Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/aY3MdJsGYmeeGgD9bxhM-ZUsrkQ.roa
File: aY3MdJsGYmeeGgD9bxhM-ZUsrkQ.roa (raw, json)
Hash identifier: itCdAxuzInfyHBHqayfw1kuz+kZuD297+cSGnL9TueY=
Subject key identifier: 69:8D:CC:74:9B:06:62:67:9E:1A:00:FD:6F:18:4C:F9:95:2C:AE:44
Certificate issuer: /CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Certificate serial: 02CBE1E8
Authority key identifier: 7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/aY3MdJsGYmeeGgD9bxhM-ZUsrkQ.roa
Signing time: Sat 01 Jan 2022 03:56:01 +0000
ROA not before: Sat 01 Jan 2022 03:56:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30886
IP address blocks: 31.43.64.0/24 maxlen: 24
31.43.64.0/19 maxlen: 19
31.43.71.0/24 maxlen: 24
31.43.70.0/24 maxlen: 24
31.43.68.0/24 maxlen: 24
31.43.67.0/24 maxlen: 24
31.43.69.0/24 maxlen: 24
31.43.66.0/24 maxlen: 24
31.43.65.0/24 maxlen: 24
31.43.78.0/24 maxlen: 24
31.43.77.0/24 maxlen: 24
31.43.75.0/24 maxlen: 24
31.43.74.0/24 maxlen: 24
31.43.76.0/24 maxlen: 24
31.43.73.0/24 maxlen: 24
31.43.72.0/24 maxlen: 24
31.43.85.0/24 maxlen: 24
31.43.84.0/24 maxlen: 24
31.43.82.0/24 maxlen: 24
31.43.81.0/24 maxlen: 24
31.43.83.0/24 maxlen: 24
31.43.80.0/24 maxlen: 24
31.43.79.0/24 maxlen: 24
31.43.87.0/24 maxlen: 24
31.43.86.0/24 maxlen: 24
31.43.91.0/24 maxlen: 24
31.43.88.0/24 maxlen: 24
31.43.90.0/24 maxlen: 24
31.43.89.0/24 maxlen: 24
193.84.22.0/24 maxlen: 24
31.43.95.0/24 maxlen: 24
31.43.92.0/24 maxlen: 24
31.43.94.0/24 maxlen: 24
31.43.93.0/24 maxlen: 24
94.231.64.0/24 maxlen: 24
94.231.64.0/20 maxlen: 20
94.231.69.0/24 maxlen: 24
94.231.71.0/24 maxlen: 24
94.231.70.0/24 maxlen: 24
94.231.66.0/24 maxlen: 24
94.231.65.0/24 maxlen: 24
94.231.68.0/24 maxlen: 24
94.231.67.0/24 maxlen: 24
94.231.76.0/24 maxlen: 24
94.231.78.0/24 maxlen: 24
94.231.73.0/24 maxlen: 24
94.231.72.0/24 maxlen: 24
94.231.75.0/24 maxlen: 24
94.231.74.0/24 maxlen: 24
94.231.79.0/24 maxlen: 24
91.196.55.0/24 maxlen: 24
91.196.54.0/24 maxlen: 24
91.196.52.0/24 maxlen: 24
91.196.53.0/24 maxlen: 24
91.196.52.0/22 maxlen: 22
193.27.209.0/24 maxlen: 24
193.27.208.0/24 maxlen: 24
193.27.208.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46916072 (0x2cbe1e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Validity
Not Before: Jan 1 03:56:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=698dcc749b0662679e1a00fd6f184cf9952cae44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e2:2b:e6:a6:cc:9c:d1:56:35:ac:2e:7d:e4:
5e:a4:c3:53:19:3f:eb:09:2a:97:7c:48:c2:ea:33:
82:88:be:c3:f3:a4:5f:f4:3f:8b:d8:2b:71:75:ca:
0a:c0:c5:a0:ba:f7:c3:4a:92:31:1d:c8:83:3e:b7:
c4:15:a6:f0:31:b4:78:d0:ae:b1:6d:3c:10:4c:06:
5f:15:33:2b:27:f4:72:7e:df:8d:f5:92:0f:2f:4a:
3f:c1:6a:4d:7d:fc:6e:06:72:c6:5d:3e:1c:89:e1:
0c:48:28:81:6c:b6:67:f4:ae:8d:71:3a:ba:71:a5:
96:ef:32:7a:3a:82:2f:10:ba:62:16:32:1e:d8:81:
5c:d9:cd:3c:bd:aa:f1:ba:70:af:ce:cd:e6:a4:e6:
06:16:e7:d1:ef:06:dd:34:4d:3e:3c:86:df:90:0e:
89:c1:91:cb:8e:28:6e:00:f3:1a:ab:e9:fa:7a:26:
c1:e2:e9:94:87:42:fb:ef:68:1f:58:31:6f:19:b2:
ba:00:ad:8c:76:0c:1a:55:8d:9d:27:d1:6b:ab:66:
48:4f:ab:99:7f:68:5b:4f:f1:05:83:9d:f2:1e:8c:
23:2b:54:8a:a2:e4:65:97:47:35:6c:60:9c:fa:db:
c6:72:cb:f1:8c:cc:ce:1c:a3:1f:22:6a:fc:1c:97:
7d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:8D:CC:74:9B:06:62:67:9E:1A:00:FD:6F:18:4C:F9:95:2C:AE:44
X509v3 Authority Key Identifier:
keyid:7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/aY3MdJsGYmeeGgD9bxhM-ZUsrkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.64.0/19
91.196.52.0/22
94.231.64.0/20
193.27.208.0/23
193.84.22.0/24
Signature Algorithm: sha256WithRSAEncryption
42:b6:f6:da:e6:d0:d6:cb:e2:2e:58:96:b7:db:f1:65:ab:71:
d4:8b:28:3c:4b:2b:2a:be:0e:0c:50:89:29:1b:61:72:49:02:
a8:eb:a1:27:ec:e9:83:9e:f1:c4:18:ae:46:13:14:1d:72:5e:
48:5b:03:7c:d4:16:ba:80:92:8a:a0:52:b6:35:c2:c9:f1:04:
06:4c:a0:75:7f:2b:44:2a:59:1b:9e:0f:52:b5:da:28:df:f2:
07:94:e5:bf:c2:6f:11:fa:79:89:ff:92:34:a0:f7:66:ad:fb:
35:18:64:33:c2:9e:92:6a:e1:3a:fa:dd:53:b2:28:f7:ac:04:
58:5c:d3:d5:4c:3a:0a:41:0a:c7:ea:e4:54:46:89:e6:e6:49:
09:c6:3f:0d:05:3b:31:a9:b0:86:8b:f8:b6:75:43:79:06:e1:
f1:fe:e5:88:6a:f9:89:70:f2:d7:c6:e5:74:8f:8c:b0:22:6d:
28:97:1c:f2:85:a8:5c:b1:0c:24:6e:f9:45:7c:eb:57:d5:fd:
ea:42:0d:19:dc:a5:42:5e:78:5f:a7:eb:99:3e:f4:33:ab:09:
75:32:ca:a1:6f:9c:50:a1:ac:5c:37:f3:7c:25:ca:3f:62:7d:
29:12:19:1a:6f:b2:ce:0f:f1:0b:b2:db:67:6e:8d:73:ed:13:
e6:34:31:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 03:32:25 2025 by rpki-client