Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/P8ofNORTfrZ2W365BAP28ItyDlY.roa
File: P8ofNORTfrZ2W365BAP28ItyDlY.roa (raw, json)
Hash identifier: wa7o2AXT755bqDTR8ZUPoCdQVd8V0Iiv9UIQWLWTsNM=
Subject key identifier: 3F:CA:1F:34:E4:53:7E:B6:76:5B:7E:B9:04:03:F6:F0:8B:72:0E:56
Certificate issuer: /CN=e0c8a390dde5e1519a4bd3da754a93e988492d67
Certificate serial: 0EABBCF0
Authority key identifier: E0:C8:A3:90:DD:E5:E1:51:9A:4B:D3:DA:75:4A:93:E9:88:49:2D:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4MijkN3l4VGaS9PadUqT6YhJLWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/P8ofNORTfrZ2W365BAP28ItyDlY.roa
Signing time: Thu 21 Apr 2022 13:51:46 +0000
ROA not before: Thu 21 Apr 2022 13:51:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61323
IP address blocks: 81.201.128.0/20 maxlen: 20
80.66.200.0/22 maxlen: 22
185.241.248.0/22 maxlen: 24
185.221.204.0/22 maxlen: 22
193.39.252.0/22 maxlen: 22
194.39.164.0/22 maxlen: 22
185.160.252.0/23 maxlen: 23
185.160.254.0/24 maxlen: 24
78.137.112.0/20 maxlen: 20
178.238.128.0/20 maxlen: 20
45.84.20.0/22 maxlen: 24
185.181.196.0/22 maxlen: 22
176.124.52.0/22 maxlen: 24
185.210.196.0/22 maxlen: 22
185.207.108.0/22 maxlen: 22
195.69.102.0/24 maxlen: 24
185.234.36.0/22 maxlen: 22
78.109.160.0/20 maxlen: 20
185.197.60.0/22 maxlen: 22
185.160.180.0/22 maxlen: 22
80.244.176.0/20 maxlen: 20
192.166.44.0/24 maxlen: 24
192.166.45.0/24 maxlen: 24
192.166.46.0/23 maxlen: 23
159.253.208.0/21 maxlen: 21
185.226.220.0/22 maxlen: 22
185.162.224.0/22 maxlen: 22
31.193.0.0/20 maxlen: 20
185.217.40.0/22 maxlen: 22
185.220.60.0/22 maxlen: 22
185.156.64.0/24 maxlen: 24
185.156.65.0/24 maxlen: 24
185.156.66.0/23 maxlen: 23
37.220.88.0/21 maxlen: 21
185.55.78.0/23 maxlen: 23
185.55.77.0/24 maxlen: 24
185.166.128.0/22 maxlen: 22
45.131.136.0/22 maxlen: 22
109.108.128.0/19 maxlen: 19
185.216.76.0/22 maxlen: 22
78.24.89.0/24 maxlen: 24
78.24.90.0/23 maxlen: 23
78.24.88.0/24 maxlen: 24
185.182.88.0/22 maxlen: 22
45.145.100.0/22 maxlen: 22
46.37.160.0/19 maxlen: 19
94.229.160.0/20 maxlen: 20
2a02:21a8:5::/48 maxlen: 48
2a02:21a8:6::/48 maxlen: 48
2a02:22d0::/32 maxlen: 32
2a09:b600:5::/48 maxlen: 48
2a02:21a8:2::/48 maxlen: 48
2a09:ba00:4::/48 maxlen: 48
2a02:22d0:c::/48 maxlen: 48
2a09:b200:6::/48 maxlen: 48
2a0c:3dc0::/29 maxlen: 29
2a02:21a8::/48 maxlen: 48
2a02:21a8:1::/48 maxlen: 48
2a02:21a8:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 246136048 (0xeabbcf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0c8a390dde5e1519a4bd3da754a93e988492d67
Validity
Not Before: Apr 21 13:51:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fca1f34e4537eb6765b7eb90403f6f08b720e56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a3:9a:ce:71:8e:8d:1c:bb:43:66:70:00:71:
7c:7a:0d:07:12:d3:f2:a8:5c:df:c4:4a:63:8e:61:
eb:dc:e9:d1:7d:10:27:27:d3:2f:41:f0:a9:fd:d0:
