Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/oOmi9NK1QJO79I9uFDVuQ9x-nto.roa
File: oOmi9NK1QJO79I9uFDVuQ9x-nto.roa (raw, json)
Hash identifier: 2GdfVn2lMESi9GgW8Bw9iTKx3i4rVQbTCz7adPgvJSs=
Subject key identifier: A0:E9:A2:F4:D2:B5:40:93:BB:F4:8F:6E:14:35:6E:43:DC:7E:9E:DA
Certificate issuer: /CN=4173eeb8d02f5f64788b3fdc78d6bab8a55fd16a
Certificate serial: 01856C1C8FAD3B2873E2CCA2B225D8E6F9BD
Authority key identifier: 41:73:EE:B8:D0:2F:5F:64:78:8B:3F:DC:78:D6:BA:B8:A5:5F:D1:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/oOmi9NK1QJO79I9uFDVuQ9x-nto.roa
Signing time: Sun 01 Jan 2023 06:54:49 +0000
ROA not before: Sun 01 Jan 2023 06:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198610
IP address blocks: 45.80.68.0/24 maxlen: 24
45.80.69.0/24 maxlen: 24
45.80.70.0/24 maxlen: 24
45.80.71.0/24 maxlen: 24
45.147.176.0/24 maxlen: 24
45.147.177.0/24 maxlen: 24
45.147.178.0/24 maxlen: 24
45.147.179.0/24 maxlen: 24
5.181.109.0/24 maxlen: 24
5.181.110.0/24 maxlen: 24
5.181.111.0/24 maxlen: 24
5.181.108.0/24 maxlen: 24
45.141.77.0/24 maxlen: 24
45.141.78.0/24 maxlen: 24
45.141.76.0/24 maxlen: 24
45.67.57.0/24 maxlen: 24
45.67.58.0/24 maxlen: 24
45.141.79.0/24 maxlen: 24
45.67.56.0/24 maxlen: 24
45.67.59.0/24 maxlen: 24
185.19.204.0/24 maxlen: 24
185.19.205.0/24 maxlen: 24
185.19.206.0/24 maxlen: 24
185.19.207.0/24 maxlen: 24
193.168.46.0/24 maxlen: 24
193.168.47.0/24 maxlen: 24
193.168.48.0/24 maxlen: 24
45.12.16.0/24 maxlen: 24
45.12.17.0/24 maxlen: 24
45.12.18.0/24 maxlen: 24
45.12.19.0/24 maxlen: 24
95.214.61.0/24 maxlen: 24
95.214.62.0/24 maxlen: 24
95.214.63.0/24 maxlen: 24
95.214.60.0/24 maxlen: 24
81.200.112.0/24 maxlen: 24
81.200.113.0/24 maxlen: 24
213.139.208.0/24 maxlen: 24
81.200.114.0/24 maxlen: 24
213.139.209.0/24 maxlen: 24
81.200.115.0/24 maxlen: 24
81.200.116.0/24 maxlen: 24
81.200.118.0/24 maxlen: 24
213.139.210.0/24 maxlen: 24
213.139.211.0/24 maxlen: 24
81.200.117.0/24 maxlen: 24
81.200.119.0/24 maxlen: 24
91.106.206.0/24 maxlen: 24
91.106.200.0/21 maxlen: 21
91.106.200.0/24 maxlen: 24
91.106.201.0/24 maxlen: 24
91.106.202.0/24 maxlen: 24
91.106.203.0/24 maxlen: 24
91.106.204.0/24 maxlen: 24
91.106.205.0/24 maxlen: 24
91.106.207.0/24 maxlen: 24
62.113.97.0/24 maxlen: 24
62.113.98.0/24 maxlen: 24
62.113.96.0/24 maxlen: 24
62.113.104.0/24 maxlen: 24
62.113.105.0/24 maxlen: 24
62.113.99.0/24 maxlen: 24
