Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/ZlS67sasiqT9CxlLjSJXM-GcKAE.roa
File: ZlS67sasiqT9CxlLjSJXM-GcKAE.roa (raw, json)
Hash identifier: dRRiVExfpOgXfzoVUEjYfE29CDdJ8HYI9nRVy8cofvs=
Subject key identifier: 66:54:BA:EE:C6:AC:8A:A4:FD:0B:19:4B:8D:22:57:33:E1:9C:28:01
Certificate issuer: /CN=e0c8a390dde5e1519a4bd3da754a93e988492d67
Certificate serial: 0E3458DC
Authority key identifier: E0:C8:A3:90:DD:E5:E1:51:9A:4B:D3:DA:75:4A:93:E9:88:49:2D:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4MijkN3l4VGaS9PadUqT6YhJLWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/ZlS67sasiqT9CxlLjSJXM-GcKAE.roa
Signing time: Mon 28 Feb 2022 11:52:58 +0000
ROA not before: Mon 28 Feb 2022 11:52:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61323
IP address blocks: 81.201.128.0/20 maxlen: 20
80.66.200.0/22 maxlen: 22
185.241.248.0/22 maxlen: 24
185.221.204.0/22 maxlen: 22
193.39.252.0/22 maxlen: 22
194.39.164.0/22 maxlen: 22
185.160.252.0/23 maxlen: 23
185.160.254.0/24 maxlen: 24
78.137.112.0/20 maxlen: 20
178.238.128.0/20 maxlen: 20
45.84.20.0/22 maxlen: 24
185.181.196.0/22 maxlen: 22
185.210.196.0/22 maxlen: 22
185.207.108.0/22 maxlen: 22
195.69.102.0/24 maxlen: 24
185.234.36.0/22 maxlen: 22
78.109.160.0/20 maxlen: 20
185.197.60.0/22 maxlen: 22
185.160.180.0/22 maxlen: 22
80.244.176.0/20 maxlen: 20
192.166.44.0/24 maxlen: 24
192.166.45.0/24 maxlen: 24
192.166.46.0/23 maxlen: 23
159.253.208.0/21 maxlen: 21
185.226.220.0/22 maxlen: 22
185.162.224.0/22 maxlen: 22
31.193.0.0/20 maxlen: 20
185.217.40.0/22 maxlen: 22
185.220.60.0/22 maxlen: 22
185.156.64.0/24 maxlen: 24
185.156.65.0/24 maxlen: 24
185.156.66.0/23 maxlen: 23
37.220.88.0/21 maxlen: 21
185.55.78.0/23 maxlen: 23
185.55.77.0/24 maxlen: 24
185.166.128.0/22 maxlen: 22
45.131.136.0/22 maxlen: 22
109.108.128.0/19 maxlen: 19
185.216.76.0/22 maxlen: 22
78.24.89.0/24 maxlen: 24
78.24.90.0/23 maxlen: 23
78.24.88.0/24 maxlen: 24
185.182.88.0/22 maxlen: 22
46.37.160.0/19 maxlen: 19
94.229.160.0/20 maxlen: 20
2a02:21a8:5::/48 maxlen: 48
2a02:21a8:6::/48 maxlen: 48
2a02:22d0::/32 maxlen: 32
2a09:b600:5::/48 maxlen: 48
2a02:21a8:2::/48 maxlen: 48
2a09:ba00:4::/48 maxlen: 48
2a02:22d0:c::/48 maxlen: 48
2a09:b200:6::/48 maxlen: 48
2a0c:3dc0::/29 maxlen: 29
2a02:21a8::/48 maxlen: 48
2a02:21a8:1::/48 maxlen: 48
2a02:21a8:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 238311644 (0xe3458dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0c8a390dde5e1519a4bd3da754a93e988492d67
Validity
Not Before: Feb 28 11:52:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6654baeec6ac8aa4fd0b194b8d225733e19c2801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:70:34:16:44:b8:e2:c7:c8:7f:d2:9b:b8:d0:
f4:25:4c:35:5e:59:6a:65:e9:74:0b:8e:58:36:78:
93:42:08:e1:c7:2f:f7:35:59:bf:3b:b0:5f:e2:30:
e7:df:05:fb:99:76:b0:50:9c:3e:3b:1c:54:d2:fd:
