Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/8Ou_HGaxlu09zl3neElpIDwIkRE.roa
File: 8Ou_HGaxlu09zl3neElpIDwIkRE.roa (raw, json)
Hash identifier: u281VLZeu/iXYwsydNk7GSFraHx5E8cGz4LbRxrzTUc=
Subject key identifier: F0:EB:BF:1C:66:B1:96:ED:3D:CE:5D:E7:78:49:69:20:3C:08:91:11
Certificate issuer: /CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Certificate serial: 0183374910C180F605F136204BE4F7CD3F33
Authority key identifier: 24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/8Ou_HGaxlu09zl3neElpIDwIkRE.roa
Signing time: Tue 13 Sep 2022 14:37:58 +0000
ROA not before: Tue 13 Sep 2022 14:37:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6830
IP address blocks: 83.144.64.0/19 maxlen: 19
83.144.64.0/18 maxlen: 18
31.178.0.0/16 maxlen: 16
31.178.0.0/15 maxlen: 15
83.144.96.0/19 maxlen: 19
91.150.192.0/20 maxlen: 20
91.150.192.0/19 maxlen: 19
91.150.208.0/20 maxlen: 20
188.93.164.0/22 maxlen: 22
188.93.160.0/21 maxlen: 21
188.93.160.0/22 maxlen: 22
84.10.0.0/17 maxlen: 17
213.134.160.0/20 maxlen: 20
213.134.160.0/19 maxlen: 19
84.10.0.0/16 maxlen: 16
213.134.176.0/20 maxlen: 20
85.222.64.0/18 maxlen: 18
95.158.64.0/18 maxlen: 18
85.222.0.0/18 maxlen: 18
85.222.0.0/17 maxlen: 17
81.18.192.0/20 maxlen: 20
81.18.192.0/21 maxlen: 21
194.187.40.0/22 maxlen: 22
81.18.200.0/21 maxlen: 21
81.18.208.0/20 maxlen: 20
81.18.208.0/21 maxlen: 21
81.18.216.0/21 maxlen: 21
212.76.32.0/20 maxlen: 20
212.76.32.0/19 maxlen: 19
212.76.48.0/20 maxlen: 20
31.187.0.0/18 maxlen: 18
31.187.0.0/19 maxlen: 19
31.187.32.0/19 maxlen: 19
178.73.32.0/19 maxlen: 19
178.73.0.0/18 maxlen: 18
178.73.0.0/19 maxlen: 19
94.75.64.0/19 maxlen: 19
94.75.64.0/18 maxlen: 18
89.72.0.0/13 maxlen: 13
31.186.192.0/19 maxlen: 19
87.207.0.0/16 maxlen: 16
92.244.32.0/20 maxlen: 20
92.244.32.0/19 maxlen: 19
92.244.48.0/20 maxlen: 20
94.75.96.0/19 maxlen: 19
77.236.0.0/20 maxlen: 20
77.236.0.0/19 maxlen: 19
89.64.0.0/13 maxlen: 13
77.236.16.0/20 maxlen: 20
84.10.128.0/17 maxlen: 17
89.64.0.0/12 maxlen: 12
31.179.0.0/16 maxlen: 16
83.175.176.0/20 maxlen: 20
83.175.176.0/21 maxlen: 21
83.175.184.0/21 maxlen: 21
87.206.0.0/16 maxlen: 16
87.206.0.0/15 maxlen: 15
2001:4050::/32 maxlen: 32
2001:4050:8000::/33 maxlen: 33
2001:4050::/33 maxlen: 33
2a02:a300::/28 maxlen: 28
2a02:a310::/28 maxlen: 28
2a02:a300::/27 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:37:49:10:c1:80:f6:05:f1:36:20:4b:e4:f7:cd:3f:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Validity