62.113.100.0/24 maxlen: 24
62.113.101.0/24 maxlen: 24
62.113.102.0/24 maxlen: 24
62.113.103.0/24 maxlen: 24
62.113.110.0/24 maxlen: 24
62.113.111.0/24 maxlen: 24
62.113.106.0/24 maxlen: 24
62.113.107.0/24 maxlen: 24
62.113.108.0/24 maxlen: 24
62.113.109.0/24 maxlen: 24
193.200.72.0/24 maxlen: 24
193.200.73.0/24 maxlen: 24
193.200.74.0/24 maxlen: 24
193.200.75.0/24 maxlen: 24
217.172.24.0/24 maxlen: 24
217.172.27.0/24 maxlen: 24
217.172.25.0/24 maxlen: 24
217.172.26.0/24 maxlen: 24
185.78.30.0/24 maxlen: 24
185.78.28.0/22 maxlen: 22
185.78.31.0/24 maxlen: 24
185.78.28.0/24 maxlen: 24
185.78.29.0/24 maxlen: 24
45.84.224.0/24 maxlen: 24
45.84.225.0/24 maxlen: 24
45.84.226.0/24 maxlen: 24
45.84.227.0/24 maxlen: 24
185.225.34.0/24 maxlen: 24
185.225.35.0/24 maxlen: 24
185.225.32.0/24 maxlen: 24
185.225.33.0/24 maxlen: 24
185.50.24.0/24 maxlen: 24
185.50.24.0/22 maxlen: 22
45.90.32.0/24 maxlen: 24
45.90.33.0/24 maxlen: 24
45.90.34.0/24 maxlen: 24
45.90.35.0/24 maxlen: 24
5.101.153.244/32 maxlen: 32
87.236.17.122/32 maxlen: 32
5.101.153.242/32 maxlen: 32
185.50.25.0/24 maxlen: 24
185.50.26.0/24 maxlen: 24
185.50.27.0/24 maxlen: 24
45.130.42.0/24 maxlen: 24
45.130.43.0/24 maxlen: 24
45.130.40.0/24 maxlen: 24
45.130.41.0/24 maxlen: 24
193.176.76.0/24 maxlen: 24
193.176.77.0/24 maxlen: 24
193.176.78.0/24 maxlen: 24
193.176.79.0/24 maxlen: 24
5.101.154.191/32 maxlen: 32
31.129.98.0/24 maxlen: 24
31.129.96.0/24 maxlen: 24
87.236.16.0/24 maxlen: 24
87.236.17.0/24 maxlen: 24
87.236.16.0/21 maxlen: 21
87.236.21.0/24 maxlen: 24
87.236.22.0/24 maxlen: 24
87.236.23.0/24 maxlen: 24
87.236.18.0/24 maxlen: 24
87.236.19.0/24 maxlen: 24
87.236.20.0/24 maxlen: 24
185.155.118.0/24 maxlen: 24
5.101.152.0/24 maxlen: 24
5.101.152.0/21 maxlen: 21
5.101.153.0/24 maxlen: 24
5.101.154.0/24 maxlen: 24
5.101.155.0/24 maxlen: 24
5.101.156.0/24 maxlen: 24
5.101.157.0/24 maxlen: 24
5.101.158.0/24 maxlen: 24
5.101.159.0/24 maxlen: 24
2a04:bac0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:1c:8f:ad:3b:28:73:e2:cc:a2:b2:25:d8:e6:f9:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4173eeb8d02f5f64788b3fdc78d6bab8a55fd16a
Validity
Not Before: Jan 1 06:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0e9a2f4d2b54093bbf48f6e14356e43dc7e9eda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0a:6a:69:02:00:2e:a6:69:3d:1d:df:ae:7e:
c6:00:83:4a:15:c7:29:42:87:19:01:2f:68:82:ba:
