Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/IGfFA2VDhz1EXzpunDoInSqY2Ow.roa
File: IGfFA2VDhz1EXzpunDoInSqY2Ow.roa (raw, json)
Hash identifier: YN1vtr2FpWdTD6QmIJTG4zRzPqAr4IpI+6mRIKNRaDQ=
Subject key identifier: 20:67:C5:03:65:43:87:3D:44:5F:3A:6E:9C:3A:08:9D:2A:98:D8:EC
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 0191740EF4E93012C5C6687504B200548FA1
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/IGfFA2VDhz1EXzpunDoInSqY2Ow.roa
Signing time: Wed 21 Aug 2024 08:30:22 +0000
ROA not before: Wed 21 Aug 2024 08:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3352
IP address blocks: 2.136.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
2.139.0.0/16 maxlen: 16
2.140.0.0/16 maxlen: 24
2.141.0.0/16 maxlen: 24
2.142.0.0/16 maxlen: 24
2.143.0.0/16 maxlen: 24
5.205.0.0/16 maxlen: 24
37.10.128.0/17 maxlen: 24
37.12.0.0/16 maxlen: 24
37.13.0.0/16 maxlen: 24
37.158.0.0/16 maxlen: 24
79.144.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
79.146.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
79.148.0.0/16 maxlen: 16
79.149.0.0/16 maxlen: 24
80.24.0.0/16 maxlen: 16
80.25.0.0/16 maxlen: 16
80.26.0.0/16 maxlen: 16
80.27.0.0/16 maxlen: 24
80.29.0.0/16 maxlen: 24
80.30.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
80.32.0.0/16 maxlen: 16
80.33.0.0/16 maxlen: 16
80.34.0.0/16 maxlen: 16
80.35.0.0/16 maxlen: 16
80.36.0.0/16 maxlen: 16
80.37.0.0/16 maxlen: 16
80.38.0.0/16 maxlen: 16
80.39.0.0/16 maxlen: 16
80.59.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
81.33.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.41.0.0/16 maxlen: 16
81.42.0.0/16 maxlen: 16
81.43.0.0/16 maxlen: 16
81.44.0.0/16 maxlen: 16
81.47.0.0/16 maxlen: 24
83.32.0.0/16 maxlen: 16
83.33.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
83.36.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
83.38.0.0/16 maxlen: 16
83.39.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
83.48.0.0/16 maxlen: 24
83.52.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
83.56.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.60.0.0/16 maxlen: 16
83.61.0.0/16 maxlen: 16
83.62.0.0/16 maxlen: 21
83.63.0.0/16 maxlen: 16
88.0.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
88.2.0.0/16 maxlen: 16
88.3.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
88.12.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
88.26.0.0/16 maxlen: 16
88.27.0.0/16 maxlen: 16
88.28.0.0/16 maxlen: 24
88.29.0.0/16 maxlen: 24
88.30.0.0/16 maxlen: 16
88.31.0.0/16 maxlen: 24
95.121.0.0/16 maxlen: 16
95.122.0.0/16 maxlen: 16
95.123.0.0/16 maxlen: 16
95.124.0.0/16 maxlen: 24
95.125.0.0/16 maxlen: 24
95.126.0.0/16 maxlen: 24
95.127.0.0/16 maxlen: 24
176.80.0.0/16 maxlen: 24
176.81.0.0/16 maxlen: 16
176.82.0.0/16 maxlen: 24
176.83.0.0/16 maxlen: 24
176.85.0.0/16 maxlen: 16
176.86.0.0/16 maxlen: 16
176.87.0.0/16 maxlen: 24
192.101.1.0/24 maxlen: 24
