Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/AR_OMRRaz2PZopLNyjQDHb0E1eg.roa
File: AR_OMRRaz2PZopLNyjQDHb0E1eg.roa (raw, json)
Hash identifier: YtWXg83v0E1l0rSymFdm/pTHyROeUb3rNmmiI6HHGgs=
Subject key identifier: 01:1F:CE:31:14:5A:CF:63:D9:A2:92:CD:CA:34:03:1D:BD:04:D5:E8
Certificate issuer: /CN=4173eeb8d02f5f64788b3fdc78d6bab8a55fd16a
Certificate serial: 11310C42
Authority key identifier: 41:73:EE:B8:D0:2F:5F:64:78:8B:3F:DC:78:D6:BA:B8:A5:5F:D1:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/AR_OMRRaz2PZopLNyjQDHb0E1eg.roa
Signing time: Sat 01 Jan 2022 14:54:39 +0000
ROA not before: Sat 01 Jan 2022 14:54:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198610
IP address blocks: 185.225.34.0/24 maxlen: 24
185.225.35.0/24 maxlen: 24
185.225.32.0/24 maxlen: 24
185.225.33.0/24 maxlen: 24
185.50.24.0/24 maxlen: 24
185.50.24.0/22 maxlen: 22
5.101.153.244/32 maxlen: 32
87.236.17.122/32 maxlen: 32
5.101.153.242/32 maxlen: 32
185.50.25.0/24 maxlen: 24
185.50.26.0/24 maxlen: 24
185.50.27.0/24 maxlen: 24
185.19.204.0/24 maxlen: 24
185.19.205.0/24 maxlen: 24
185.19.206.0/24 maxlen: 24
185.19.207.0/24 maxlen: 24
81.200.112.0/24 maxlen: 24
81.200.113.0/24 maxlen: 24
81.200.114.0/24 maxlen: 24
81.200.115.0/24 maxlen: 24
81.200.116.0/24 maxlen: 24
81.200.117.0/24 maxlen: 24
81.200.118.0/24 maxlen: 24
81.200.119.0/24 maxlen: 24
91.106.206.0/24 maxlen: 24
91.106.200.0/21 maxlen: 21
91.106.200.0/24 maxlen: 24
91.106.201.0/24 maxlen: 24
91.106.202.0/24 maxlen: 24
91.106.203.0/24 maxlen: 24
91.106.204.0/24 maxlen: 24
91.106.205.0/24 maxlen: 24
91.106.207.0/24 maxlen: 24
62.113.97.0/24 maxlen: 24
62.113.98.0/24 maxlen: 24
62.113.96.0/24 maxlen: 24
62.113.104.0/24 maxlen: 24
62.113.105.0/24 maxlen: 24
62.113.99.0/24 maxlen: 24
62.113.100.0/24 maxlen: 24
62.113.101.0/24 maxlen: 24
62.113.102.0/24 maxlen: 24
62.113.103.0/24 maxlen: 24
62.113.110.0/24 maxlen: 24
62.113.111.0/24 maxlen: 24
62.113.106.0/24 maxlen: 24
62.113.107.0/24 maxlen: 24
62.113.108.0/24 maxlen: 24
62.113.109.0/24 maxlen: 24
5.101.154.191/32 maxlen: 32
31.129.96.0/24 maxlen: 24
87.236.16.0/24 maxlen: 24
87.236.17.0/24 maxlen: 24
87.236.16.0/21 maxlen: 21
87.236.21.0/24 maxlen: 24
87.236.22.0/24 maxlen: 24
87.236.23.0/24 maxlen: 24
217.172.24.0/24 maxlen: 24
87.236.18.0/24 maxlen: 24
87.236.19.0/24 maxlen: 24
87.236.20.0/24 maxlen: 24
217.172.27.0/24 maxlen: 24
