Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/V6IjNyDnVwXGNge0SqclTd-5BOw.roa
File: V6IjNyDnVwXGNge0SqclTd-5BOw.roa (raw, json)
Hash identifier: gaUE85OCtf/YHNzHcjDMTuPfU028T+BP+f+cnRjXp78=
Subject key identifier: 57:A2:23:37:20:E7:57:05:C6:36:07:B4:4A:A7:25:4D:DF:B9:04:EC
Certificate issuer: /CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Certificate serial: 018894E280F1D84CF585CE2301461DA1F491
Authority key identifier: 5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/V6IjNyDnVwXGNge0SqclTd-5BOw.roa
Signing time: Wed 07 Jun 2023 08:04:11 +0000
ROA not before: Wed 07 Jun 2023 08:04:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43754
IP address blocks: 46.245.64.0/18 maxlen: 32
46.245.68.0/22 maxlen: 32
46.245.72.0/22 maxlen: 32
46.245.76.0/22 maxlen: 32
46.245.80.0/22 maxlen: 32
46.245.84.0/22 maxlen: 32
185.147.160.0/24 maxlen: 32
185.147.161.0/24 maxlen: 32
185.147.162.0/24 maxlen: 32
185.147.163.0/24 maxlen: 32
46.245.88.0/22 maxlen: 32
46.245.92.0/22 maxlen: 32
46.245.96.0/22 maxlen: 32
46.245.100.0/22 maxlen: 32
46.245.104.0/22 maxlen: 32
46.245.108.0/22 maxlen: 32
46.245.112.0/22 maxlen: 32
46.245.116.0/22 maxlen: 32
77.238.104.0/22 maxlen: 32
77.238.104.0/21 maxlen: 32
77.238.110.0/24 maxlen: 24
77.238.111.0/24 maxlen: 24
77.238.108.0/24 maxlen: 24
77.238.109.0/24 maxlen: 24
77.238.120.0/22 maxlen: 32
46.245.64.0/22 maxlen: 32
46.245.120.0/22 maxlen: 32
46.245.124.0/22 maxlen: 32
89.235.96.0/22 maxlen: 32
185.120.220.0/22 maxlen: 32
185.120.248.0/22 maxlen: 32
31.25.128.0/21 maxlen: 32
176.65.240.0/22 maxlen: 32
176.65.252.0/23 maxlen: 32
176.65.254.0/23 maxlen: 32
176.65.255.0/24 maxlen: 32
128.65.176.0/20 maxlen: 32
79.127.0.0/17 maxlen: 32
185.99.212.0/22 maxlen: 32
185.109.244.0/22 maxlen: 32
185.49.84.0/22 maxlen: 32
185.109.248.0/22 maxlen: 32
178.22.120.0/21 maxlen: 32
37.156.8.0/21 maxlen: 32
37.156.8.0/22 maxlen: 32
37.156.15.0/24 maxlen: 24
37.156.13.0/24 maxlen: 24
37.156.14.0/24 maxlen: 24
37.156.12.0/24 maxlen: 24
188.0.240.0/23 maxlen: 32
185.112.32.0/21 maxlen: 32
185.112.32.0/22 maxlen: 32
185.112.36.0/22 maxlen: 32
93.115.144.0/21 maxlen: 32
46.143.0.0/17 maxlen: 32
109.122.224.0/20 maxlen: 32
37.156.144.0/22 maxlen: 32
178.216.251.0/24 maxlen: 32
178.216.248.0/22 maxlen: 32
178.216.248.0/24 maxlen: 32
178.216.249.0/24 maxlen: 32
178.216.250.0/24 maxlen: 32
185.129.116.0/23 maxlen: 32
185.129.116.0/22 maxlen: 32
185.129.118.0/23 maxlen: 32
185.141.212.0/24 maxlen: 32
185.141.213.0/24 maxlen: 32
185.141.214.0/24 maxlen: 32
185.141.215.0/24 maxlen: 32
5.134.192.0/21 maxlen: 32
212.33.192.0/22 maxlen: 32
212.33.196.0/22 maxlen: 32
212.33.204.0/22 maxlen: 32
212.33.200.0/22 maxlen: 32
185.141.168.0/24 maxlen: 32
185.141.169.0/24 maxlen: 32
185.141.170.0/24 maxlen: 32
185.141.171.0/24 maxlen: 32
185.98.112.0/22 maxlen: 32
89.41.40.0/22 maxlen: 32
93.118.180.0/24 maxlen: 24
93.118.180.0/22 maxlen: 32
31.7.64.0/20 maxlen: 32
31.7.64.0/21 maxlen: 32
31.7.72.0/21 maxlen: 32
2a06:5484::/30 maxlen: 128