193.153.0.0/16 maxlen: 16
194.69.225.0/24 maxlen: 24
194.179.34.0/24 maxlen: 24
194.179.112.0/24 maxlen: 24
194.224.157.0/24 maxlen: 24
195.53.0.0/16 maxlen: 16
195.53.69.0/24 maxlen: 24
195.53.193.0/24 maxlen: 24
195.53.218.0/23 maxlen: 23
195.55.0.0/16 maxlen: 16
195.55.78.0/24 maxlen: 24
195.55.79.0/24 maxlen: 24
195.55.110.0/24 maxlen: 24
195.57.0.0/16 maxlen: 16
195.57.5.0/24 maxlen: 24
195.57.27.0/24 maxlen: 24
195.76.0.0/16 maxlen: 16
195.76.141.0/24 maxlen: 24
195.76.164.0/24 maxlen: 24
195.77.0.0/16 maxlen: 16
195.77.57.0/24 maxlen: 24
195.77.132.0/22 maxlen: 22
195.77.132.0/23 maxlen: 23
195.77.132.0/24 maxlen: 24
195.235.0.0/16 maxlen: 16
195.235.95.0/24 maxlen: 24
195.235.188.0/24 maxlen: 24
195.235.225.0/24 maxlen: 24
195.235.241.0/24 maxlen: 24
195.235.242.0/24 maxlen: 24
212.170.0.0/16 maxlen: 16
212.170.156.0/24 maxlen: 24
212.170.159.0/24 maxlen: 24
213.96.0.0/16 maxlen: 16
213.97.0.0/16 maxlen: 16
213.98.0.0/16 maxlen: 16
213.99.0.0/16 maxlen: 24
213.99.44.0/24 maxlen: 24
213.99.59.0/24 maxlen: 24
217.11.96.0/19 maxlen: 19
217.124.0.0/16 maxlen: 16
217.124.182.0/24 maxlen: 24
217.125.0.0/16 maxlen: 16
217.125.159.0/24 maxlen: 24
217.126.0.0/16 maxlen: 16
217.127.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:74:0e:f4:e9:30:12:c5:c6:68:75:04:b2:00:54:8f:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Aug 21 08:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2067c5036543873d445f3a6e9c3a089d2a98d8ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0d:ea:62:c8:93:8a:ad:21:d2:fb:d2:d3:f6:
f4:07:0d:54:57:92:b6:71:6c:d7:da:b9:cb:d2:2c:
79:f2:51:10:9a:c2:29:8d:93:0b:e2:43:7e:61:d7:
4c:ef:e1:e3:d3:31:93:c7:00:a5:2c:c8:4d:91:2f:
9e:31:b7:da:26:87:6c:ec:22:dc:34:b3:5f:66:62:
73:54:d1:ad:dd:15:a0:2b:4a:80:3e:9b:65:55:95:
9b:31:dc:a3:83:6e:de:99:3b:24:27:e2:84:cd:51:
4f:0e:e1:44:5d:9d:2a:d1:b6:53:6c:23:b6:e2:18:
8a:f4:dc:ba:55:48:c8:24:9a:4d:d4:71:a5:82:00:
ce:1c:1d:e0:51:56:87:eb:0f:ef:c9:e7:29:25:d4:
26:14:02:be:b2:83:a5:2f:51:d7:8e:70:cf:4a:e0:
74:cf:b3:5b:84:e3:f9:69:a2:31:28:fd:35:bc:16:
b0:0d:7c:e5:14:4c:a3:a8:76:7d:6e:d9:96:49:ff:
bd:ef:a1:6e:39:14:dd:e6:cb:85:9e:34:c1:4e:bc:
9c:78:ff:cd:31:aa:0e:52:9c:04:cb:9e:ec:44:84:
72:8d:08:bb:cc:c1:e2:f1:f5:41:be:81:bb:fb:a4:
ac:9d:cc:8b:5b:10:b5:74:24:b5:7e:dc:ea:a5:d4:
3d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:67:C5:03:65:43:87:3D:44:5F:3A:6E:9C:3A:08:9D:2A:98:D8:EC
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/IGfFA2VDhz1EXzpunDoInSqY2Ow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.136.0.0/13
5.205.0.0/16
37.10.128.0/17
37.12.0.0/15
37.158.0.0/16
79.144.0.0-79.149.255.255
80.24.0.0/14
80.29.0.0-80.39.255.255
80.59.0.0/16
81.32.0.0-81.44.255.255
81.47.0.0/16
83.32.0.0/13
83.47.0.0-83.48.255.255
83.52.0.0-83.63.255.255
88.0.0.0/14
88.8.0.0-88.16.255.255
88.24.0.0/13
95.121.0.0-95.127.255.255
176.80.0.0/14
176.85.0.0-176.87.255.255
192.101.1.0/24
193.153.0.0/16
