Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/m4DYLougi7KfgSMz6FFPUruGuTg.roa
File: m4DYLougi7KfgSMz6FFPUruGuTg.roa (raw, json)
Hash identifier: b7JzpijgAejsVZuhJ9K1GQqMdv7QiNMCs4C7swW+2zM=
Subject key identifier: 9B:80:D8:2E:8B:A0:8B:B2:9F:81:23:33:E8:51:4F:52:BB:86:B9:38
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0183A23464BA5A26BA39801072AE83A97F61
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/m4DYLougi7KfgSMz6FFPUruGuTg.roa
Signing time: Tue 04 Oct 2022 08:54:45 +0000
ROA not before: Tue 04 Oct 2022 08:54:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.8.184.0/22 maxlen: 24
45.8.192.0/22 maxlen: 24
45.8.188.0/22 maxlen: 24
45.8.196.0/22 maxlen: 24
45.8.200.0/22 maxlen: 24
45.8.205.0/24 maxlen: 24
85.208.104.0/22 maxlen: 24
193.168.208.0/22 maxlen: 24
45.66.152.0/22 maxlen: 24
5.180.82.0/24 maxlen: 24
5.180.80.0/24 maxlen: 24
5.180.232.0/22 maxlen: 24
5.180.32.0/22 maxlen: 24
85.209.160.0/22 maxlen: 24
5.180.48.0/22 maxlen: 24
85.208.112.0/22 maxlen: 24
5.253.36.0/22 maxlen: 24
5.253.44.0/22 maxlen: 24
45.8.252.0/22 maxlen: 24
45.9.0.0/22 maxlen: 24
45.9.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a2:34:64:ba:5a:26:ba:39:80:10:72:ae:83:a9:7f:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Oct 4 08:54:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b80d82e8ba08bb29f812333e8514f52bb86b938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:94:7c:94:2a:15:cd:ce:5c:d2:aa:de:01:c1:
83:73:ba:ab:c9:06:14:8e:d9:17:ad:8b:84:21:24:
30:dd:0b:50:d7:89:37:50:69:21:66:8e:fe:57:62:
53:fa:e2:f8:5b:74:e2:b0:0c:4b:6a:81:e2:f1:cd:
c1:22:ce:ab:31:75:5e:f6:b7:26:90:17:b3:66:02:
b8:27:29:22:79:e7:5f:9f:b3:52:56:51:c1:87:7f:
e6:c5:92:00:bc:97:37:15:9d:fa:2e:fe:1c:45:94:
26:cc:6a:a7:91:de:27:5a:87:c8:c9:2e:4e:87:b7:
7c:a3:9b:cf:cd:0c:2e:3c:c5:67:b4:9b:b1:11:bd:
bd:39:d7:75:a1:4d:ba:a1:bf:ff:ed:d5:9e:70:50:
73:fe:ab:08:66:1b:99:aa:50:79:90:93:77:84:9e:
64:68:7b:9c:53:dc:6e:80:bc:f6:23:1d:79:01:b0:
66:bc:50:e1:ff:4c:d5:63:fd:0c:2a:fe:eb:4e:b3:
d5:c7:dd:0a:0f:ee:51:e3:16:d7:73:55:ae:d5:f7:
57:d0:f6:5c:e2:fe:1d:55:9a:f8:ea:c6:72:c2:60:
fc:75:9a:d0:29:7c:10:34:88:d6:1f:8f:ce:0f:d5:
23:ba:ab:3f:79:f6:f6:0b:c1:b5:c9:68:c7:6d:c1:
0d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:80:D8:2E:8B:A0:8B:B2:9F:81:23:33:E8:51:4F:52:BB:86:B9:38
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/m4DYLougi7KfgSMz6FFPUruGuTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.32.0/22
5.180.48.0/22
5.180.80.0/24
5.180.82.0/24
5.180.232.0/22
5.253.36.0/22
5.253.44.0/22
