Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/c7a68f-7bf8-4f80-a9a2-815d2c026646/1/aEIgdlwebAguTtGq5_eLFIMJ7Jc.roa
File: aEIgdlwebAguTtGq5_eLFIMJ7Jc.roa (raw, json)
Hash identifier: vrQ6FOufWBk4EVctc92P8vnmQN+mQ8KqhF5l3vgG/kM=
Subject key identifier: 68:42:20:76:5C:1E:6C:08:2E:4E:D1:AA:E7:F7:8B:14:83:09:EC:97
Certificate issuer: /CN=01335442514d5249b5143cfdf821216bb5c52940
Certificate serial: 04A03559
Authority key identifier: 01:33:54:42:51:4D:52:49:B5:14:3C:FD:F8:21:21:6B:B5:C5:29:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ATNUQlFNUkm1FDz9-CEha7XFKUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/c7a68f-7bf8-4f80-a9a2-815d2c026646/1/aEIgdlwebAguTtGq5_eLFIMJ7Jc.roa
Signing time: Mon 21 Mar 2022 14:04:22 +0000
ROA not before: Mon 21 Mar 2022 14:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7979
IP address blocks: 23.105.231.0/24 maxlen: 24
23.105.232.0/24 maxlen: 24
23.105.240.0/24 maxlen: 24
23.105.252.0/24 maxlen: 24
23.105.248.0/24 maxlen: 24
23.111.32.0/19 maxlen: 24
23.105.225.0/24 maxlen: 24
23.105.224.0/19 maxlen: 24
23.111.96.0/19 maxlen: 24
23.111.103.0/24 maxlen: 24
23.111.108.0/24 maxlen: 24
23.111.106.0/24 maxlen: 24
23.111.116.0/24 maxlen: 24
23.111.206.0/24 maxlen: 24
23.111.204.0/24 maxlen: 24
23.111.205.0/24 maxlen: 24
23.111.202.0/24 maxlen: 24
23.111.203.0/24 maxlen: 24
23.111.201.0/24 maxlen: 24
23.111.200.0/24 maxlen: 24
23.111.207.0/24 maxlen: 24
23.111.213.0/24 maxlen: 24
23.111.211.0/24 maxlen: 24
23.111.212.0/24 maxlen: 24
23.111.209.0/24 maxlen: 24
23.111.210.0/24 maxlen: 24
23.111.208.0/24 maxlen: 24
88.212.232.0/21 maxlen: 24
23.111.215.0/24 maxlen: 24
23.111.214.0/24 maxlen: 24
88.212.239.0/24 maxlen: 24
88.212.238.0/24 maxlen: 24
88.212.240.0/21 maxlen: 24
88.212.241.0/24 maxlen: 24
88.212.248.0/21 maxlen: 24
23.111.192.0/24 maxlen: 24
23.111.199.0/24 maxlen: 24
23.111.197.0/24 maxlen: 24
23.111.198.0/24 maxlen: 24
23.111.196.0/24 maxlen: 24
23.111.194.0/24 maxlen: 24
23.111.195.0/24 maxlen: 24
23.111.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77608281 (0x4a03559)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01335442514d5249b5143cfdf821216bb5c52940
Validity
Not Before: Mar 21 14:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=684220765c1e6c082e4ed1aae7f78b148309ec97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b9:e5:40:a6:36:20:e5:cf:0a:cb:b6:31:a7:
78:c8:8e:ec:1f:47:61:26:6f:c6:bd:af:41:47:50:
e0:fc:f0:88:c9:1a:87:26:0f:59:6a:3c:68:55:e9:
07:c6:69:11:ba:5e:2a:42:e1:3f:1b:98:c7:93:a7:
b1:3e:39:a9:81:8e:6e:af:f6:bb:ee:81:9c:be:db:
56:36:46:28:72:f0:2b:81:e3:16:8f:00:a3:9e:c3:
83:0e:66:e3:21:50:5d:fd:a4:6f:61:4e:57:57:20:
e4:10:b2:5d:33:82:d1:52:3a:c0:ab:16:92:0f:fa:
98:99:45:26:d6:54:96:73:1d:d3:c4:f8:f9:c8:8f:
b2:48:8c:54:3a:24:09:35:ba:a9:87:cf:54:76:27:
78:70:7e:ba:42:27:1c:7a:73:7c:44:5d:68:70:d6:
8a:52:09:88:01:72:96:55:06:4e:a5:bd:23:b0:72:
db:e3:35:29:75:39:0b:f6:1c:7e:bc:2f:fa:2f:dd:
14:37:bc:b4:80:49:0c:58:f1:47:08:60:20:ad:30:
33:3a:43:52:8a:c2:dd:d8:34:e6:5e:bc:bf:a6:38:
00:e9:2f:f7:c8:76:c9:3d:87:02:b6:4f:85:5e:e7:
5d:c0:d5:92:a4:50:b9:ed:15:b3:dd:bc:d1:6d:d2:
3f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:42:20:76:5C:1E:6C:08:2E:4E:D1:AA:E7:F7:8B:14:83:09:EC:97
X509v3 Authority Key Identifier:
keyid:01:33:54:42:51:4D:52:49:B5:14:3C:FD:F8:21:21:6B:B5:C5:29:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ATNUQlFNUkm1FDz9-CEha7XFKUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/c7a68f-7bf8-4f80-a9a2-815d2c026646/1/aEIgdlwebAguTtGq5_eLFIMJ7Jc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/c7a68f-7bf8-4f80-a9a2-815d2c026646/1/ATNUQlFNUkm1FDz9-CEha7XFKUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.105.224.0/19
23.111.32.0/19
23.111.96.0/19
23.111.192.0-23.111.215.255
88.212.232.0-88.212.255.255
Signature Algorithm: sha256WithRSAEncryption
3a:01:82:c5:c8:33:79:2d:08:25:3a:26:4c:33:35:11:81:55:
48:43:5c:64:c6:b1:65:13:fe:fb:ef:58:e9:91:ba:a4:86:aa:
bf:fe:a8:f1:1a:8c:77:28:bc:eb:a6:10:7e:bd:5b:a0:bf:42:
51:c2:92:f5:52:9e:53:07:9b:26:5a:81:81:d6:5c:e9:68:06:
1f:02:96:23:46:fb:4b:f7:a6:2e:95:39:e5:53:97:61:61:a8:
ab:38:20:84:dc:ee:0a:95:d6:a5:c8:c8:2d:8a:fd:45:0b:00:
c2:55:5c:5d:47:a7:25:57:1a:d2:95:74:0a:1e:2d:9a:3a:f6:
42:55:d7:e4:ac:05:71:5a:ad:12:3d:1d:1b:81:8e:ea:bd:e2:
2f:51:d2:31:e7:8b:70:33:c1:06:56:0b:26:76:6d:69:37:ca:
13:43:b4:45:6e:42:0a:89:af:e4:16:56:77:45:b6:08:3d:fc:
43:a6:17:70:aa:94:b6:12:fa:77:de:fc:5d:75:bc:2b:fc:3b:
33:b4:2d:73:df:17:62:6e:3e:4f:14:7d:93:25:94:12:67:d5:
ff:5b:b2:fa:b3:45:7b:66:be:2b:70:53:f5:ae:12:9b:02:c7:
e7:ab:0c:4f:a6:fb:b2:c0:b5:63:17:03:b0:0c:ca:f2:26:27:
87:8b:91:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:50 2025 by rpki-client