Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/jK9S8Se4by0NKy3v-lGucqtZMUU.roa
File: jK9S8Se4by0NKy3v-lGucqtZMUU.roa (raw, json)
Hash identifier: idzBia23snxqTiZFn7h10HpvWGCQtLEyebKLbV6WNFk=
Subject key identifier: 8C:AF:52:F1:27:B8:6F:2D:0D:2B:2D:EF:FA:51:AE:72:AB:59:31:45
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 36B312FB
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/jK9S8Se4by0NKy3v-lGucqtZMUU.roa
Signing time: Thu 21 Apr 2022 15:55:39 +0000
ROA not before: Thu 21 Apr 2022 15:55:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31376
IP address blocks: 217.119.16.0/20 maxlen: 28
213.108.32.0/21 maxlen: 21
91.215.252.0/23 maxlen: 23
94.125.8.0/21 maxlen: 21
91.190.80.0/21 maxlen: 21
93.92.192.0/21 maxlen: 28
109.71.176.0/21 maxlen: 28
185.42.60.0/22 maxlen: 28
91.219.180.0/22 maxlen: 22
80.79.240.0/21 maxlen: 21
80.79.248.0/22 maxlen: 22
80.79.252.0/23 maxlen: 23
91.215.254.0/24 maxlen: 24
91.215.255.0/24 maxlen: 24
80.249.176.0/20 maxlen: 28
80.73.192.0/20 maxlen: 20
188.93.240.0/21 maxlen: 28
93.190.224.0/21 maxlen: 28
193.110.237.0/24 maxlen: 24
193.110.236.0/22 maxlen: 22
2a02:16e8::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 917705467 (0x36b312fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Apr 21 15:55:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8caf52f127b86f2d0d2b2deffa51ae72ab593145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:97:f5:30:eb:a8:52:a5:bc:ab:8e:3e:58:36:
56:de:4c:97:62:ed:ae:8c:1d:ba:b1:01:10:06:0a:
8a:a0:51:b1:e1:46:aa:49:6a:84:56:5e:73:ed:3c:
76:93:a8:68:9d:f8:09:96:c3:25:ec:6b:3c:e6:7f:
1c:3e:3e:9c:34:89:be:5c:d0:fb:1b:bf:1d:22:82:
b9:fc:03:69:54:dc:b1:6e:d3:72:b9:f5:6f:aa:07:
47:52:97:58:f1:7c:0b:f4:1b:11:db:dc:f5:9c:5f:
81:40:80:c6:ba:bb:be:6a:97:d9:77:c3:33:40:26:
05:e2:fd:63:f9:b7:49:85:b4:f3:72:8f:25:eb:24:
38:79:37:0a:9a:8d:c0:a0:a2:a6:58:bf:36:3f:8f:
27:59:d7:c2:38:92:55:60:78:e0:9e:87:b3:f7:ee:
7e:66:f9:c3:9c:cd:05:77:fa:2b:2d:c7:b2:67:97:
c2:f5:c1:ce:1a:c2:9b:1c:27:00:f6:0d:39:9a:a1:
31:30:b0:4d:ed:e5:a7:00:71:26:3c:bc:84:45:09:
6e:e5:70:84:df:41:e5:27:a9:6c:77:16:8e:02:b7:
93:98:32:81:50:90:0b:96:7c:e5:c5:1c:c2:1f:18:
f0:3e:68:86:61:db:a9:4e:09:28:9a:a2:8e:c5:17:
62:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:AF:52:F1:27:B8:6F:2D:0D:2B:2D:EF:FA:51:AE:72:AB:59:31:45
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/jK9S8Se4by0NKy3v-lGucqtZMUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.192.0/20
80.79.240.0-80.79.253.255
80.249.176.0/20
91.190.80.0/21
91.215.252.0/22
91.219.180.0/22
93.92.192.0/21
93.190.224.0/21
94.125.8.0/21
109.71.176.0/21
185.42.60.0/22
188.93.240.0/21
193.110.236.0/22
213.108.32.0/21
217.119.16.0/20
IPv6:
2a02:16e8::/32
Signature Algorithm: sha256WithRSAEncryption
68:e9:e1:0a:5a:21:56:c6:b5:3b:e6:57:3c:b9:75:28:c7:7d:
94:ac:ea:b0:73:a5:d7:ad:9d:dc:88:64:08:86:fa:d3:4d:59:
9f:88:ef:f8:43:24:56:4d:b2:6b:cf:07:e2:11:81:7a:04:21:
4b:87:92:9e:7b:46:fd:93:05:03:59:cc:c5:0d:e8:d9:ff:c3:
4c:8a:87:62:d0:f2:96:13:17:a3:db:68:8c:0c:86:ad:bf:b9:
9d:c2:d4:7d:ec:fa:50:52:29:3e:b5:86:50:0d:e1:5f:4c:af:
bd:e0:ba:08:84:e4:96:10:39:50:7f:5a:5b:b9:ff:7c:65:4f:
cb:91:7e:0f:8a:53:be:1d:55:9f:e2:5d:c8:c4:62:b1:d7:e7:
3e:49:4d:69:f6:d9:00:c8:4e:a8:23:10:af:f1:f9:43:e4:94:
42:12:fe:35:e8:a6:4b:4b:97:cd:c9:d9:3b:03:24:2b:d1:4a:
04:74:46:2c:de:0f:b2:9d:b3:f6:f6:16:90:1e:c6:44:5a:ac:
9f:8a:1e:9c:17:1c:86:d7:a1:8c:7e:b0:95:c6:63:38:84:85:
a8:8e:cd:70:e5:bd:b5:95:af:9b:fa:55:1d:04:e1:17:f9:d2:
8b:ae:8e:08:b9:79:c5:6f:49:1c:c9:31:56:2f:37:6f:2b:bf:
50:6c:27:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:32:00 2025 by rpki-client