Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/x9mw4XKjHibIZMC36tEo-uwXxHw.roa
File: x9mw4XKjHibIZMC36tEo-uwXxHw.roa (raw, json)
Hash identifier: 12ZbRe8zjAXY6p7uaEaemJYHX00X+k01YDczW9nmTb4=
Subject key identifier: C7:D9:B0:E1:72:A3:1E:26:C8:64:C0:B7:EA:D1:28:FA:EC:17:C4:7C
Certificate issuer: /CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Certificate serial: 018AF91824DEFE07B71B9AEEF9CC9924835A
Authority key identifier: 5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/x9mw4XKjHibIZMC36tEo-uwXxHw.roa
Signing time: Wed 04 Oct 2023 05:10:23 +0000
ROA not before: Wed 04 Oct 2023 05:10:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43754
IP address blocks: 46.245.64.0/18 maxlen: 32
46.245.68.0/22 maxlen: 32
85.198.28.0/23 maxlen: 32
85.198.28.0/22 maxlen: 32
85.198.30.0/23 maxlen: 32
46.245.72.0/22 maxlen: 32
46.245.76.0/22 maxlen: 32
46.245.80.0/22 maxlen: 32
46.245.84.0/22 maxlen: 32
185.147.160.0/24 maxlen: 32
185.147.161.0/24 maxlen: 32
185.147.162.0/24 maxlen: 32
185.147.163.0/24 maxlen: 32
46.245.88.0/22 maxlen: 32
46.245.92.0/22 maxlen: 32
46.245.96.0/22 maxlen: 32
46.245.100.0/22 maxlen: 32
46.245.104.0/22 maxlen: 32
46.245.108.0/22 maxlen: 32
46.245.112.0/22 maxlen: 32
46.245.116.0/22 maxlen: 32
77.238.104.0/22 maxlen: 32
77.238.104.0/21 maxlen: 32
77.238.110.0/24 maxlen: 24
77.238.111.0/24 maxlen: 24
77.238.108.0/24 maxlen: 24
77.238.109.0/24 maxlen: 24
77.238.120.0/22 maxlen: 32
78.110.124.0/23 maxlen: 32
78.110.124.0/22 maxlen: 32
46.245.64.0/22 maxlen: 32
78.110.126.0/23 maxlen: 32
46.245.120.0/22 maxlen: 32
46.245.124.0/22 maxlen: 32
89.235.96.0/22 maxlen: 32
185.120.220.0/22 maxlen: 32
185.120.248.0/22 maxlen: 32
31.25.128.0/21 maxlen: 32
176.65.240.0/22 maxlen: 32
176.65.252.0/23 maxlen: 32
176.65.254.0/23 maxlen: 32
176.65.255.0/24 maxlen: 32
128.65.176.0/20 maxlen: 32
79.127.0.0/17 maxlen: 32
185.99.212.0/22 maxlen: 32
185.109.244.0/22 maxlen: 32
185.49.84.0/22 maxlen: 32
185.109.248.0/22 maxlen: 32
178.22.120.0/21 maxlen: 32
37.156.8.0/21 maxlen: 32
37.156.8.0/22 maxlen: 32
37.156.15.0/24 maxlen: 24
37.156.13.0/24 maxlen: 24
37.156.14.0/24 maxlen: 24
37.156.12.0/24 maxlen: 24
188.0.240.0/23 maxlen: 32
185.112.32.0/21 maxlen: 32
185.112.32.0/22 maxlen: 32
185.112.36.0/22 maxlen: 32
93.115.144.0/21 maxlen: 32
46.143.0.0/17 maxlen: 32
109.122.224.0/20 maxlen: 32
37.156.144.0/22 maxlen: 32
178.216.251.0/24 maxlen: 32
178.216.248.0/22 maxlen: 32
178.216.248.0/24 maxlen: 32
178.216.249.0/24 maxlen: 32
178.216.250.0/24 maxlen: 32
185.141.212.0/24 maxlen: 32
185.141.213.0/24 maxlen: 32
185.141.214.0/24 maxlen: 32
185.141.215.0/24 maxlen: 32
5.134.192.0/21 maxlen: 32
212.33.192.0/22 maxlen: 32
212.33.196.0/22 maxlen: 32
212.33.204.0/22 maxlen: 32
212.33.200.0/22 maxlen: 32
185.141.168.0/24 maxlen: 32
185.141.169.0/24 maxlen: 32
185.141.170.0/24 maxlen: 32
185.141.171.0/24 maxlen: 32
185.98.112.0/22 maxlen: 32
89.41.40.0/22 maxlen: 32
93.118.180.0/24 maxlen: 24
93.118.180.0/22 maxlen: 32
31.7.64.0/20 maxlen: 32
31.7.64.0/21 maxlen: 32