217.172.25.0/24 maxlen: 24
217.172.26.0/24 maxlen: 24
185.78.30.0/24 maxlen: 24
185.78.28.0/22 maxlen: 22
185.78.31.0/24 maxlen: 24
185.78.28.0/24 maxlen: 24
185.78.29.0/24 maxlen: 24
5.101.152.0/24 maxlen: 24
5.101.152.0/21 maxlen: 21
5.101.153.0/24 maxlen: 24
5.101.154.0/24 maxlen: 24
5.101.155.0/24 maxlen: 24
5.101.156.0/24 maxlen: 24
5.101.157.0/24 maxlen: 24
5.101.158.0/24 maxlen: 24
5.101.159.0/24 maxlen: 24
2a04:bac0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 288427074 (0x11310c42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4173eeb8d02f5f64788b3fdc78d6bab8a55fd16a
Validity
Not Before: Jan 1 14:54:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=011fce31145acf63d9a292cdca34031dbd04d5e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:00:36:2f:f4:56:d1:63:8d:61:3e:72:a4:bf:
18:90:d1:d2:41:16:19:86:c3:19:fa:0b:ae:f7:89:
1c:3d:01:04:ae:c3:a0:18:39:21:dc:50:02:50:02:
26:74:d8:0a:d3:d5:c4:c7:16:54:a0:3b:a2:39:17:
69:a8:e9:52:fc:bd:05:b9:91:58:13:fc:02:42:f0:
31:c1:2e:ef:e5:b8:81:03:8e:ab:7c:c7:19:ee:c7:
b3:52:7a:90:71:a8:da:5f:07:6c:7e:28:ba:6a:32:
a2:84:06:25:61:b0:ff:49:8b:67:29:9c:5d:6a:ad:
27:12:f5:d7:cb:1c:d3:9c:e0:1a:89:38:1e:95:87:
ff:d3:50:a9:c7:4a:56:13:26:b2:f4:57:aa:8d:b6:
2c:c8:9a:00:d8:f2:87:21:ca:e6:35:e4:2a:80:93:
90:18:ce:c8:47:d8:c9:07:f6:4b:08:2e:77:b4:d4:
ad:50:3f:ea:1a:65:5b:29:7c:bd:b4:e1:af:18:7f:
20:de:1b:46:39:fd:93:95:ed:1d:59:50:9c:4d:16:
7f:c5:d4:9b:50:af:1c:04:db:b6:bb:14:c2:53:ba:
5e:ca:fe:85:41:d6:64:ec:82:26:aa:1d:d7:8a:ef:
52:2b:20:c7:48:94:96:43:d7:fd:15:25:ff:b1:13:
72:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:1F:CE:31:14:5A:CF:63:D9:A2:92:CD:CA:34:03:1D:BD:04:D5:E8
X509v3 Authority Key Identifier:
keyid:41:73:EE:B8:D0:2F:5F:64:78:8B:3F:DC:78:D6:BA:B8:A5:5F:D1:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/AR_OMRRaz2PZopLNyjQDHb0E1eg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.101.152.0/21
31.129.96.0/24
62.113.96.0/20
81.200.112.0/21
87.236.16.0/21
91.106.200.0/21
185.19.204.0/22
185.50.24.0/22
185.78.28.0/22
185.225.32.0/22
217.172.24.0/22
IPv6:
2a04:bac0::/29
Signature Algorithm: sha256WithRSAEncryption
4a:48:d0:4f:d4:cd:01:3d:78:41:9f:58:93:0e:d6:30:29:a4:
31:a3:54:66:f8:0a:0e:67:f3:10:c1:74:2f:b4:ad:5c:c0:73:
1d:b7:16:f7:4c:42:5c:81:9a:87:af:49:89:4e:c5:0d:f3:a8:
ca:22:25:83:4d:0e:37:17:50:90:29:c2:47:1f:90:68:b1:3f:
