Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/aBroVJUgie9LmDa5JmOnUjazEeM.roa
File: aBroVJUgie9LmDa5JmOnUjazEeM.roa (raw, json)
Hash identifier: UFl6H0hoRRUh2Fn9XdINBDLXEeeQuUp9RjXLezRFubQ=
Subject key identifier: 68:1A:E8:54:95:20:89:EF:4B:98:36:B9:26:63:A7:52:36:B3:11:E3
Certificate issuer: /CN=e0c8a390dde5e1519a4bd3da754a93e988492d67
Certificate serial: 0185BF4D1B56436ADF696165F13142E277F1
Authority key identifier: E0:C8:A3:90:DD:E5:E1:51:9A:4B:D3:DA:75:4A:93:E9:88:49:2D:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4MijkN3l4VGaS9PadUqT6YhJLWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/aBroVJUgie9LmDa5JmOnUjazEeM.roa
Signing time: Tue 17 Jan 2023 10:36:19 +0000
ROA not before: Tue 17 Jan 2023 10:36:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61323
IP address blocks: 81.201.128.0/20 maxlen: 20
80.66.200.0/22 maxlen: 22
185.241.248.0/22 maxlen: 24
185.221.204.0/22 maxlen: 22
193.39.252.0/22 maxlen: 22
194.39.164.0/22 maxlen: 22
185.160.252.0/23 maxlen: 23
185.160.254.0/24 maxlen: 24
78.137.112.0/20 maxlen: 20
178.238.128.0/20 maxlen: 20
45.84.20.0/22 maxlen: 24
185.181.196.0/22 maxlen: 22
176.124.52.0/22 maxlen: 24
185.210.196.0/22 maxlen: 22
185.207.108.0/22 maxlen: 22
195.69.102.0/24 maxlen: 24
185.234.36.0/22 maxlen: 22
78.109.160.0/20 maxlen: 20
185.197.60.0/22 maxlen: 22
185.160.180.0/22 maxlen: 22
80.244.176.0/20 maxlen: 20
45.157.40.0/22 maxlen: 22
192.166.44.0/24 maxlen: 24
192.166.45.0/24 maxlen: 24
192.166.46.0/23 maxlen: 23
159.253.208.0/21 maxlen: 21
185.226.220.0/22 maxlen: 22
185.162.224.0/22 maxlen: 22
31.193.0.0/20 maxlen: 20
185.217.40.0/22 maxlen: 22
185.220.60.0/22 maxlen: 22
185.156.64.0/24 maxlen: 24
185.156.65.0/24 maxlen: 24
185.156.66.0/23 maxlen: 23
37.220.88.0/21 maxlen: 21
185.55.78.0/23 maxlen: 23
185.55.77.0/24 maxlen: 24
185.166.128.0/22 maxlen: 22
45.131.136.0/22 maxlen: 22
109.108.128.0/19 maxlen: 19
185.216.76.0/22 maxlen: 22
78.24.89.0/24 maxlen: 24
78.24.90.0/23 maxlen: 23
78.24.88.0/24 maxlen: 24
185.182.88.0/22 maxlen: 22
45.145.100.0/22 maxlen: 22
46.37.160.0/19 maxlen: 19
94.229.160.0/20 maxlen: 20
2a02:22d0::/32 maxlen: 32
2a09:b600:5::/48 maxlen: 48
2a09:ba00:4::/48 maxlen: 48
2a02:22d0:c::/48 maxlen: 48
2a09:b200:6::/48 maxlen: 48
2a0c:3dc0::/29 maxlen: 29
2a02:21a8::/48 maxlen: 48
2a02:21a8:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bf:4d:1b:56:43:6a:df:69:61:65:f1:31:42:e2:77:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0c8a390dde5e1519a4bd3da754a93e988492d67
Validity
Not Before: Jan 17 10:36:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=681ae854952089ef4b9836b92663a75236b311e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c9:ad:ce:3f:e1:8e:81:29:56:01:fb:3b:95:
de:37:88:49:b3:ed:a8:47:40:32:8b:6d:d2:4f:d9:
a2:fb:a4:d9:d2:42:c9:f4:00:b1:45:ff:d2:5c:04:
