Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/sUF4PVVbKpFRZW__zxISim7u5Kw.roa
File: sUF4PVVbKpFRZW__zxISim7u5Kw.roa (raw, json)
Hash identifier: dXb469tR3eUk7rzf2GYExRrC1d0BQklcSiKvQN1X8AQ=
Subject key identifier: B1:41:78:3D:55:5B:2A:91:51:65:6F:FF:CF:12:12:8A:6E:EE:E4:AC
Certificate issuer: /CN=58667131d760b5db1de98ea20c0f82fc01c9f1d9
Certificate serial: 0189975C7BB5E09543ADD0A9C1FB1380140C
Authority key identifier: 58:66:71:31:D7:60:B5:DB:1D:E9:8E:A2:0C:0F:82:FC:01:C9:F1:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/sUF4PVVbKpFRZW__zxISim7u5Kw.roa
Signing time: Thu 27 Jul 2023 12:39:27 +0000
ROA not before: Thu 27 Jul 2023 12:39:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31673
IP address blocks: 185.111.120.0/22 maxlen: 22
185.2.24.0/22 maxlen: 22
80.247.160.0/20 maxlen: 20
193.239.88.0/22 maxlen: 22
193.239.89.0/24 maxlen: 24
185.139.148.0/22 maxlen: 22
85.255.208.0/20 maxlen: 20
81.26.208.0/20 maxlen: 20
87.237.96.0/23 maxlen: 23
94.126.64.0/21 maxlen: 21
87.237.100.0/23 maxlen: 23
62.148.160.0/19 maxlen: 19
81.93.48.0/20 maxlen: 20
2a06:5dc0::/29 maxlen: 29
2a02:728::/32 maxlen: 32
2001:16e8::/32 maxlen: 32
2a00:f80::/32 maxlen: 32
2a02:4640::/32 maxlen: 32
2a02:4640:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:97:5c:7b:b5:e0:95:43:ad:d0:a9:c1:fb:13:80:14:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58667131d760b5db1de98ea20c0f82fc01c9f1d9
Validity
Not Before: Jul 27 12:39:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b141783d555b2a9151656fffcf12128a6eeee4ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:58:68:53:1b:c8:1b:5d:75:5d:9e:83:26:71:
4f:dc:07:dd:70:2a:88:e8:c6:38:d7:09:a2:03:67:
af:fd:ce:75:bc:2b:bb:65:33:22:4d:3a:d9:35:fb:
f8:2a:3e:2a:df:ff:84:d2:0a:51:d8:c5:34:42:7c:
24:14:02:15:f8:0d:7b:c7:75:3a:1a:ba:c5:ed:1a:
5f:fc:69:e7:3f:e3:b5:19:d8:1b:77:a9:af:e4:ab:
33:52:9e:fb:36:bd:0a:96:0f:c8:de:68:c9:68:87:
5b:b9:37:83:9a:c9:17:bb:bf:3d:67:5e:ba:b8:83:
6d:44:ec:18:bf:ad:c2:56:8d:7b:0b:68:b4:cb:c5:
c7:db:19:3d:71:c6:d8:3f:4d:9b:f2:ea:35:06:af:
a6:1e:95:bb:2c:7f:78:11:02:51:04:bb:8c:39:e0:
e1:ff:06:23:36:64:f1:d1:63:a4:ea:3e:66:fe:c1:
af:b7:84:76:03:98:13:ac:9b:bd:58:ff:b5:0e:21:
fb:e9:d8:e7:70:28:c1:f4:2f:3a:8f:b9:18:d4:4c:
dd:da:b5:bc:18:44:18:ed:da:3a:6d:fe:50:6c:b7:
19:3c:0f:11:6b:dc:1a:9f:48:e2:cf:fa:b6:d9:cf:
00:fb:c9:0c:0e:6d:de:cc:6d:c4:66:73:e0:22:6c:
5d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:41:78:3D:55:5B:2A:91:51:65:6F:FF:CF:12:12:8A:6E:EE:E4:AC
X509v3 Authority Key Identifier:
keyid:58:66:71:31:D7:60:B5:DB:1D:E9:8E:A2:0C:0F:82:FC:01:C9:F1:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/sUF4PVVbKpFRZW__zxISim7u5Kw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.148.160.0/19
80.247.160.0/20
81.26.208.0/20
81.93.48.0/20
85.255.208.0/20
87.237.96.0/23
87.237.100.0/23
94.126.64.0/21
185.2.24.0/22
185.111.120.0/22
185.139.148.0/22
193.239.88.0/22
IPv6:
2001:16e8::/32
2a00:f80::/32
2a02:728::/32
2a02:4640::/32
2a06:5dc0::/29
Signature Algorithm: sha256WithRSAEncryption
b1:32:a8:6a:aa:12:6b:96:de:30:60:20:57:d7:a6:48:60:2e:
1d:b0:2f:7b:db:ec:53:11:00:3b:db:da:cf:19:a2:ef:a4:4e:
4e:32:d5:8b:03:94:83:ed:d3:2f:24:97:b2:45:58:fb:ca:1b:
27:0e:8a:92:19:d1:68:41:cf:94:23:b8:34:75:87:b7:ba:12:
be:c7:c7:bf:28:18:7a:c9:db:e2:e3:28:83:e4:a4:ed:c4:4b:
7d:0a:20:28:61:26:8b:e3:c8:be:50:85:9d:eb:fc:53:40:40:
c3:01:bc:5d:e9:c9:7b:0f:18:f2:3c:03:46:95:d2:80:63:c8:
5b:a6:45:9e:1a:ee:ed:8e:50:4d:a6:b1:2a:c9:c2:9d:a0:1c:
4c:9a:88:9c:67:c9:f3:55:3f:b2:01:d3:8f:ba:5a:12:0d:82:
0d:f6:05:de:cc:c7:d7:31:59:7b:fd:89:a8:19:d2:8a:60:72:
74:a0:95:4f:a7:a6:51:b8:17:2c:af:17:bc:56:c3:ce:bd:ed:
7f:81:4e:47:74:fa:55:cc:bf:77:36:c6:91:f9:b2:21:51:5e:
0e:6f:70:07:b1:32:67:1f:f3:3e:cc:2d:ca:52:d3:1b:dd:27:
f5:3e:1c:c5:e2:f2:89:1d:5a:63:70:58:f2:c5:75:fa:41:06:
16:54:74:7c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:14 2025 by rpki-client