Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/meL393aGchEygPTW5XcPT9SjOxg.roa
File: meL393aGchEygPTW5XcPT9SjOxg.roa (raw, json)
Hash identifier: G/2aZJbChXFFdLHIdGhHkdn4VQRUZXJMVCED9k2LMNs=
Subject key identifier: 99:E2:F7:F7:76:86:72:11:32:80:F4:D6:E5:77:0F:4F:D4:A3:3B:18
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0188759E0D7C11D0804C829E4E610099F2C0
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/meL393aGchEygPTW5XcPT9SjOxg.roa
Signing time: Thu 01 Jun 2023 06:21:12 +0000
ROA not before: Thu 01 Jun 2023 06:21:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 85.208.105.0/24 maxlen: 24
45.66.152.0/24 maxlen: 24
45.66.154.0/24 maxlen: 24
45.66.155.0/24 maxlen: 24
5.180.32.0/22 maxlen: 24
5.180.51.0/24 maxlen: 24
5.180.48.0/24 maxlen: 24
5.180.50.0/24 maxlen: 24
85.208.113.0/24 maxlen: 24
85.208.115.0/24 maxlen: 24
45.8.184.0/22 maxlen: 24
45.8.192.0/22 maxlen: 24
45.8.188.0/22 maxlen: 24
45.8.199.0/24 maxlen: 24
45.8.198.0/24 maxlen: 24
45.8.197.0/24 maxlen: 24
45.8.203.0/24 maxlen: 24
193.168.208.0/22 maxlen: 24
5.180.80.0/24 maxlen: 24
5.180.235.0/24 maxlen: 24
85.209.162.0/24 maxlen: 24
85.209.161.0/24 maxlen: 24
85.209.160.0/24 maxlen: 24
5.253.44.0/24 maxlen: 24
5.253.39.0/24 maxlen: 24
45.8.252.0/24 maxlen: 24
45.8.253.0/24 maxlen: 24
5.253.46.0/24 maxlen: 24
5.253.47.0/24 maxlen: 24
5.253.45.0/24 maxlen: 24
45.9.3.0/24 maxlen: 24
45.9.4.0/24 maxlen: 24
45.8.255.0/24 maxlen: 24
45.9.1.0/24 maxlen: 24
45.9.0.0/24 maxlen: 24
45.9.6.0/24 maxlen: 24
45.9.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:75:9e:0d:7c:11:d0:80:4c:82:9e:4e:61:00:99:f2:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jun 1 06:21:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99e2f7f7768672113280f4d6e5770f4fd4a33b18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:18:3d:3c:02:aa:36:e2:01:18:5e:31:87:54:
19:f7:5f:1f:a5:16:a8:56:b7:6f:d0:6a:88:b8:f0:
59:ae:65:a7:be:d5:93:9a:d7:f1:49:e9:07:8f:10:
56:d9:f2:ba:ba:c1:86:5c:17:42:e6:20:15:4a:01:
28:69:d3:f2:0d:ad:94:7c:98:17:eb:95:04:48:1d:
8b:77:93:cc:44:f3:8b:ee:aa:ac:25:33:2e:44:53:
42:98:00:43:e3:00:b9:cc:54:b9:43:2f:37:ac:0e:
50:78:34:0a:fe:79:22:8b:c0:fe:f6:da:f7:7d:56:
c1:fc:29:e2:5c:b1:a7:5a:0f:9b:f1:6a:27:bc:73:
5f:60:f4:60:e6:ad:b9:a9:29:4d:57:c5:75:da:a6:
9e:2f:a8:ab:04:23:34:5d:06:23:5b:e3:f7:01:d4:
ed:59:62:1e:81:80:04:5f:cd:93:23:8e:3a:43:1e:
3a:10:60:dd:a1:01:ed:4b:12:db:c7:b9:5f:d6:46:
9f:e0:c5:2c:a7:2d:ae:bd:ba:c1:72:f4:d0:44:fa:
21:e4:d1:ba:aa:51:e9:ec:e9:bf:8a:28:84:69:0c:
22:56:73:77:dc:da:d2:42:83:d8:ea:b8:33:03:61:
1a:b3:56:bf:71:df:35:41:eb:3a:87:a4:5d:76:92:
14:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:E2:F7:F7:76:86:72:11:32:80:F4:D6:E5:77:0F:4F:D4:A3:3B:18
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/meL393aGchEygPTW5XcPT9SjOxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.32.0/22
5.180.48.0/24
5.180.50.0/23
5.180.80.0/24
5.180.235.0/24
5.253.39.0/24
5.253.44.0/22
45.8.184.0-45.8.195.255
45.8.197.0-45.8.199.255
45.8.203.0/24
45.8.252.0/23
45.8.255.0-45.9.1.255
45.9.3.0-45.9.4.255
45.9.6.0/23
45.66.152.0/24
45.66.154.0/23
85.208.105.0/24
85.208.113.0/24
85.208.115.0/24
85.209.160.0-85.209.162.255
193.168.208.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:40:fa:90:9d:3a:8f:b7:48:77:b9:c9:b5:31:f9:54:b8:af:
96:a8:f3:83:81:26:6b:46:fb:3a:ee:8b:6c:d0:74:06:dd:18:
68:be:a3:17:99:13:3b:0e:25:92:5e:89:1e:93:c1:b7:cc:2b:
13:ae:75:f2:be:02:97:f2:2c:5f:45:23:11:c3:3a:d5:84:99:
75:eb:da:78:7b:8d:1e:f8:d6:8e:0a:2f:c5:27:b0:97:67:02:
cb:45:a7:62:d2:b1:39:87:9f:79:0f:f1:2a:e7:05:28:84:34:
3c:ee:c9:15:c7:cc:f1:26:8d:89:33:1d:14:b5:d7:c1:cf:df:
cf:c8:fc:ef:16:7d:f8:ff:2d:f4:a9:9c:65:32:d1:78:8d:51:
97:d4:1e:f7:c9:88:5e:c9:e3:19:76:6a:b5:8c:ca:48:4d:78:
72:a1:8b:c5:f1:c4:e8:34:68:10:dd:eb:de:fa:d2:ec:32:b2:
da:d5:e4:15:d7:1b:95:96:08:ba:41:56:d5:eb:7c:c2:48:bf:
7c:19:b0:31:ed:ed:7f:b8:cf:91:fe:ba:31:d9:37:d5:a3:eb:
9c:55:b3:b3:f0:7f:d1:c0:62:1a:15:24:e4:2d:4c:d0:e6:27:
84:1e:71:ea:77:a9:d4:8b:d7:29:bd:ce:7d:62:fa:9b:1d:92:
53:74:02:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:25 2025 by rpki-client