69:7b:75:23:0e:db:42:d9:ae:62:54:92:e6:5a:73:
55:09:e2:0d:55:0d:1a:dc:4c:16:4b:cc:5a:98:3b:
ca:af:b3:e7:fa:c2:7e:1b:c2:72:b1:32:a9:b7:43:
6e:ab:7c:be:fe:e6:9e:96:fa:58:7b:c0:22:6b:64:
cd:04:1f:6e:0c:d1:b9:27:82:c9:7c:fb:1b:30:e4:
3a:23:9d:6c:34:b5:4a:be:e5:0f:19:c1:1c:2b:6e:
f0:7f:e9:6b:ae:81:4a:6a:2b:82:eb:94:46:70:84:
5a:c6:f9:41:0d:59:ca:0b:79:a8:33:8f:46:4c:ab:
6a:4d:27:72:be:a4:f4:5c:20:0d:5c:a8:c0:98:6f:
e2:fa:74:16:86:cd:c2:97:76:07:ba:c5:be:5f:2b:
5c:c9:63:c2:bf:c8:17:b6:15:74:17:5c:f7:a0:bb:
5a:a3:b5:39:63:01:47:f0:6a:30:00:7a:3b:b9:d3:
c9:ee:12:3a:58:3a:e2:27:57:4a:f6:41:07:fd:38:
0e:43:9e:6c:23:07:28:aa:fd:4e:70:1a:1d:bc:fc:
81:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:1A:E8:54:95:20:89:EF:4B:98:36:B9:26:63:A7:52:36:B3:11:E3
X509v3 Authority Key Identifier:
keyid:E0:C8:A3:90:DD:E5:E1:51:9A:4B:D3:DA:75:4A:93:E9:88:49:2D:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4MijkN3l4VGaS9PadUqT6YhJLWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/aBroVJUgie9LmDa5JmOnUjazEeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/4MijkN3l4VGaS9PadUqT6YhJLWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.0.0/20
37.220.88.0/21
45.84.20.0/22
45.131.136.0/22
45.145.100.0/22
45.157.40.0/22
46.37.160.0/19
78.24.88.0/22
78.109.160.0/20
78.137.112.0/20
80.66.200.0/22
80.244.176.0/20
81.201.128.0/20
94.229.160.0/20
109.108.128.0/19
159.253.208.0/21
176.124.52.0/22
178.238.128.0/20
185.55.77.0-185.55.79.255
185.156.64.0/22
185.160.180.0/22
185.160.252.0-185.160.254.255
185.162.224.0/22
185.166.128.0/22
185.181.196.0/22
185.182.88.0/22
185.197.60.0/22
185.207.108.0/22
185.210.196.0/22
185.216.76.0/22
185.217.40.0/22
185.220.60.0/22
185.221.204.0/22
185.226.220.0/22
185.234.36.0/22
185.241.248.0/22
192.166.44.0/22
193.39.252.0/22
194.39.164.0/22
195.69.102.0/24
IPv6:
2a02:21a8::/47
2a02:22d0::/32
2a09:b200:6::/48
2a09:b600:5::/48
2a09:ba00:4::/48
2a0c:3dc0::/29
Signature Algorithm: sha256WithRSAEncryption
b3:86:ec:40:ff:90:3c:cb:9b:85:a5:65:27:38:9c:1b:74:0b:
07:35:68:22:6e:7c:8c:25:75:1d:10:be:54:6a:d5:09:92:4c:
71:05:ab:3d:80:04:e0:e3:cd:fe:0c:40:c7:95:17:98:dc:07:
6d:d3:2f:a3:62:59:55:fe:51:8f:c2:d5:b4:af:1e:53:2a:98:
7c:59:f9:64:02:02:44:73:3f:28:46:37:ba:c2:7f:a8:2f:c4:
73:14:84:cf:11:74:f5:2f:4f:c1:f5:33:70:a4:e9:05:c0:83:
17:5c:e7:9c:3f:b0:8e:9a:71:3f:e1:a1:77:11:b9:e9:61:86:
06:77:ce:4f:6c:18:21:2f:b4:a8:0e:36:2e:40:69:a8:45:b3:
13:3d:8d:12:f2:7e:76:4f:71:ec:cc:53:5c:21:2d:12:53:b0:
dd:8e:ba:73:41:7c:00:28:ae:ce:32:b0:0f:20:f6:60:30:5c:
62:8d:f4:fb:5c:f0:e9:e8:76:28:9a:09:2f:96:06:f3:b4:75:
f8:33:2c:97:bf:e9:a1:bf:51:06:55:4d:13:be:0d:6d:15:ef:
96:6e:4e:58:9a:97:57:89:f3:31:a2:a6:19:aa:16:a4:0c:1c:
62:2e:a5:3b:f5:b0:9b:2d:30:b4:4d:17:a5:02:61:43:5b:bb:
89:bc:5b:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 20:40:46 2025 by rpki-client