b6:6d:0b:89:71:02:fb:3b:69:1c:5a:63:f9:4b:35:
57:67:68:66:62:f4:0c:58:fc:f8:1a:6d:57:24:f5:
ec:83:17:a3:6e:d7:3f:59:a8:77:0e:65:64:e9:24:
9f:b6:40:f4:bf:0c:f3:48:41:a0:6a:c9:59:4e:02:
ab:51:6a:0f:f1:4f:5f:5d:ae:bb:76:e9:cf:09:aa:
d8:e7:e5:70:de:26:dd:b4:af:5c:dc:75:3f:b7:5b:
1b:10:bb:6b:dc:4d:b4:8a:cd:77:c0:be:ce:da:34:
42:fe:5b:5f:9c:4e:0f:37:1a:b1:05:b2:77:89:bf:
a0:95:cb:91:e3:f7:59:0f:7d:cf:17:9c:f3:c0:79:
84:1d:bf:6b:32:b8:58:91:ab:e7:87:9d:96:a2:61:
c7:bf:17:f7:cb:0c:56:79:95:d0:9f:72:2b:d0:10:
11:ed:9d:f2:ef:12:94:0c:93:f4:0b:61:23:8f:58:
d0:0c:e2:8b:42:28:74:f2:6f:21:95:07:56:2f:5f:
70:fc:eb:f7:93:c0:d3:a3:77:1c:c7:0e:53:81:5d:
23:05:74:41:e3:4b:3a:7f:0f:7b:44:74:ae:b5:3b:
ea:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E9:A2:F4:D2:B5:40:93:BB:F4:8F:6E:14:35:6E:43:DC:7E:9E:DA
X509v3 Authority Key Identifier:
keyid:41:73:EE:B8:D0:2F:5F:64:78:8B:3F:DC:78:D6:BA:B8:A5:5F:D1:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/oOmi9NK1QJO79I9uFDVuQ9x-nto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.101.152.0/21
5.181.108.0/22
31.129.96.0/24
31.129.98.0/24
45.12.16.0/22
45.67.56.0/22
45.80.68.0/22
45.84.224.0/22
45.90.32.0/22
45.130.40.0/22
45.141.76.0/22
45.147.176.0/22
62.113.96.0/20
81.200.112.0/21
87.236.16.0/21
91.106.200.0/21
95.214.60.0/22
185.19.204.0/22
185.50.24.0/22
185.78.28.0/22
185.155.118.0/24
185.225.32.0/22
193.168.46.0-193.168.48.255
193.176.76.0/22
193.200.72.0/22
213.139.208.0/22
217.172.24.0/22
IPv6:
2a04:bac0::/29
Signature Algorithm: sha256WithRSAEncryption
02:47:cf:93:d2:67:72:95:33:7e:f5:97:42:0e:62:cf:ef:f6:
10:9d:03:7c:4e:cd:17:91:39:e2:30:f7:73:aa:e2:ae:0c:45:
4a:a3:57:c9:d6:30:df:1a:ef:6e:ae:b4:6b:88:61:ae:19:5e:
5e:c7:c6:3f:3a:87:1e:fa:b3:79:4d:e0:88:29:b7:42:7f:42:
3d:e6:43:10:43:33:e9:6c:2d:b5:41:5c:12:b3:eb:5e:03:36:
8c:de:5b:f3:14:14:5b:11:f1:2e:ff:ab:6c:62:4d:49:13:4a:
6f:7f:91:72:57:42:eb:76:21:27:df:28:73:f1:a0:56:48:01:
55:70:01:fd:64:3f:8e:b1:65:a7:4f:6d:4a:f2:f8:93:db:98:
35:72:df:26:31:5e:f2:3c:25:2d:3f:f8:b4:d5:8b:40:23:17:
8a:46:d2:22:7d:b4:77:42:e5:24:e3:ef:1d:6b:8b:cd:f0:df:
c0:97:af:38:cf:9b:f6:a7:1f:7a:f7:80:a0:be:1c:f7:09:5e:
de:6a:8b:2c:a8:a0:f1:d3:ab:03:5c:a3:05:ea:63:5a:d7:39:
2d:bb:ef:b5:9d:09:42:eb:be:9b:f5:cd:64:d5:1a:8e:3e:97:
e7:f2:ec:a4:9e:50:b0:45:da:16:37:81:b5:29:b7:3e:78:03:
d2:ab:e3:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:05 2025 by rpki-client