Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/6jfMDk0Ise0_XFrvpTyHYK4xjok.roa
File: 6jfMDk0Ise0_XFrvpTyHYK4xjok.roa (raw, json)
Hash identifier: Ou/6lQD1HOwGuhKROBC5bGYSZ3d9ZhcgkYAsKdzDhrw=
Subject key identifier: EA:37:CC:0E:4D:08:B1:ED:3F:5C:5A:EF:A5:3C:87:60:AE:31:8E:89
Certificate issuer: /CN=9f26ac9eeb3a2cfa2f6ca3f413efb9cdffe9724e
Certificate serial: 0186CBAB193DD1F1795034600225076CA7D1
Authority key identifier: 9F:26:AC:9E:EB:3A:2C:FA:2F:6C:A3:F4:13:EF:B9:CD:FF:E9:72:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyasnus6LPovbKP0E--5zf_pck4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/6jfMDk0Ise0_XFrvpTyHYK4xjok.roa
Signing time: Fri 10 Mar 2023 13:17:13 +0000
ROA not before: Fri 10 Mar 2023 13:17:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43915
IP address blocks: 87.117.68.0/23 maxlen: 23
194.105.134.0/23 maxlen: 24
194.145.242.0/23 maxlen: 24
195.206.172.0/22 maxlen: 24
185.147.184.0/22 maxlen: 22
217.14.184.0/21 maxlen: 21
109.224.226.0/23 maxlen: 24
178.248.128.0/21 maxlen: 21
109.224.234.0/23 maxlen: 24
109.224.240.0/23 maxlen: 24
147.189.156.0/22 maxlen: 24
185.161.4.0/22 maxlen: 22
87.117.64.0/22 maxlen: 22
144.178.104.0/23 maxlen: 23
144.178.118.0/23 maxlen: 23
94.154.184.0/22 maxlen: 22
193.35.146.0/23 maxlen: 23
176.116.116.0/22 maxlen: 22
91.239.57.0/24 maxlen: 24
194.146.160.0/22 maxlen: 24
213.225.224.0/22 maxlen: 24
217.20.244.0/22 maxlen: 24
79.135.122.0/23 maxlen: 24
185.231.136.0/21 maxlen: 21
185.23.254.0/23 maxlen: 24
45.66.36.0/22 maxlen: 22
144.178.252.0/23 maxlen: 23
2a07:5940::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cb:ab:19:3d:d1:f1:79:50:34:60:02:25:07:6c:a7:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f26ac9eeb3a2cfa2f6ca3f413efb9cdffe9724e
Validity
Not Before: Mar 10 13:17:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea37cc0e4d08b1ed3f5c5aefa53c8760ae318e89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d7:8a:1b:e7:df:87:a8:97:c4:5c:b8:10:67:
d0:14:17:39:13:f2:80:92:46:c5:28:8b:f0:1d:76:
9e:91:d8:f6:e0:00:70:c0:d1:f3:56:a2:b0:b9:5c:
01:fa:4a:4b:21:c2:1f:06:84:e8:cf:c2:4d:0d:f8:
2b:7d:f9:cb:fe:86:37:a4:1e:b1:d0:8d:36:d4:04:
dd:ac:70:7d:67:6d:9a:74:b8:5c:dc:25:ed:25:28:
a8:21:b6:02:b6:c5:24:4d:ae:a1:54:a9:32:94:e1:
10:4d:92:0a:80:0d:bb:e4:59:b9:63:7e:1c:c4:33:
96:35:81:66:98:17:b0:6c:16:50:33:34:9e:90:60:
71:83:5f:32:c1:d0:61:9d:81:22:55:30:d2:0f:ed:
1d:95:4e:69:b2:fe:a2:fc:58:c1:40:5b:7e:4a:d4:
06:f2:08:e8:db:96:bf:87:8a:25:e5:b3:3f:f1:2d:
17:19:1f:b3:9c:5e:5c:59:ab:91:10:1f:e8:d4:f1:
bf:6d:5d:96:8e:b6:63:39:33:6c:f6:95:6e:7d:03:
ba:ff:83:ad:67:28:1e:73:a1:b8:10:50:35:b5:99:
99:ed:69:f8:b6:14:61:bd:f8:35:56:30:2d:19:a1:
87:1b:71:7c:c6:8b:6a:af:8f:64:dd:2b:93:79:77:
31:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:37:CC:0E:4D:08:B1:ED:3F:5C:5A:EF:A5:3C:87:60:AE:31:8E:89
X509v3 Authority Key Identifier:
keyid:9F:26:AC:9E:EB:3A:2C:FA:2F:6C:A3:F4:13:EF:B9:CD:FF:E9:72:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyasnus6LPovbKP0E--5zf_pck4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/6jfMDk0Ise0_XFrvpTyHYK4xjok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/nyasnus6LPovbKP0E--5zf_pck4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.36.0/22
79.135.122.0/23
87.117.64.0-87.117.69.255
91.239.57.0/24
94.154.184.0/22
109.224.226.0/23
109.224.234.0/23
109.224.240.0/23
144.178.104.0/23
144.178.118.0/23
144.178.252.0/23
147.189.156.0/22
176.116.116.0/22
178.248.128.0/21
185.23.254.0/23
185.147.184.0/22
185.161.4.0/22
185.231.136.0/21
193.35.146.0/23
194.105.134.0/23
194.145.242.0/23
194.146.160.0/22
195.206.172.0/22
213.225.224.0/22
217.14.184.0/21
217.20.244.0/22
IPv6:
2a07:5940::/32
Signature Algorithm: sha256WithRSAEncryption
7f:1a:b7:48:6c:a7:3f:f0:3e:eb:6e:0b:63:89:5a:c8:1d:12:
d5:01:a7:16:41:08:d5:15:3f:25:9a:b2:81:af:1d:b2:f4:32:
fd:1b:e1:7f:66:de:16:6c:7b:86:63:1f:32:7a:7a:9a:c0:1b:
7d:02:97:61:fb:f0:36:b0:59:80:f7:1a:75:aa:c6:42:47:39:
1f:4d:8e:f1:e1:e2:d8:83:99:00:b0:12:32:d9:4f:74:ff:d7:
07:ae:dc:65:f4:d0:8f:68:55:be:43:48:80:96:b3:1a:e6:2b:
3d:a4:d5:ff:90:06:60:43:72:ed:4a:65:94:0a:f2:f4:63:7f:
f1:e3:c3:08:4e:58:0c:1b:3f:5a:af:2a:d1:03:29:bc:ab:f4:
87:3c:9f:22:aa:f8:09:32:19:2f:de:1e:5b:68:67:b6:ea:f5:
20:9d:bf:e1:b7:3f:39:43:dd:b7:1f:b3:b1:55:04:8a:a0:83:
de:64:6a:8b:ca:fe:1e:f1:9b:d6:26:74:1c:2d:54:56:6c:5b:
c8:58:d1:1c:66:06:5e:97:cc:b2:9f:25:c8:f8:ad:44:bc:4a:
7f:18:65:69:13:43:61:97:62:8d:bf:86:95:4e:b0:e6:71:8e:
fc:df:33:ab:93:11:86:9c:ad:1e:d3:6d:c2:ad:39:ad:eb:e0:
33:5d:ca:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:31:03 2025 by rpki-client