Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/31f27a-b57b-4780-84d0-271bd72cdf69/1/sCTEQCZdRKjIGv7TSQjuO6IhWYA.roa
File: sCTEQCZdRKjIGv7TSQjuO6IhWYA.roa (raw, json)
Hash identifier: rwly8UP43SJkn5KSI/L1Yiw8nkGaC8rULUhUHYCtzlc=
Subject key identifier: B0:24:C4:40:26:5D:44:A8:C8:1A:FE:D3:49:08:EE:3B:A2:21:59:80
Certificate issuer: /CN=7ae62148b30b66bd0a3da3897ecfbfd9af4f431e
Certificate serial: 37FFC5E8
Authority key identifier: 7A:E6:21:48:B3:0B:66:BD:0A:3D:A3:89:7E:CF:BF:D9:AF:4F:43:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/euYhSLMLZr0KPaOJfs-_2a9PQx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/31f27a-b57b-4780-84d0-271bd72cdf69/1/sCTEQCZdRKjIGv7TSQjuO6IhWYA.roa
Signing time: Thu 31 Mar 2022 08:32:05 +0000
ROA not before: Thu 31 Mar 2022 08:32:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24592
IP address blocks: 217.13.112.0/24 maxlen: 24
217.13.116.0/24 maxlen: 24
217.13.115.0/24 maxlen: 24
217.13.114.0/24 maxlen: 24
217.13.112.0/20 maxlen: 20
217.13.113.0/24 maxlen: 24
217.13.118.0/24 maxlen: 24
217.13.117.0/24 maxlen: 24
185.86.32.0/22 maxlen: 22
212.92.32.0/24 maxlen: 24
212.92.38.0/24 maxlen: 24
212.92.37.0/24 maxlen: 24
212.92.36.0/24 maxlen: 24
212.92.35.0/24 maxlen: 24
212.92.34.0/24 maxlen: 24
212.92.32.0/19 maxlen: 19
212.92.33.0/24 maxlen: 24
212.92.44.0/24 maxlen: 24
212.92.43.0/24 maxlen: 24
212.92.42.0/24 maxlen: 24
212.92.41.0/24 maxlen: 24
212.92.40.0/24 maxlen: 24
212.92.39.0/24 maxlen: 24
212.92.46.0/24 maxlen: 24
212.92.45.0/24 maxlen: 24
212.92.51.0/24 maxlen: 24
212.92.50.0/24 maxlen: 24
212.92.49.0/24 maxlen: 24
212.92.48.0/24 maxlen: 24
212.92.47.0/24 maxlen: 24
212.92.52.0/24 maxlen: 24
212.92.58.0/24 maxlen: 24
212.92.57.0/24 maxlen: 24
212.92.56.0/24 maxlen: 24
212.92.55.0/24 maxlen: 24
212.92.54.0/24 maxlen: 24
212.92.53.0/24 maxlen: 24
212.92.59.0/24 maxlen: 24
212.92.63.0/24 maxlen: 24
212.92.62.0/24 maxlen: 24
212.92.61.0/24 maxlen: 24
212.92.60.0/22 maxlen: 22
212.92.60.0/24 maxlen: 24
89.45.36.0/22 maxlen: 22
217.13.125.0/24 maxlen: 24
217.13.124.0/24 maxlen: 24
217.13.123.0/24 maxlen: 24
217.13.122.0/24 maxlen: 24
217.13.121.0/24 maxlen: 24
217.13.120.0/24 maxlen: 24
217.13.119.0/24 maxlen: 24
217.13.127.0/24 maxlen: 24
217.13.126.0/24 maxlen: 24
2a02:23c8:ff00::/40 maxlen: 40
2a02:23c8::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 939509224 (0x37ffc5e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ae62148b30b66bd0a3da3897ecfbfd9af4f431e
Validity