194.69.225.0/24
194.179.34.0/24
194.179.112.0/24
194.224.157.0/24
195.53.0.0/16
195.55.0.0/16
195.57.0.0/16
195.76.0.0/15
195.235.0.0/16
212.170.0.0/16
213.96.0.0/14
217.11.96.0/19
217.124.0.0/14
Signature Algorithm: sha256WithRSAEncryption
b1:24:9c:8d:40:b9:a0:e9:46:96:3d:09:cf:d9:6a:4c:83:5e:
c5:0c:df:47:42:f9:e5:45:6a:14:06:68:05:4a:7a:c3:ca:f3:
e7:5b:e6:6b:9f:0d:73:6f:76:f1:9b:67:cc:57:93:8b:2a:0a:
21:69:5c:78:c8:75:75:29:f6:1f:32:3f:f0:8c:5b:58:58:25:
83:2a:57:93:65:0f:e3:62:a8:84:51:5f:2b:7b:21:53:1f:08:
1e:d0:df:e2:5d:21:ad:fe:94:75:aa:00:4a:ba:50:45:f0:61:
e6:ab:ad:ea:cf:59:d2:28:75:80:23:bf:a2:78:cb:2b:08:d9:
98:a6:84:f4:3e:93:de:86:61:85:05:4f:b4:53:11:fa:3f:70:
32:cd:14:55:04:ce:4e:58:4b:0f:84:9b:11:27:18:51:8c:ba:
1f:d8:f9:4d:c9:b2:77:47:40:97:85:47:d6:7e:88:db:6e:ae:
87:cc:e8:93:85:c3:40:0c:87:87:6e:c5:60:21:4c:65:b6:65:
96:8e:f4:94:7d:51:2c:81:b6:52:72:91:e3:fb:1a:5f:0a:ed:
17:e4:4c:2d:67:10:91:b7:d2:6d:2e:51:ee:ad:ce:d3:51:90:
52:65:8c:da:58:31:35:d1:60:8a:a3:f9:22:1d:36:77:a9:ce:
b2:91:e2:f1
-----BEGIN CERTIFICATE-----
MIIF6zCCBNOgAwIBAgISAZF0DvTpMBLFxmh1BLIAVI+hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwN2Y1ZmUyNzQwYTJiNmRlNGMzNzA5ZDI5NjQxMTViM2M5
NjdkYTEwHhcNMjQwODIxMDgzMDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMDY3YzUwMzY1NDM4NzNkNDQ1ZjNhNmU5YzNhMDg5ZDJhOThkOGVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlw3qYsiTiq0h0vvS0/b0Bw1UV5K2
cWzX2rnL0ix58lEQmsIpjZML4kN+YddM7+Hj0zGTxwClLMhNkS+eMbfaJods7CLc
NLNfZmJzVNGt3RWgK0qAPptlVZWbMdyjg27emTskJ+KEzVFPDuFEXZ0q0bZTbCO2
4hiK9Ny6VUjIJJpN1HGlggDOHB3gUVaH6w/vyecpJdQmFAK+soOlL1HXjnDPSuB0
z7NbhOP5aaIxKP01vBawDXzlFEyjqHZ9btmWSf+976FuORTd5suFnjTBTryceP/N
MaoOUpwEy57sRIRyjQi7zMHi8fVBvoG7+6SsncyLWxC1dCS1ftzqpdQ9nQIDAQAB
o4IC9zCCAvMwHQYDVR0OBBYEFCBnxQNlQ4c9RF86bpw6CJ0qmNjsMB8GA1UdIwQY
MBaAFDB/X+J0Citt5MNwnSlkEVs8ln2hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQt
NGJhMmY4ZjFmODNiLzEvSUdmRkEyVkRoejFFWHpwdW5Eb0luU3FZMk93LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQtNGJhMmY4ZjFmODNi
LzEvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBCwYIKwYBBQUHAQcBAf8EgfswgfgwgfUEAgABMIHuAwMD
AogDAwAFzQMEByUKgAMDASUMAwMAJZ4wCgMDBE+QAwMBT5QDAwJQGDAKAwMAUB0D
AwNQIAMDAFA7MAoDAwVRIAMDAFEsAwMAUS8DAwNTIDAKAwMAUy8DAwBTMDAKAwMC
UzQDAwZTAAMDAlgAMAoDAwNYCAMDAFgQAwMDWBgwCgMDAF95AwMHXwADAwKwUDAK
AwMAsFUDAwOwUAMEAMBlAQMDAMGZAwQAwkXhAwQAwrMiAwQAwrNwAwQAwuCdAwMA
wzUDAwDDNwMDAMM5AwMBw0wDAwDD6wMDANSqAwMC1WADBAXZC2ADAwLZfDANBgkq
hkiG9w0BAQsFAAOCAQEAsSScjUC5oOlGlj0Jz9lqTINexQzfR0L55UVqFAZoBUp6
w8rz51vma58Nc2928ZtnzFeTiyoKIWlceMh1dSn2HzI/8IxbWFglgypXk2UP42Ko
hFFfK3shUx8IHtDf4l0hrf6UdaoASrpQRfBh5qut6s9Z0ih1gCO/onjLKwjZmKaE
9D6T3oZhhQVPtFMR+j9wMs0UVQTOTlhLD4SbEScYUYy6H9j5Tcmyd0dAl4VH1n6I
226uh8zok4XDQAyHh27FYCFMZbZllo70lH1RLIG2UnKR4/saXwrtF+RMLWcQkbfS
bS5R7q3O01GQUmWM2lgxNdFgiqP5Ih02d6nOspHi8Q==
-----END CERTIFICATE-----
Generated at Sat Jul 26 20:23:05 2025 by rpki-client