Not Before: Sep 13 14:37:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0ebbf1c66b196ed3dce5de7784969203c089111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e2:56:e9:ef:24:02:05:05:be:0c:5c:51:55:
6e:57:58:4b:4d:16:8e:b7:87:79:21:c1:8f:f3:2e:
20:7e:87:25:13:0c:3e:1c:2c:c7:f0:69:4e:d9:fd:
8c:9d:6b:84:60:69:e2:4c:84:83:58:2c:22:ae:d7:
25:40:5d:be:97:fd:90:ce:2a:37:98:83:8c:3e:11:
77:f8:cb:19:da:df:ba:79:77:ba:fe:6f:42:d4:69:
50:2f:63:a6:5f:79:6a:f4:46:c8:39:43:01:9a:ae:
53:7e:48:78:84:fe:20:b6:b7:ce:49:13:ce:68:3d:
a5:46:4d:a3:64:04:65:7f:38:93:a4:41:86:4e:33:
2d:75:6a:8c:9c:fa:8a:9c:2f:a7:1f:4b:59:97:b3:
49:24:3d:c0:9b:84:7c:98:79:3c:f3:be:6c:a5:d5:
c2:ed:d2:23:f9:d5:b2:bc:ea:22:09:26:26:7d:57:
3b:8e:27:0d:ba:25:b3:af:68:62:c6:eb:92:e8:d0:
a7:06:42:eb:6c:4f:64:60:07:25:69:1a:e5:48:f9:
17:71:5c:07:b4:46:3b:8e:e3:ed:af:ec:57:62:ab:
b0:41:4d:ff:b8:f0:dc:60:44:53:0f:24:80:a4:08:
8c:f7:ba:93:e5:92:62:06:25:db:af:50:e0:84:a7:
d0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:EB:BF:1C:66:B1:96:ED:3D:CE:5D:E7:78:49:69:20:3C:08:91:11
X509v3 Authority Key Identifier:
keyid:24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/8Ou_HGaxlu09zl3neElpIDwIkRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/JBR8iz83hQ6fkHSZOEXE4Gn47-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.178.0.0/15
31.186.192.0/19
31.187.0.0/18
77.236.0.0/19
81.18.192.0/19
83.144.64.0/18
83.175.176.0/20
84.10.0.0/16
85.222.0.0/17
87.206.0.0/15
89.64.0.0/12
91.150.192.0/19
92.244.32.0/19
94.75.64.0/18
95.158.64.0/18
178.73.0.0/18
188.93.160.0/21
194.187.40.0/22
212.76.32.0/19
213.134.160.0/19
IPv6:
2001:4050::/32
2a02:a300::/27
Signature Algorithm: sha256WithRSAEncryption
36:a9:42:4d:6e:43:0a:7b:59:80:d7:eb:1b:b4:3a:3d:e6:5d:
2d:f8:e3:c0:c0:49:93:04:3c:db:1a:c1:cb:5e:ef:81:12:9b:
f7:f0:7e:01:0d:2d:a5:54:f5:c1:fe:7a:5c:36:d2:98:62:6e:
ab:5d:a6:2b:ea:0e:82:b7:6a:96:46:f2:e3:44:62:2b:a5:53:
7a:22:55:00:a3:71:32:e9:b8:6a:2a:50:1e:a0:d5:5f:a1:58:
33:db:2e:c2:c0:7e:be:af:bf:07:1c:26:28:0e:4c:3c:a9:8c:
63:fe:17:5a:80:2d:44:61:17:74:87:88:ce:d1:44:14:74:a4:
ef:fe:ff:12:b2:3a:f2:82:74:b7:4e:d2:22:7a:6d:f7:12:df:
ea:fd:a1:af:bb:55:90:2b:73:a3:a4:4a:ff:78:17:e1:6e:53:
1d:0f:fd:33:3a:22:b0:08:12:d2:46:94:df:e8:37:ff:c4:aa:
7e:ed:f3:23:55:21:b1:c8:eb:b2:4e:f0:30:05:ad:75:16:cb:
e6:eb:bc:ea:fb:4d:62:d4:a9:40:00:27:12:35:ea:01:7e:38:
cb:23:90:65:6a:3e:89:ee:49:0e:73:1c:e2:99:ef:be:77:f2:
91:0b:05:68:a5:fd:1c:31:9d:3b:de:97:03:bc:1f:11:8d:62:
20:9e:6d:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:02:36 2025 by rpki-client