3b:12:f2:7d:ba:83:3e:21:43:28:48:95:89:bb:18:6c:ce:91:
93:c2:2f:08:51:b6:12:bf:0e:fa:c0:d5:78:e2:6f:1f:ad:ab:
a8:bc:22:00:66:f5:3d:ba:2a:34:ae:c1:04:f1:46:cd:25:8b:
e0:77:7d:72:06:2f:eb:10:0e:ed:0c:3e:d9:81:25:6e:05:18:
35:a7:f6:40:b1:ab:31:bc:ce:99:46:bb:ff:1c:7d:ff:16:4b:
8f:36:e9:97:7e:94:ec:17:3c:b8:40:e4:7f:9a:81:e1:35:1b:
69:2e:cd:4b:be:c4:29:bc:ce:cd:06:8f:2e:35:28:4f:13:6d:
63:5f:58:be:97:5e:6e:cd:56:fa:3e:5b:60:e9:59:99:02:15:
bb:d9:c7:a6:92:36:0a:e0:b8:a7:0b:00:07:f0:2e:97:32:d2:
2a:89:cb:71:68:77:4c:06:4f:cf:f1:e2:c7:2c:b4:ea:4f:93:
31:3e:d9:23
-----BEGIN CERTIFICATE-----
MIIFOjCCBCKgAwIBAgIEETEMQjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MTczZWViOGQwMmY1ZjY0Nzg4YjNmZGM3OGQ2YmFiOGE1NWZkMTZhMB4XDTIyMDEw
MTE0NTQzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDExZmNlMzExNDVh
Y2Y2M2Q5YTI5MmNkY2EzNDAzMWRiZDA0ZDVlODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALoANi/0VtFjjWE+cqS/GJDR0kEWGYbDGfoLrveJHD0BBK7D
oBg5IdxQAlACJnTYCtPVxMcWVKA7ojkXaajpUvy9BbmRWBP8AkLwMcEu7+W4gQOO
q3zHGe7Hs1J6kHGo2l8HbH4oumoyooQGJWGw/0mLZymcXWqtJxL118sc05zgGok4
HpWH/9NQqcdKVhMmsvRXqo22LMiaANjyhyHK5jXkKoCTkBjOyEfYyQf2Swgud7TU
rVA/6hplWyl8vbThrxh/IN4bRjn9k5XtHVlQnE0Wf8XUm1CvHATbtrsUwlO6Xsr+
hUHWZOyCJqod14rvUisgx0iUlkPX/RUl/7ETcusCAwEAAaOCAlQwggJQMB0GA1Ud
DgQWBBQBH84xFFrPY9miks3KNAMdvQTV6DAfBgNVHSMEGDAWgBRBc+640C9fZHiL
P9x41rq4pV/RajAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FYUHV1TkF2WDJSNGl6X2NlTmE2dUtWZjBXby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjgvNDg5MmE5LTNiMzctNGQzOS05YzJiLWQ4M2VkMTQwZDI4ZC8x
L0FSX09NUlJhejJQWm9wTE55alFESGIwRTFlZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjgv
NDg5MmE5LTNiMzctNGQzOS05YzJiLWQ4M2VkMTQwZDI4ZC8xL1FYUHV1TkF2WDJS
NGl6X2NlTmE2dUtWZjBXby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBq
BggrBgEFBQcBBwEB/wRbMFkwSAQCAAEwQgMEAwVlmAMEAB+BYAMEBD5xYAMEA1HI
cAMEA1fsEAMEA1tqyAMEArkTzAMEArkyGAMEArlOHAMEArnhIAMEAtmsGDANBAIA
AjAHAwUDKgS6wDANBgkqhkiG9w0BAQsFAAOCAQEASkjQT9TNAT14QZ9Ykw7WMCmk
MaNUZvgKDmfzEMF0L7StXMBzHbcW90xCXIGah69JiU7FDfOoyiIlg00ONxdQkCnC
Rx+QaLE/OxLyfbqDPiFDKEiVibsYbM6Rk8IvCFG2Er8O+sDVeOJvH62rqLwiAGb1
PboqNK7BBPFGzSWL4Hd9cgYv6xAO7Qw+2YElbgUYNaf2QLGrMbzOmUa7/xx9/xZL
jzbpl36U7Bc8uEDkf5qB4TUbaS7NS77EKbzOzQaPLjUoTxNtY19Yvpdebs1W+j5b
YOlZmQIVu9nHppI2CuC4pwsAB/AulzLSKonLcWh3TAZPz/Hixyy06k+TMT7ZIw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:30 2025 by rpki-client