ad:91:21:86:96:e1:4d:35:f8:a1:ff:94:ab:e0:65:
09:30:25:9d:2c:85:02:ca:f6:17:d3:5a:2b:4e:c3:
d3:47:51:4b:4d:17:db:0e:c1:a3:fa:6d:f5:78:ae:
4a:b5:0c:a9:77:eb:c2:c9:cf:73:ee:d9:9e:ca:98:
3d:39:1d:bd:f0:40:d6:3e:42:6f:0a:9d:86:39:75:
ec:3a:24:43:56:24:28:38:88:55:c9:15:0f:1a:7d:
69:f3:49:3c:2a:ba:75:22:7f:6f:fa:35:aa:ae:22:
52:6c:a1:14:8f:55:20:76:40:b5:79:7f:7a:51:1c:
0d:36:5a:37:9d:08:2c:85:14:30:58:80:6c:05:a7:
91:fd:12:de:81:a2:8c:5f:d9:f9:3c:25:af:81:38:
19:f7:bd:cb:c4:e5:21:74:f1:5d:9d:de:8b:25:11:
5d:00:7b:da:2f:1c:d7:29:1b:6e:27:8f:3b:6d:78:
bf:db:3d:9a:ca:ae:48:16:1f:a6:3c:72:12:55:20:
60:d2:ad:62:d6:19:e9:8e:ca:ee:f5:a9:bd:81:90:
4d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:CA:1F:34:E4:53:7E:B6:76:5B:7E:B9:04:03:F6:F0:8B:72:0E:56
X509v3 Authority Key Identifier:
keyid:E0:C8:A3:90:DD:E5:E1:51:9A:4B:D3:DA:75:4A:93:E9:88:49:2D:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4MijkN3l4VGaS9PadUqT6YhJLWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/P8ofNORTfrZ2W365BAP28ItyDlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/4MijkN3l4VGaS9PadUqT6YhJLWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.0.0/20
37.220.88.0/21
45.84.20.0/22
45.131.136.0/22
45.145.100.0/22
46.37.160.0/19
78.24.88.0/22
78.109.160.0/20
78.137.112.0/20
80.66.200.0/22
80.244.176.0/20
81.201.128.0/20
94.229.160.0/20
109.108.128.0/19
159.253.208.0/21
176.124.52.0/22
178.238.128.0/20
185.55.77.0-185.55.79.255
185.156.64.0/22
185.160.180.0/22
185.160.252.0-185.160.254.255
185.162.224.0/22
185.166.128.0/22
185.181.196.0/22
185.182.88.0/22
185.197.60.0/22
185.207.108.0/22
185.210.196.0/22
185.216.76.0/22
185.217.40.0/22
185.220.60.0/22
185.221.204.0/22
185.226.220.0/22
185.234.36.0/22
185.241.248.0/22
192.166.44.0/22
193.39.252.0/22
194.39.164.0/22
195.69.102.0/24
IPv6:
2a02:21a8::-2a02:21a8:2:ffff:ffff:ffff:ffff:ffff
2a02:21a8:4::-2a02:21a8:6:ffff:ffff:ffff:ffff:ffff
2a02:22d0::/32
2a09:b200:6::/48
2a09:b600:5::/48
2a09:ba00:4::/48
2a0c:3dc0::/29
Signature Algorithm: sha256WithRSAEncryption
42:b0:1a:c7:c9:25:46:87:69:2e:71:1e:04:c1:e6:43:94:1f:
65:ef:ea:64:fa:95:95:5d:dd:79:0c:74:1f:56:cd:76:1b:7a:
58:52:cf:7b:b7:59:a2:8e:88:1b:c3:20:b4:dd:d5:78:b6:bf:
38:73:9a:96:5b:5b:01:82:d0:90:a8:fa:af:b2:da:dd:dd:ab:
09:23:dd:cd:77:76:32:b7:a1:3b:b0:3d:1e:02:cf:ca:97:79:
b6:73:84:9e:00:f8:b7:ad:cd:6f:4b:bf:dc:4f:59:04:56:30:
ce:0e:18:20:92:91:fe:58:38:21:8a:52:27:c4:55:20:ae:f6:
1a:77:0c:31:9d:a3:2b:5a:cd:8f:e6:14:6e:65:78:2a:d7:0b:
53:5c:db:1d:76:d9:21:ba:7b:2d:ee:a7:c8:7f:ce:6c:de:30:
6d:5e:39:9e:dc:04:42:31:47:02:b8:6d:2d:a1:73:d4:e6:37:
ea:41:17:b0:68:cb:29:74:ba:6b:2a:cd:74:e9:95:09:fe:b1:
d3:dd:7c:eb:77:76:51:d0:24:eb:10:71:35:60:fc:fd:db:0b:
e1:9a:9c:68:dd:3a:a4:99:bd:e7:a4:49:0f:7d:3c:ee:3f:83:
7b:6b:d8:a2:1a:77:00:8c:9d:88:ef:f1:8d:71:ce:ce:8a:2d:
de:94:a5:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:33:46 2025 by rpki-client