87:26:9e:a5:64:ce:ac:2f:4b:10:0d:da:67:0e:9f:
87:70:7f:68:ef:e2:0c:bd:f1:5e:ce:56:03:65:7b:
e1:5e:11:2c:b0:45:35:be:ec:7e:22:72:e2:98:34:
99:bc:71:04:49:4a:45:72:47:45:f5:2a:c8:81:08:
8b:9a:f4:70:d2:7c:78:cd:2f:44:6c:fe:bc:d2:9b:
8c:76:03:8a:f6:11:da:66:47:e4:62:bc:b7:aa:a6:
62:4f:40:06:b0:84:32:52:3d:a8:4c:9f:ab:34:ef:
86:a4:d8:c8:d9:c6:72:c5:89:fd:83:04:5f:c9:5b:
9a:9e:34:61:dc:38:89:3e:8e:1d:96:cb:40:27:e0:
da:41:b3:e5:fb:de:5f:98:99:56:a5:88:42:cf:07:
11:a9:e7:ac:9d:10:b3:e7:92:df:27:a8:ed:9b:a5:
06:fb:87:0e:53:cd:46:ba:61:88:7d:34:46:6d:fd:
52:56:c9:80:56:46:28:f9:73:3e:fd:02:d1:de:b6:
04:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:54:BA:EE:C6:AC:8A:A4:FD:0B:19:4B:8D:22:57:33:E1:9C:28:01
X509v3 Authority Key Identifier:
keyid:E0:C8:A3:90:DD:E5:E1:51:9A:4B:D3:DA:75:4A:93:E9:88:49:2D:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4MijkN3l4VGaS9PadUqT6YhJLWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/ZlS67sasiqT9CxlLjSJXM-GcKAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/4MijkN3l4VGaS9PadUqT6YhJLWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.0.0/20
37.220.88.0/21
45.84.20.0/22
45.131.136.0/22
46.37.160.0/19
78.24.88.0/22
78.109.160.0/20
78.137.112.0/20
80.66.200.0/22
80.244.176.0/20
81.201.128.0/20
94.229.160.0/20
109.108.128.0/19
159.253.208.0/21
178.238.128.0/20
185.55.77.0-185.55.79.255
185.156.64.0/22
185.160.180.0/22
185.160.252.0-185.160.254.255
185.162.224.0/22
185.166.128.0/22
185.181.196.0/22
185.182.88.0/22
185.197.60.0/22
185.207.108.0/22
185.210.196.0/22
185.216.76.0/22
185.217.40.0/22
185.220.60.0/22
185.221.204.0/22
185.226.220.0/22
185.234.36.0/22
185.241.248.0/22
192.166.44.0/22
193.39.252.0/22
194.39.164.0/22
195.69.102.0/24
IPv6:
2a02:21a8::-2a02:21a8:2:ffff:ffff:ffff:ffff:ffff
2a02:21a8:4::-2a02:21a8:6:ffff:ffff:ffff:ffff:ffff
2a02:22d0::/32
2a09:b200:6::/48
2a09:b600:5::/48
2a09:ba00:4::/48
2a0c:3dc0::/29
Signature Algorithm: sha256WithRSAEncryption
5d:a3:f0:b4:8a:b5:0c:59:82:ce:63:c8:39:d4:5e:a4:8a:4b:
0a:75:d6:a4:77:58:25:eb:61:f9:6c:d3:06:93:d6:b7:9c:22:
68:6f:a3:81:2e:5c:47:46:e3:eb:63:e2:21:eb:25:fb:fc:6c:
ff:92:b3:15:35:1e:98:24:84:32:5b:5a:12:12:15:b8:a7:80:
64:42:18:d7:de:41:df:78:ca:b3:7c:dc:33:d9:0f:59:b8:e7:
21:49:14:37:64:b9:3e:4c:82:83:13:f5:64:41:34:53:ad:de:
55:55:17:43:dd:03:c8:c0:dc:22:0c:d1:d3:48:bf:95:18:73:
b6:fc:68:b9:20:5d:53:1d:98:da:05:22:f8:e9:a0:81:26:c9:
d6:bf:54:90:ad:03:7c:93:d1:89:c7:8b:72:8f:cf:38:0a:b7:
52:c7:3e:14:1c:5f:f3:70:ee:63:93:f6:2c:a0:45:ca:4d:34:
5f:19:7f:4a:bf:46:e3:5b:bd:a1:05:aa:c8:8d:bf:f0:64:59:
8e:ce:04:ec:8f:4b:40:04:b7:01:77:83:1b:d7:82:23:76:e7:
f6:3d:22:23:b5:c2:84:4c:75:ac:eb:bd:4a:de:d6:89:ee:4c:
48:7d:3e:57:78:4e:39:8f:d7:78:53:68:e0:b9:db:1b:7f:e4:
e3:a3:56:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:48 2025 by rpki-client