
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/901ad2-6c6c-43c6-a280-4250ce5517d9/1/0O4bVVUNuf_E3xRuDtUyisyqzVk.roa
File: 0O4bVVUNuf_E3xRuDtUyisyqzVk.roa (raw, json)
Hash identifier: 5nZodmDEkx02HgFksujuuQlNMHu6faFaLHhnknosqTM=
Subject key identifier: D0:EE:1B:55:55:0D:B9:FF:C4:DF:14:6E:0E:D5:32:8A:CC:AA:CD:59
Certificate issuer: /CN=89b5fad18dd9110413a31b4d8e18765a27d4c3f1
Certificate serial: 3409B308
Authority key identifier: 89:B5:FA:D1:8D:D9:11:04:13:A3:1B:4D:8E:18:76:5A:27:D4:C3:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ibX60Y3ZEQQToxtNjhh2WifUw_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/901ad2-6c6c-43c6-a280-4250ce5517d9/1/0O4bVVUNuf_E3xRuDtUyisyqzVk.roa
Signing time: Fri 18 Mar 2022 12:15:31 +0000
ROA not before: Fri 18 Mar 2022 12:15:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8412
IP address blocks: 62.178.0.0/16 maxlen: 17
195.34.136.0/21 maxlen: 22
195.34.144.0/20 maxlen: 21
84.112.0.0/14 maxlen: 15
213.47.0.0/17 maxlen: 18
84.115.208.0/20 maxlen: 20
84.115.224.0/20 maxlen: 20
80.241.16.0/20 maxlen: 21
217.25.122.0/23 maxlen: 23
80.108.0.0/15 maxlen: 16
213.47.128.0/18 maxlen: 19
217.25.112.0/20 maxlen: 22
213.47.208.0/21 maxlen: 22
213.47.216.0/22 maxlen: 23
213.47.224.0/19 maxlen: 20
212.186.0.0/16 maxlen: 17
195.34.128.0/23 maxlen: 24
195.34.131.0/24 maxlen: 24
212.17.64.0/18 maxlen: 19
80.110.0.0/16 maxlen: 17
213.47.192.0/20 maxlen: 21
2a02:838c::/30 maxlen: 30
2a02:8380::/30 maxlen: 33
2a02:8380::/28 maxlen: 29
2a02:838a::/41 maxlen: 44
2a02:8384::/31 maxlen: 32
2a02:8388::/29 maxlen: 30
2a02:8388::/31 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 873050888 (0x3409b308)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89b5fad18dd9110413a31b4d8e18765a27d4c3f1
Validity
Not Before: Mar 18 12:15:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0ee1b55550db9ffc4df146e0ed5328accaacd59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a4:6f:93:35:ec:29:ea:4c:91:27:5a:58:fa:
7a:39:64:52:12:1e:d2:a5:c4:d6:70:56:2c:8e:87:
6a:40:ac:21:56:0e:50:7d:b3:9f:fb:87:be:ba:00:
b2:94:55:e7:85:7a:3a:9d:d7:aa:36:17:01:1c:94:
a8:6f:4a:b5:14:99:12:29:e4:69:0f:ef:d0:d2:e2:
ba:2b:27:ca:57:6c:92:a1:08:c5:01:3d:a4:f2:5f:
0c:59:0d:ba:10:ef:50:af:8a:39:dd:45:4b:1e:bc:
8c:94:a0:4a:a2:41:7f:db:34:83:6b:18:9e:3e:7e:
bb:91:ef:60:05:93:74:2f:17:08:76:da:07:c2:b4:
1e:e9:76:b1:b5:b7:7f:b9:12:ee:67:8d:a2:a8:9f:
c5:0f:73:29:a7:91:41:7b:35:3b:82:c7:25:6e:de:
c5:3f:34:58:47:45:e1:1f:fd:68:c7:9e:28:cf:3e:
05:55:75:a4:e3:fb:a7:fa:51:0c:75:19:6b:48:64:
ac:9e:0b:e9:2e:b9:76:f5:b3:6c:47:89:11:c5:f9:
a7:78:b4:1b:43:c1:81:34:30:50:56:2c:e7:36:10:
4e:99:6d:f6:da:af:93:d7:f0:f9:dd:a7:2c:99:c7:
a7:f4:4b:64:c1:6d:ef:07:f2:6f:c4:05:ce:6c:65:
fe:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:EE:1B:55:55:0D:B9:FF:C4:DF:14:6E:0E:D5:32:8A:CC:AA:CD:59
X509v3 Authority Key Identifier:
keyid:89:B5:FA:D1:8D:D9:11:04:13:A3:1B:4D:8E:18:76:5A:27:D4:C3:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ibX60Y3ZEQQToxtNjhh2WifUw_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/901ad2-6c6c-43c6-a280-4250ce5517d9/1/0O4bVVUNuf_E3xRuDtUyisyqzVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/901ad2-6c6c-43c6-a280-4250ce5517d9/1/ibX60Y3ZEQQToxtNjhh2WifUw_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.178.0.0/16
80.108.0.0-80.110.255.255
80.241.16.0/20
84.112.0.0/14
195.34.128.0/23
195.34.131.0/24
195.34.136.0-195.34.159.255
212.17.64.0/18
212.186.0.0/16
213.47.0.0-213.47.219.255
213.47.224.0/19
217.25.112.0/20
IPv6:
2a02:8380::/28
Signature Algorithm: sha256WithRSAEncryption
06:5f:f0:02:66:d3:a5:70:53:0a:af:18:5d:e5:03:2c:90:b0:
ea:4b:40:8c:4a:97:b3:34:b9:4f:dd:16:0f:8a:ed:fe:a7:f7:
c5:d7:d8:d1:63:2a:69:1f:a1:a2:00:f3:41:3f:a6:fd:8f:ec:
c8:5a:86:5a:98:b9:99:b4:b6:bc:fe:8b:41:24:93:2b:38:95:
2d:1d:80:41:d1:d5:1f:fe:b2:74:9a:b7:f3:ed:d4:02:89:a5:
fd:59:ce:c0:f6:50:37:17:da:83:b4:14:73:4c:4d:c2:c4:fa:
77:e3:f2:4a:ab:41:9c:40:c9:ee:00:e1:28:6c:ce:c2:4e:fe:
0f:b4:ca:92:08:0f:11:0f:a9:ab:03:d7:53:21:74:24:90:77:
04:a0:50:45:41:9b:b4:4d:66:53:f4:3f:df:b7:28:4e:4d:d0:
61:44:d4:32:15:0c:66:a0:09:8b:17:e9:fa:66:d0:2b:15:5c:
07:5e:3d:ea:fb:dc:b9:ab:ea:fe:b6:11:40:a2:12:f4:42:86:
9c:47:42:5e:a6:97:2b:05:43:70:96:f7:e4:fb:c3:39:72:6c:
70:ce:dd:69:b5:1e:ef:c2:42:4e:87:fe:91:bf:8e:f7:7d:9a:
e4:5b:51:ad:57:d6:cc:ba:98:d4:77:7a:2b:e0:b7:d3:7a:d1:
e6:06:4d:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 03:22:01 2025 by rpki-client