Not Before: Mar 31 08:32:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b024c440265d44a8c81afed34908ee3ba2215980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b7:f9:94:03:e8:d6:fd:14:29:cf:b1:2d:d4:
70:5f:37:5b:b3:6d:fe:1e:20:8a:f9:72:b9:e0:b9:
aa:80:bf:3f:f3:99:c6:eb:da:96:e6:25:d4:7f:79:
35:2b:6c:bc:7a:fe:03:6e:c9:0c:41:86:ba:0f:d9:
af:19:ee:36:8c:fc:8b:59:6b:55:de:ff:cb:47:92:
2a:ab:54:81:b8:b5:a6:6a:35:f5:d7:92:3f:43:66:
88:2c:4c:ad:d3:69:e9:e3:4e:bf:c8:94:6a:dc:0f:
99:fc:2a:d4:b2:10:64:d9:57:62:04:df:e1:c8:ab:
7b:1d:d1:5b:9a:1e:a1:e9:19:4b:9e:c1:40:18:97:
de:3d:b9:8a:7b:2d:e1:19:c5:e8:8e:7c:12:73:f1:
eb:ba:5f:91:71:51:0b:91:0e:51:cb:71:f5:ea:8a:
4a:26:6c:46:75:04:44:ba:51:8f:4f:1a:d7:4e:c6:
2c:02:0a:36:ae:3a:3a:81:e0:3e:3c:a2:33:7d:3f:
33:b4:6a:04:a7:de:38:21:66:88:d6:68:57:fa:dc:
84:b2:fd:0b:de:f5:94:ef:29:50:e1:0b:41:b0:3f:
f5:8d:e1:78:00:58:07:ef:0b:63:0c:1a:b1:eb:a6:
f0:fe:92:ed:fc:40:eb:4a:6c:b2:10:8c:f6:6f:c6:
93:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:24:C4:40:26:5D:44:A8:C8:1A:FE:D3:49:08:EE:3B:A2:21:59:80
X509v3 Authority Key Identifier:
keyid:7A:E6:21:48:B3:0B:66:BD:0A:3D:A3:89:7E:CF:BF:D9:AF:4F:43:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/euYhSLMLZr0KPaOJfs-_2a9PQx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/31f27a-b57b-4780-84d0-271bd72cdf69/1/sCTEQCZdRKjIGv7TSQjuO6IhWYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/31f27a-b57b-4780-84d0-271bd72cdf69/1/euYhSLMLZr0KPaOJfs-_2a9PQx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.45.36.0/22
185.86.32.0/22
212.92.32.0/19
217.13.112.0/20
IPv6:
2a02:23c8::/40
2a02:23c8:ff00::/40
Signature Algorithm: sha256WithRSAEncryption
18:ab:b2:6d:ce:71:21:68:dd:15:a5:e0:78:5a:e7:4e:96:43:
5b:ff:17:fb:1a:ae:b3:4f:94:f1:e6:8c:7e:27:0a:80:1e:10:
58:8a:ef:b2:5c:63:57:0a:72:f6:ae:b0:0c:95:b2:3f:b3:8e:
c9:6b:68:13:42:18:1e:69:40:47:43:87:60:d2:a5:a5:b4:ac:
25:85:6c:da:d5:23:15:b4:f2:8f:d2:87:77:42:51:68:9c:9b:
f9:bc:bf:de:c1:06:52:f9:df:3a:95:3d:59:52:0f:1d:2b:8e:
20:9c:fa:46:8d:4f:25:05:6c:06:3e:e2:62:ee:37:b3:9f:08:
4d:02:d1:94:dc:eb:9e:b7:2c:38:4e:75:38:13:0a:71:09:c3:
5d:8d:95:db:9d:62:e9:b1:52:d6:c4:92:c5:14:5d:bf:87:47:
89:fa:2d:c3:0c:66:a1:12:d6:ad:b6:5e:a1:9a:fc:d5:53:b2:
8f:51:6a:fd:8c:42:c7:6e:fe:07:94:a6:c4:ac:66:97:0f:1a:
a6:9f:6c:e9:d6:a0:fe:93:27:62:3e:fe:d6:c8:72:77:92:bb:
aa:2e:18:e9:ee:e7:a5:02:1f:fa:7a:45:24:bd:62:b4:f6:77:
9c:c3:b2:18:7e:40:c1:d9:3b:16:4a:73:96:04:e0:4c:94:13:
39:fa:4c:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:47:20 2025 by rpki-client