45.8.184.0-45.8.203.255
45.8.205.0/24
45.8.252.0-45.9.7.255
45.66.152.0/22
85.208.104.0/22
85.208.112.0/22
85.209.160.0/22
193.168.208.0/22
Signature Algorithm: sha256WithRSAEncryption
39:cc:ab:7d:66:79:92:ad:f6:24:9c:6c:d2:cb:54:0d:f8:67:
e4:33:4e:27:0c:c6:3a:e4:29:ee:0d:dc:9a:d1:4b:ab:c1:a8:
ec:85:29:5b:f7:e9:34:22:53:94:09:31:ee:63:90:d5:0f:22:
d1:57:80:e7:3e:09:a6:01:53:38:a6:93:96:f8:56:00:c0:b0:
48:cd:25:07:e2:3f:86:d9:91:68:3d:82:52:63:2f:03:4b:da:
5b:fe:54:81:d3:67:41:8f:4f:39:a2:30:e6:23:60:13:53:92:
d3:73:82:12:c9:e1:b5:14:19:9e:e7:28:86:cf:0f:cf:ce:f6:
ad:a2:d6:9c:3c:de:9d:03:f9:1b:66:68:7f:ee:0d:21:a0:43:
dc:4b:cc:6e:55:21:dc:e8:90:28:e4:d9:d2:c9:63:ea:35:40:
b2:66:ec:84:f3:81:d8:33:ce:90:1f:5c:de:3f:3e:5a:10:02:
2a:e8:89:81:ac:25:91:61:99:25:90:ee:3a:32:8a:61:a5:21:
7a:d2:a8:24:f6:1a:ec:da:72:fd:4c:30:e2:7a:51:4d:4b:94:
76:6f:41:e1:46:e2:83:3f:a3:2c:fd:1e:7d:a1:75:34:e5:fc:
4b:47:9a:0d:a8:33:48:f1:6e:32:bb:05:54:a8:8e:56:18:56:
95:e5:52:91
-----BEGIN CERTIFICATE-----
MIIFYjCCBEqgAwIBAgISAYOiNGS6Wia6OYAQcq6DqX9hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj
Zjk3MDQwHhcNMjIxMDA0MDg1NDQ1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YjgwZDgyZThiYTA4YmIyOWY4MTIzMzNlODUxNGY1MmJiODZiOTM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJR8lCoVzc5c0qreAcGDc7qryQYU
jtkXrYuEISQw3QtQ14k3UGkhZo7+V2JT+uL4W3TisAxLaoHi8c3BIs6rMXVe9rcm
kBezZgK4Jykieedfn7NSVlHBh3/mxZIAvJc3FZ36Lv4cRZQmzGqnkd4nWofIyS5O
h7d8o5vPzQwuPMVntJuxEb29Odd1oU26ob//7dWecFBz/qsIZhuZqlB5kJN3hJ5k
aHucU9xugLz2Ix15AbBmvFDh/0zVY/0MKv7rTrPVx90KD+5R4xbXc1Wu1fdX0PZc
4v4dVZr46sZywmD8dZrQKXwQNIjWH4/OD9Ujuqs/efb2C8G1yWjHbcENLQIDAQAB
o4ICbjCCAmowHQYDVR0OBBYEFJuA2C6LoIuyn4EjM+hRT1K7hrk4MB8GA1UdIwQY
MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct
ZTg2MTIxYzU5NGRmLzEvbTREWUxvdWdpN0tmZ1NNejZGRlBVcnVHdVRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm
LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGDBggrBgEFBQcBBwEB/wR0MHIwcAQCAAEwagMEAgW0IAME
AgW0MAMEAAW0UAMEAAW0UgMEAgW06AMEAgX9JAMEAgX9LDAMAwQDLQi4AwQCLQjI
AwQALQjNMAwDBAItCPwDBAMtCQADBAItQpgDBAJV0GgDBAJV0HADBAJV0aADBALB
qNAwDQYJKoZIhvcNAQELBQADggEBADnMq31meZKt9iScbNLLVA34Z+QzTicMxjrk
Ke4N3JrRS6vBqOyFKVv36TQiU5QJMe5jkNUPItFXgOc+CaYBUzimk5b4VgDAsEjN
JQfiP4bZkWg9glJjLwNL2lv+VIHTZ0GPTzmiMOYjYBNTktNzghLJ4bUUGZ7nKIbP
D8/O9q2i1pw83p0D+RtmaH/uDSGgQ9xLzG5VIdzokCjk2dLJY+o1QLJm7ITzgdgz
zpAfXN4/PloQAiroiYGsJZFhmSWQ7joyimGlIXrSqCT2Guzacv1MMOJ6UU1LlHZv
QeFG4oM/oyz9Hn2hdTTl/EtHmg2oM0jxbjK7BVSojlYYVpXlUpE=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:24 2025 by rpki-client