31.7.72.0/21 maxlen: 32
2a06:5484::/30 maxlen: 128
2a05:1a00::/26 maxlen: 128
2a05:1a10::/29 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f9:18:24:de:fe:07:b7:1b:9a:ee:f9:cc:99:24:83:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Validity
Not Before: Oct 4 05:10:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7d9b0e172a31e26c864c0b7ead128faec17c47c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d3:63:bf:61:61:db:e8:98:13:e3:e0:b6:b9:
cd:f5:ba:f1:b0:d3:e7:ef:a8:63:70:04:82:86:1e:
36:6b:61:4b:53:fe:f7:4c:8c:00:51:d7:1e:c1:47:
36:d6:70:df:80:7d:38:84:ee:ce:67:51:65:73:ea:
d9:e4:d1:b6:6e:1d:1f:6e:fa:01:97:eb:3d:77:0c:
18:cf:f2:c6:5d:d7:d0:34:90:54:ca:f4:df:5a:9b:
21:81:80:e6:55:17:d1:86:04:00:fe:5b:05:74:65:
fe:b7:9d:fb:c5:85:0d:82:4e:02:87:7f:5a:bf:67:
26:92:c3:63:6a:e8:6c:e2:12:bd:c7:2b:90:de:68:
e6:8e:f2:cf:91:7c:94:39:de:12:a0:a7:f3:e9:2a:
48:99:f5:ab:59:97:6d:50:58:32:33:26:6a:cf:08:
74:e0:b3:ed:66:7e:86:16:a2:8b:5c:47:07:21:a5:
00:1e:54:ca:20:60:17:21:3a:a7:b8:7c:b3:3d:79:
16:37:38:45:5c:c2:e9:34:ae:d5:c1:48:d9:d0:d8:
5e:cf:7e:85:d2:fb:e1:98:3f:57:e7:0c:d9:d4:b3:
5b:ca:7d:4c:66:f1:eb:fa:c4:0c:0a:de:60:1b:cf:
c8:01:bd:0a:2f:43:5c:83:01:17:c6:26:4e:82:40:
c3:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:D9:B0:E1:72:A3:1E:26:C8:64:C0:B7:EA:D1:28:FA:EC:17:C4:7C
X509v3 Authority Key Identifier:
keyid:5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/x9mw4XKjHibIZMC36tEo-uwXxHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/W1JjSi6wP4VlteM9wrn0kEH3z7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.192.0/21
31.7.64.0/20
31.25.128.0/21
37.156.8.0/21
37.156.144.0/22
46.143.0.0/17
46.245.64.0/18
77.238.104.0/21
77.238.120.0/22
78.110.124.0/22
79.127.0.0/17
85.198.28.0/22
89.41.40.0/22
89.235.96.0/22
93.115.144.0/21
93.118.180.0/22
109.122.224.0/20
128.65.176.0/20
176.65.240.0/22
176.65.252.0/22
178.22.120.0/21
178.216.248.0/22
185.49.84.0/22
185.98.112.0/22
185.99.212.0/22
185.109.244.0-185.109.251.255
185.112.32.0/21
185.120.220.0/22
185.120.248.0/22
185.141.168.0/22
185.141.212.0/22
185.147.160.0/22
188.0.240.0/23
212.33.192.0/20
IPv6:
2a05:1a00::/26
2a06:5484::/30
Signature Algorithm: sha256WithRSAEncryption
2b:aa:08:65:76:74:de:78:8d:87:5b:7e:f9:ff:1b:24:db:82:
e2:b3:20:46:36:96:25:ff:b5:dc:e9:60:5a:ae:73:3d:8c:4e:
25:ee:c5:58:12:19:f9:c0:91:23:39:ed:0f:43:f4:49:b4:cd:
f2:b6:03:62:23:91:b5:24:bc:d9:86:d4:77:8f:4c:3c:b4:d9:
ba:49:1f:46:97:16:f1:05:51:b8:91:23:c5:6f:a6:8a:b0:aa:
15:6f:80:b2:7b:03:59:ac:29:9a:a9:a4:6d:d4:fe:e5:1a:1d:
6a:7b:cd:38:8c:2e:59:25:7b:6b:d9:e0:a7:4d:ab:37:df:7b:
74:49:fa:85:f6:b5:05:24:de:38:7e:60:ef:39:e2:6a:a5:f5:
25:f7:3b:4c:82:d9:61:ca:35:7b:a1:01:89:67:19:0c:8e:7e:
d2:de:a7:c3:5e:72:22:e1:61:50:79:c0:4a:f5:42:61:78:41:
5a:e8:ef:e7:44:83:af:6e:7f:9a:6d:34:69:19:8e:5d:af:6f:
e6:94:c7:ee:b4:64:a0:be:e7:72:bd:47:4e:0f:fc:44:7d:9a:
75:02:18:f1:b2:96:dd:42:c5:16:18:c7:72:7a:c2:93:d1:73:
61:7d:ea:0d:8d:16:d8:5b:8b:ba:f7:c6:2d:d9:bb:71:49:b6:
fb:00:58:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:36 2025 by rpki-client