2a05:1a10::/34 maxlen: 128
2a05:1a00::/26 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:94:e2:80:f1:d8:4c:f5:85:ce:23:01:46:1d:a1:f4:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Validity
Not Before: Jun 7 08:04:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57a2233720e75705c63607b44aa7254ddfb904ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:23:0f:a1:04:17:6d:8a:75:78:b1:31:55:b3:
7f:bd:fb:86:e6:4f:ce:62:77:85:c3:3d:d6:28:86:
7d:a0:46:12:41:0c:0f:1c:99:91:fa:4f:4e:07:22:
6d:2a:52:4f:d5:58:e8:98:6d:16:b1:fa:93:c1:31:
b6:ed:97:51:b2:b0:e5:cb:1f:2e:0e:14:51:37:b1:
30:31:ed:97:2f:ed:b7:eb:b4:38:92:62:54:e2:7d:
44:e6:93:42:39:15:77:09:a8:dc:66:1c:b3:f2:0a:
e8:32:db:63:d4:40:25:78:4e:f4:78:17:a1:da:4a:
f7:f9:f9:e3:a5:82:36:e9:7e:79:b4:77:06:c1:e5:
15:6d:15:c4:e2:94:a0:77:e3:b3:24:4e:0b:f0:d0:
9b:d1:68:73:02:1f:65:0d:4c:e1:2d:2a:a2:fb:04:
72:93:71:b7:25:ec:42:d0:6a:a1:57:60:96:0b:59:
16:c0:78:79:ed:ab:03:80:8c:19:75:d5:c7:96:bc:
40:8e:3b:b6:04:30:d1:25:44:c4:de:c8:51:f9:cc:
cc:47:02:b0:81:ce:87:c5:97:f5:ab:06:6a:08:ab:
3a:e5:72:d8:9d:9e:d7:a3:c1:10:d9:fd:5e:e8:7b:
4f:03:58:46:6e:45:44:1b:af:b4:c6:b0:91:6a:e2:
e8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:A2:23:37:20:E7:57:05:C6:36:07:B4:4A:A7:25:4D:DF:B9:04:EC
X509v3 Authority Key Identifier:
keyid:5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/V6IjNyDnVwXGNge0SqclTd-5BOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/W1JjSi6wP4VlteM9wrn0kEH3z7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.192.0/21
31.7.64.0/20
31.25.128.0/21
37.156.8.0/21
37.156.144.0/22
46.143.0.0/17
46.245.64.0/18
77.238.104.0/21
77.238.120.0/22
79.127.0.0/17
89.41.40.0/22
89.235.96.0/22
93.115.144.0/21
93.118.180.0/22
109.122.224.0/20
128.65.176.0/20
176.65.240.0/22
176.65.252.0/22
178.22.120.0/21
178.216.248.0/22
185.49.84.0/22
185.98.112.0/22
185.99.212.0/22
185.109.244.0-185.109.251.255
185.112.32.0/21
185.120.220.0/22
185.120.248.0/22
185.129.116.0/22
185.141.168.0/22
185.141.212.0/22
185.147.160.0/22
188.0.240.0/23
212.33.192.0/20
IPv6:
2a05:1a00::/26
2a06:5484::/30
Signature Algorithm: sha256WithRSAEncryption
18:20:a5:2c:10:74:70:0a:72:6f:c0:a1:df:09:40:b0:9a:57:
b5:a8:75:75:aa:51:dd:08:0a:e0:5a:d1:56:78:c8:ca:fe:54:
ea:a1:d0:7a:e1:41:88:bb:53:73:bd:e1:e3:8f:d4:32:90:95:
56:59:26:d3:2f:c7:4b:9a:99:9c:51:93:3d:d3:fc:18:3e:f1:
f3:b6:dc:e0:5b:70:c3:9b:2b:b7:7e:f1:33:75:cb:b3:86:dd:
5e:c7:eb:8f:1a:a2:f9:63:86:86:19:8e:ff:99:d3:74:4f:e4:
1a:f9:99:ff:9e:36:18:c8:68:b7:15:b1:d7:84:dc:79:ea:0e:
30:bb:75:3e:d6:fb:d4:24:4a:1d:05:c1:b6:a0:1e:23:83:b9:
e0:dc:aa:2c:aa:bd:ef:f9:a1:ab:88:37:87:79:0f:0c:a7:df:
8e:f4:c3:58:2d:99:de:93:34:a0:80:b4:91:3a:b6:62:58:6e:
b8:ce:13:43:79:21:a3:45:77:df:3d:3e:f9:db:65:01:9d:e8:
53:b8:0d:72:68:e2:63:aa:35:a4:99:69:af:8a:58:3f:6d:1e:
25:79:a3:e4:fa:4f:72:cb:49:5b:bc:d0:b7:fa:cc:73:64:35:
b1:c6:e7:e0:64:60:8e:0e:2c:ad:32:e2:9a:f0:32:2f:f5:7b:
a0:92:f2:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:25 2025 by rpki-client