Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/s0_r2hY5qBrzqhuAj-tIHbEXQ-w.roa
File: s0_r2hY5qBrzqhuAj-tIHbEXQ-w.roa (raw, json)
Hash identifier: 5TibhKC1mAN9RMr6mf7yY3xEzHCbgVKw0pMxCz/qRwk=
Subject key identifier: B3:4F:EB:DA:16:39:A8:1A:F3:AA:1B:80:8F:EB:48:1D:B1:17:43:EC
Certificate issuer: /CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Certificate serial: 7B1F94
Authority key identifier: 94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/s0_r2hY5qBrzqhuAj-tIHbEXQ-w.roa
Signing time: Sat 01 Jan 2022 02:52:46 +0000
ROA not before: Sat 01 Jan 2022 02:52:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204957
IP address blocks: 82.117.252.0/23 maxlen: 23
45.90.56.0/22 maxlen: 22
195.123.232.0/22 maxlen: 22
195.123.236.0/22 maxlen: 22
195.123.240.0/22 maxlen: 22
195.123.244.0/22 maxlen: 22
62.233.57.0/24 maxlen: 24
2a05:9400::/32 maxlen: 32
2a05:9403::/32 maxlen: 32
2a05:9405::/32 maxlen: 32
2a05:9406::/32 maxlen: 32
2a05:9402::/32 maxlen: 32
2a05:9401::/32 maxlen: 32
2a05:9404::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8069012 (0x7b1f94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Validity
Not Before: Jan 1 02:52:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b34febda1639a81af3aa1b808feb481db11743ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:55:06:47:36:6e:3a:00:87:83:19:f4:d5:5b:
1a:dc:90:d4:f4:76:b0:1a:b3:75:cc:61:56:bc:48:
1b:ea:cb:61:e9:bb:77:f6:95:6e:5c:54:cc:47:b9:
2b:17:73:c0:30:2d:be:e3:32:5b:e6:33:32:45:dc:
fe:a6:25:c2:87:ac:7b:80:ae:53:53:3f:f4:a1:d9:
8e:61:79:f5:d2:95:d3:d5:f9:84:d5:50:ee:46:88:
08:c5:79:eb:98:39:61:a3:ab:99:6c:96:bd:f2:49:
5e:18:6a:2c:1d:54:c5:77:d4:1b:d1:f4:f4:2d:b6:
cb:09:25:dd:10:56:21:2b:d5:23:04:39:ff:6d:19:
c1:fc:5a:e7:76:2e:d2:34:d3:d6:66:13:e9:ce:3a:
17:e6:ae:08:d4:08:64:1c:cc:89:7f:e3:8c:11:8b:
94:00:cc:45:e5:4c:ff:82:b9:62:01:25:6f:e3:1a:
13:22:07:1c:c4:f1:68:f1:05:33:ac:f6:62:26:e8:
05:59:ac:37:74:e5:56:c7:3a:97:fa:80:5b:a3:b1:
9a:09:ab:19:fe:b1:eb:38:25:2d:38:84:a6:27:ab:
e0:03:60:e1:bc:ec:ca:07:ac:6b:1e:72:db:c9:43:
07:f0:22:4d:27:18:33:db:2d:a5:e4:20:90:9c:56:
d5:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:4F:EB:DA:16:39:A8:1A:F3:AA:1B:80:8F:EB:48:1D:B1:17:43:EC
X509v3 Authority Key Identifier:
keyid:94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/s0_r2hY5qBrzqhuAj-tIHbEXQ-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.56.0/22
62.233.57.0/24
82.117.252.0/23
195.123.232.0-195.123.247.255
IPv6:
2a05:9400::-2a05:9406:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
80:55:eb:33:c2:93:08:01:34:4a:56:21:81:5e:4d:2b:a6:3e:
d1:6b:6a:3d:87:7a:c2:22:75:d9:2a:4a:fb:1f:46:9b:a4:2b:
eb:db:4e:f7:9a:db:6b:52:26:b7:64:c8:a1:8b:52:84:9f:97:
a1:db:dc:87:de:b0:05:08:54:4f:c7:51:88:12:9e:f4:09:65:
f0:66:e5:22:a5:c0:3b:f9:55:4b:4e:9f:07:38:a4:63:a9:55:
74:d3:b5:04:57:76:c0:33:97:01:8e:e5:34:69:11:ac:28:a5:
07:96:ed:f2:f5:9d:ec:32:37:fb:02:5d:b6:6a:42:26:d4:83:
8c:3c:aa:c3:4b:e0:29:67:77:c9:58:6e:4b:b0:55:16:82:da:
15:c2:91:58:96:8f:74:35:f4:e4:9d:eb:e6:71:2b:67:0c:31:
8a:b1:88:45:3e:de:a2:56:96:37:a9:49:0d:7b:d6:07:dc:3e:
2d:44:46:d9:60:4c:f4:7a:1f:fa:ab:2b:ec:27:fb:47:f2:ca:
01:05:75:4d:a1:aa:36:87:52:ac:7d:39:e0:05:07:19:e2:b1:
34:1c:8c:6e:22:c4:9d:24:68:91:ac:b9:31:70:43:76:56:90:
85:a4:6e:c4:1e:44:7c:d3:38:96:63:8c:a9:8b:08:3d:c8:47:
85:a1:ec:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:28:46 2025 by rpki-client