/23 maxlen: 32
37.61.226.0/24 maxlen: 32
103.225.128.0/22 maxlen: 32
185.10.7.0/24 maxlen: 32
37.200.104.0/21 maxlen: 32
37.61.227.0/24 maxlen: 32
193.151.52.0/22 maxlen: 32
103.30.12.0/22 maxlen: 32
85.208.148.0/22 maxlen: 32
206.204.0.0/18 maxlen: 32
194.32.88.0/22 maxlen: 32
139.5.104.0/22 maxlen: 32
45.114.240.0/22 maxlen: 32
78.156.160.0/20 maxlen: 32
89.104.110.0/23 maxlen: 32
78.156.176.0/20 maxlen: 32
216.194.80.0/20 maxlen: 32
94.46.32.0/21 maxlen: 32
89.223.14.0/23 maxlen: 32
46.182.168.0/22 maxlen: 32
45.130.120.0/22 maxlen: 32
45.12.56.0/22 maxlen: 32
94.46.2.0/23 maxlen: 32
116.212.188.0/22 maxlen: 32
180.94.216.0/22 maxlen: 32
94.46.0.0/21 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61298098 (0x3a755b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=510b419f0c17b4c8be217f64388d268d14dc261e
Validity
Not Before: Jun 20 11:35:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3294713a2096f74eb6df0b2b8cbec68bd2af9c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ae:f0:bb:9a:6b:81:55:72:9f:7b:3e:8a:94:
ee:7a:b9:21:08:0d:fd:af:2c:1f:26:7d:48:73:aa:
76:a5:3f:af:1d:f5:69:63:82:9d:5e:07:54:b4:09:
87:0f:01:0f:37:7d:79:cf:0c:02:bf:08:66:89:84:
19:36:d6:91:61:87:51:27:d6:fa:d6:18:04:d6:df:
ba:14:64:5f:f0:57:ca:c2:34:56:f8:4d:50:e6:40:
05:f3:d6:bc:63:8d:0d:be:56:89:6a:ff:72:55:9d:
f6:67:af:bf:f1:84:10:de:73:24:08:2b:8d:e8:09:
12:76:a2:56:e8:df:6b:21:6b:4c:3b:ca:40:0d:c3:
92:5d:d3:45:af:71:4a:cb:44:21:14:4f:8a:50:06:
cf:d6:51:88:27:c4:96:0b:4d:d5:e7:85:d7:26:8a:
80:dc:2d:3c:88:ec:3b:28:87:82:e4:f0:c6:02:2a:
6c:a3:0c:02:60:65:0b:61:d1:cb:69:45:ab:90:52:
db:d2:14:37:6c:87:33:21:ac:74:ee:c0:4a:5e:d3:
c8:5e:ff:02:85:c7:a6:7d:bd:3f:2e:0c:23:e8:ba:
49:a2:0f:2b:c1:2f:2f:bd:48:92:e2:0d:ee:75:e8:
a4:8e:17:46:67:aa:b1:e9:19:1f:41:12:2e:f5:27:
14:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:29:47:13:A2:09:6F:74:EB:6D:F0:B2:B8:CB:EC:68:BD:2A:F9:C6
X509v3 Authority Key Identifier:
keyid:51:0B:41:9F:0C:17:B4:C8:BE:21:7F:64:38:8D:26:8D:14:DC:26:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UQtBnwwXtMi-IX9kOI0mjRTcJh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/30cd0a-93cf-45dc-9356-14a09993d671/1/4ylHE6IJb3TrbfCyuMvsaL0q-cY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/30cd0a-93cf-45dc-9356-14a09993d671/1/UQtBnwwXtMi-IX9kOI0mjRTcJh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.61.226.0/23
37.200.104.0/21
43.252.28.0/22
45.12.56.0/22
45.114.240.0/22
45.130.120.0/22
46.182.168.0/22
78.156.160.0/19
85.208.148.0/22
89.104.110.0/23
89.184.192.0/19
89.223.14.0/23
94.46.0.0/21
94.46.32.0/21
103.30.12.0/22
103.211.184.0/23
103.225.128.0/22
109.198.32.0/19
116.212.188.0/22
139.5.104.0/22
180.94.216.0/22
185.10.7.0/24
193.151.52.0/22
194.32.88.0/22
206.204.0.0/18
216.194.80.0/20
Signature Algorithm: sha256WithRSAEncryption
1b:fd:e4:2c:61:38:38:51:03:33:2d:0e:0a:79:be:90:ad:f5:
f9:e1:29:37:ae:51:46:c4:e7:13:6a:65:01:0f:47:6e:3a:39:
cc:34:ae:2f:5f:7c:48:9d:a6:ef:30:49:07:d8:0c:8e:54:97:
13:07:6d:d2:53:9c:4e:fb:fb:31:87:a3:9c:17:1e:43:59:ef:
6d:e2:76:12:37:4e:3d:10:07:8d:bf:80:32:b4:79:d4:dc:71:
d6:95:a8:81:20:0d:f0:f7:ef:69:55:db:21:40:5e:3f:b3:70:
3b:82:b3:07:7c:34:91:1f:5d:da:ac:de:bc:f3:c9:b5:2d:68:
7f:31:21:d2:7f:3e:4e:ec:42:48:56:44:d2:fc:a3:0f:28:fd:
10:f8:44:39:1f:18:e7:a5:65:d0:b9:03:5e:c9:04:81:7c:a7:
af:6b:c9:1a:ac:5a:f6:52:d1:f0:32:6d:a6:fd:33:50:e6:76:
4d:8a:32:5e:ec:6f:ff:17:2e:33:59:d7:91:32:04:b2:19:0a:
7b:2d:8c:01:b0:89:b8:60:37:d6:99:fe:de:19:d7:3d:a9:01:
4b:72:c4:9f:00:0e:95:02:3e:0c:5f:94:5f:e7:17:70:09:7c:
4c:e8:96:b7:ea:b0:68:9c:30:ad:64:3f:f7:03:ad:a5:f8:64:
48:19:a9:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 18:53:21 2025 by rpki-client