Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/Y2qf57BazJE5q6jseBJXa2RFpnU.roa
File: Y2qf57BazJE5q6jseBJXa2RFpnU.roa (raw, json)
Hash identifier: VkURAOrJZOOjrhYV2bO2Oij/el5T+fyUAF/dG5rq1VA=
Subject key identifier: 63:6A:9F:E7:B0:5A:CC:91:39:AB:A8:EC:78:12:57:6B:64:45:A6:75
Certificate issuer: /CN=e0c8a390dde5e1519a4bd3da754a93e988492d67
Certificate serial: 0E7A38FC
Authority key identifier: E0:C8:A3:90:DD:E5:E1:51:9A:4B:D3:DA:75:4A:93:E9:88:49:2D:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4MijkN3l4VGaS9PadUqT6YhJLWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/Y2qf57BazJE5q6jseBJXa2RFpnU.roa
Signing time: Wed 30 Mar 2022 10:12:19 +0000
ROA not before: Wed 30 Mar 2022 10:12:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61323
IP address blocks: 81.201.128.0/20 maxlen: 20
80.66.200.0/22 maxlen: 22
185.241.248.0/22 maxlen: 24
185.221.204.0/22 maxlen: 22
193.39.252.0/22 maxlen: 22
194.39.164.0/22 maxlen: 22
185.160.252.0/23 maxlen: 23
185.160.254.0/24 maxlen: 24
78.137.112.0/20 maxlen: 20
178.238.128.0/20 maxlen: 20
45.84.20.0/22 maxlen: 24
185.181.196.0/22 maxlen: 22
185.210.196.0/22 maxlen: 22
185.207.108.0/22 maxlen: 22
195.69.102.0/24 maxlen: 24
185.234.36.0/22 maxlen: 22
78.109.160.0/20 maxlen: 20
185.197.60.0/22 maxlen: 22
185.160.180.0/22 maxlen: 22
80.244.176.0/20 maxlen: 20
192.166.44.0/24 maxlen: 24
192.166.45.0/24 maxlen: 24
192.166.46.0/23 maxlen: 23
159.253.208.0/21 maxlen: 21
185.226.220.0/22 maxlen: 22
185.162.224.0/22 maxlen: 22
31.193.0.0/20 maxlen: 20
185.217.40.0/22 maxlen: 22
185.220.60.0/22 maxlen: 22
185.156.64.0/24 maxlen: 24
185.156.65.0/24 maxlen: 24
185.156.66.0/23 maxlen: 23
37.220.88.0/21 maxlen: 21
185.55.78.0/23 maxlen: 23
185.55.77.0/24 maxlen: 24
185.166.128.0/22 maxlen: 22
45.131.136.0/22 maxlen: 22
109.108.128.0/19 maxlen: 19
185.216.76.0/22 maxlen: 22
78.24.89.0/24 maxlen: 24
78.24.90.0/23 maxlen: 23
78.24.88.0/24 maxlen: 24
185.182.88.0/22 maxlen: 22
45.145.100.0/22 maxlen: 22
46.37.160.0/19 maxlen: 19
94.229.160.0/20 maxlen: 20
2a02:21a8:5::/48 maxlen: 48
2a02:21a8:6::/48 maxlen: 48
2a02:22d0::/32 maxlen: 32
2a09:b600:5::/48 maxlen: 48
2a02:21a8:2::/48 maxlen: 48
2a09:ba00:4::/48 maxlen: 48
2a02:22d0:c::/48 maxlen: 48
2a09:b200:6::/48 maxlen: 48
2a0c:3dc0::/29 maxlen: 29
2a02:21a8::/48 maxlen: 48
2a02:21a8:1::/48 maxlen: 48
2a02:21a8:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 242891004 (0xe7a38fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0c8a390dde5e1519a4bd3da754a93e988492d67
Validity
Not Before: Mar 30 10:12:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=636a9fe7b05acc9139aba8ec7812576b6445a675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:67:9f:47:d6:f6:ce:1b:ac:a0:01:ca:ef:24:
36:4b:12:0b:4e:65:13:40:71:ed:cf:36:1d:e7:67:
a3:36:37:1d:c2:52:62:f3:2b:cc:b2:a2:2a:6b:5a:
59:56:4e:26:b8:17:52:b4:08:aa:32:cb:a6:b5:7b:
