Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/db-ViHtAV_AX3z9xLBBylhVkg0U.roa
File: db-ViHtAV_AX3z9xLBBylhVkg0U.roa (raw, json)
Hash identifier: 98WvGpFKIgxl9orvBqJ+BpskKhN/WbrhyMJ7bOrga10=
Subject key identifier: 75:BF:95:88:7B:40:57:F0:17:DF:3F:71:2C:10:72:96:15:64:83:45
Certificate issuer: /CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Certificate serial: 034EDEFD
Authority key identifier: CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/db-ViHtAV_AX3z9xLBBylhVkg0U.roa
Signing time: Sat 01 Jan 2022 08:01:10 +0000
ROA not before: Sat 01 Jan 2022 08:01:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56503
IP address blocks: 185.103.244.0/22 maxlen: 22
185.103.248.0/22 maxlen: 22
185.108.164.0/22 maxlen: 22
185.107.28.0/24 maxlen: 24
185.107.29.0/24 maxlen: 24
185.107.30.0/23 maxlen: 23
185.26.232.0/23 maxlen: 23
185.26.234.0/23 maxlen: 23
91.106.82.0/24 maxlen: 24
91.106.81.0/24 maxlen: 24
91.106.84.0/24 maxlen: 24
91.106.83.0/24 maxlen: 24
91.106.85.0/24 maxlen: 24
91.106.79.0/24 maxlen: 24
91.106.80.0/24 maxlen: 24
91.106.86.0/24 maxlen: 24
91.106.87.0/24 maxlen: 24
91.106.89.0/24 maxlen: 24
91.106.88.0/24 maxlen: 24
91.106.91.0/24 maxlen: 24
91.106.90.0/24 maxlen: 24
91.106.95.0/24 maxlen: 24
91.106.92.0/24 maxlen: 24
91.106.94.0/24 maxlen: 24
91.106.93.0/24 maxlen: 24
91.106.64.0/24 maxlen: 24
91.106.68.0/24 maxlen: 24
91.106.67.0/24 maxlen: 24
91.106.70.0/24 maxlen: 24
91.106.69.0/24 maxlen: 24
91.106.71.0/24 maxlen: 24
91.106.65.0/24 maxlen: 24
91.106.66.0/24 maxlen: 24
91.106.72.0/24 maxlen: 24
91.106.73.0/24 maxlen: 24
91.106.75.0/24 maxlen: 24
91.106.74.0/24 maxlen: 24
91.106.77.0/24 maxlen: 24
91.106.76.0/24 maxlen: 24
91.106.78.0/24 maxlen: 24
185.106.136.0/22 maxlen: 22
185.106.144.0/22 maxlen: 22
185.104.232.0/22 maxlen: 22
185.104.240.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55500541 (0x34edefd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Validity
Not Before: Jan 1 08:01:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75bf95887b4057f017df3f712c10729615648345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:44:b3:7b:11:6b:0a:ed:cd:b5:70:d6:77:ec:
79:45:62:b8:a0:4d:57:8a:ed:3d:50:61:60:53:d7:
12:f9:d8:fe:f0:66:8a:fa:28:24:9f:d5:72:47:dd:
69:38:91:41:04:0e:27:81:18:0a:2b:77:a5:b6:a9:
e8:30:b0:be:27:53:65:1d:55:ba:3f:75:92:99:93:
07:89:99:e8:da:95:98:45:54:06:21:97:18:ff:90:
f1:04:ea:57:86:85:8b:03:32:31:e5:76:e7:7a:64:
71:e2:7e:9f:5d:74:a9:25:fb:bd:af:d3:f1:ad:ca:
23:fa:19:4a:c5:be:33:55:42:b5:cd:c6:52:02:ec:
b1:fd:c9:38:4c:92:08:b4:ef:a5:1c:93:52:04:da:
de:06:db:3f:d4:9d:66:67:b2:8c:48:18:ed:f5:7a:
94:e8:c9:a3:11:11:68:5f:f0:16:65:4d:ef:d3:aa:
a2:91:62:2e:9b:13:98:b3:0d:c0:f7:ac:2a:e0:d8:
6d:4d:8e:61:b7:c1:37:ab:c3:36:28:9a:d6:d6:ea:
dd:cd:0a:1e:0f:41:5a:98:7f:c7:b6:08:20:83:5b:
4f:9f:fb:c7:de:73:2e:f6:a5:bc:0c:f7:1a:97:a8:
04:8a:a2:8c:2a:7e:8d:74:ef:bb:64:d1:88:8c:5b:
f8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:BF:95:88:7B:40:57:F0:17:DF:3F:71:2C:10:72:96:15:64:83:45
X509v3 Authority Key Identifier:
keyid:CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/db-ViHtAV_AX3z9xLBBylhVkg0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.106.64.0/19
185.26.232.0/22
185.103.244.0-185.103.251.255
185.104.232.0/22
185.104.240.0/22
185.106.136.0/22
185.106.144.0/22
185.107.28.0/22
185.108.164.0/22
Signature Algorithm: sha256WithRSAEncryption
27:7e:00:5d:68:83:76:80:30:84:28:5e:8d:2a:b9:7c:05:ac:
b0:ad:0b:97:eb:0a:3f:95:7c:bb:9f:44:60:53:fb:ba:3a:2a:
2e:f5:db:1e:6d:ef:5f:94:f9:a8:56:b1:ca:03:ff:5c:00:73:
53:ea:d5:b5:bc:f1:1e:45:b9:c4:2d:b8:3f:52:fa:b3:04:59:
8f:ed:05:c1:23:6f:c2:dd:1e:48:da:f7:39:e3:a2:c1:34:45:
38:86:66:82:d8:83:90:87:6f:9f:18:81:14:18:06:3b:5f:13:
96:cc:36:ba:02:aa:64:ca:2a:96:f3:3a:2f:e3:20:5e:3c:c0:
50:5a:51:63:f0:53:76:85:5b:1b:83:8f:ab:20:99:1d:40:09:
68:fe:2e:6f:70:62:1f:2f:25:f2:5e:0a:80:ec:19:47:bd:9a:
27:f8:40:50:5f:a3:eb:67:07:48:55:1b:60:4f:76:8d:dc:3b:
52:ac:b1:cc:00:b1:3c:9c:6a:1a:86:f2:2e:f8:91:42:f1:c6:
4b:c4:36:b2:86:7e:7e:ca:13:68:22:1e:43:f6:91:3a:34:2c:
12:2e:0d:e6:5f:a0:90:ce:80:59:c6:37:ed:87:2d:90:7c:49:
7f:34:c9:d5:65:8a:9e:33:2a:c4:da:c8:26:99:c8:f7:67:86:
24:e2:c9:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:20:38 2025 by rpki-client