47:29:ff:fd:0b:21:d9:83:3a:1b:1f:00:3d:56:27:
fa:27:da:96:04:af:0a:2a:b5:2d:d5:90:d3:3a:a4:
b0:5b:bd:97:1a:39:f4:50:9c:b1:1b:2b:6c:74:20:
30:ce:32:04:a7:48:a8:48:4d:aa:e3:51:3e:a2:0f:
fb:60:2b:21:a1:34:dc:41:fc:0e:fa:2f:14:35:14:
8d:15:7b:d3:be:1a:f2:2f:98:a6:d7:f1:56:df:7d:
7d:dc:93:58:13:fc:b4:c7:75:e2:66:5c:74:86:ff:
65:10:80:a1:ff:ca:cf:79:43:ba:f3:cb:3d:95:2d:
2b:36:55:90:86:1b:10:4e:4c:76:18:2c:22:fb:41:
67:33:b0:35:ba:5c:fb:8f:1f:f3:e8:ed:d3:7a:12:
1b:5d:08:65:a4:bc:d4:fa:16:01:53:1a:2d:47:71:
67:78:a3:d1:53:72:13:5c:b4:9a:f4:02:3b:2e:c5:
51:3a:53:7a:13:50:e6:ba:c5:70:c8:8c:7e:bf:00:
6f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:6A:9F:E7:B0:5A:CC:91:39:AB:A8:EC:78:12:57:6B:64:45:A6:75
X509v3 Authority Key Identifier:
keyid:E0:C8:A3:90:DD:E5:E1:51:9A:4B:D3:DA:75:4A:93:E9:88:49:2D:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4MijkN3l4VGaS9PadUqT6YhJLWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/Y2qf57BazJE5q6jseBJXa2RFpnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/4MijkN3l4VGaS9PadUqT6YhJLWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.0.0/20
37.220.88.0/21
45.84.20.0/22
45.131.136.0/22
45.145.100.0/22
46.37.160.0/19
78.24.88.0/22
78.109.160.0/20
78.137.112.0/20
80.66.200.0/22
80.244.176.0/20
81.201.128.0/20
94.229.160.0/20
109.108.128.0/19
159.253.208.0/21
178.238.128.0/20
185.55.77.0-185.55.79.255
185.156.64.0/22
185.160.180.0/22
185.160.252.0-185.160.254.255
185.162.224.0/22
185.166.128.0/22
185.181.196.0/22
185.182.88.0/22
185.197.60.0/22
185.207.108.0/22
185.210.196.0/22
185.216.76.0/22
185.217.40.0/22
185.220.60.0/22
185.221.204.0/22
185.226.220.0/22
185.234.36.0/22
185.241.248.0/22
192.166.44.0/22
193.39.252.0/22
194.39.164.0/22
195.69.102.0/24
IPv6:
2a02:21a8::-2a02:21a8:2:ffff:ffff:ffff:ffff:ffff
2a02:21a8:4::-2a02:21a8:6:ffff:ffff:ffff:ffff:ffff
2a02:22d0::/32
2a09:b200:6::/48
2a09:b600:5::/48
2a09:ba00:4::/48
2a0c:3dc0::/29
Signature Algorithm: sha256WithRSAEncryption
bb:e3:8f:82:3b:e2:07:27:c8:67:44:54:97:d2:3c:ca:30:7b:
90:d9:8c:39:c7:a6:39:cf:76:00:ad:fd:af:35:c7:35:52:1f:
5d:6b:0b:27:61:ba:83:3f:39:78:e4:b5:be:34:d3:d6:d0:0d:
71:69:5e:77:58:7f:af:0b:09:93:15:fa:38:14:18:bb:e0:d4:
25:c5:c7:7a:c6:bd:d8:f5:1c:aa:99:80:4c:d0:18:b0:fb:70:
bb:4a:b1:54:0c:36:21:5a:ec:96:63:26:27:65:39:db:56:8f:
dd:1e:38:c9:0a:c9:a6:72:6e:d0:9c:9f:31:39:09:81:55:71:
b6:6c:7b:0d:dd:d1:3b:91:b9:51:fc:a5:f1:eb:7d:20:08:55:
31:85:48:03:71:f8:27:d1:fb:04:87:09:52:b7:7d:48:68:f4:
2d:85:f6:a9:f9:62:72:f3:fa:39:b0:21:fa:1b:21:c4:c8:0b:
0d:01:8d:fb:fa:2f:df:40:72:69:2c:79:f9:99:25:93:22:43:
67:fa:42:9f:26:e0:ea:cb:9a:3f:90:0d:25:06:3f:cd:63:34:
f3:ee:62:d9:a5:b7:d1:bb:9f:02:ee:01:2d:81:25:e6:07:e4:
99:26:a0:7c:f0:30:3b:88:8b:eb:f4:92:b5:c5:c7:f6:21:33:
0d:76:e7:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 19:41:17 2025 by rpki-client