Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Fg-wC7kOKc_UYvVcz1qjAdWQuyM.roa
File: Fg-wC7kOKc_UYvVcz1qjAdWQuyM.roa (raw, json)
Hash identifier: sfVw73NCDgENS31jUcNsDO690J/H29DnQnb6oOiLyiQ=
Subject key identifier: 16:0F:B0:0B:B9:0E:29:CF:D4:62:F5:5C:CF:5A:A3:01:D5:90:BB:23
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018C1AA135FB21427C421D4DAAD9ADC5BEA1
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Fg-wC7kOKc_UYvVcz1qjAdWQuyM.roa
Signing time: Wed 29 Nov 2023 10:30:21 +0000
ROA not before: Wed 29 Nov 2023 10:30:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.227.146.0/23 maxlen: 24
185.220.249.0/24 maxlen: 24
185.220.250.0/23 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.223.78.0/24 maxlen: 24
185.108.204.0/23 maxlen: 24
185.225.0.0/23 maxlen: 23
185.222.30.0/23 maxlen: 24
185.206.250.0/24 maxlen: 24
45.90.16.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
45.8.23.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1a:a1:35:fb:21:42:7c:42:1d:4d:aa:d9:ad:c5:be:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Nov 29 10:30:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=160fb00bb90e29cfd462f55ccf5aa301d590bb23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:69:be:36:c1:97:e8:0f:11:66:f4:72:28:1b:
03:9d:08:0b:65:43:a5:42:93:0f:26:40:78:9e:9f:
44:71:bd:39:d9:5e:23:ee:6c:4b:90:4d:f7:7b:b1:
ff:87:59:5e:6b:4e:5c:5c:d3:cd:ac:da:83:a9:bb:
11:31:ea:1b:ee:1c:cd:75:96:90:52:8e:7d:2c:57:
38:e3:78:6a:6f:08:61:90:d8:73:3a:78:96:d8:a3:
66:93:e9:a9:2d:b8:25:e8:6f:05:72:43:b8:cb:7f:
70:b7:dc:f3:bd:7f:7e:3e:fb:df:5d:1b:43:b0:26:
a9:71:8b:5c:55:67:25:18:04:82:66:89:ca:d5:0b:
6a:dd:1e:75:68:7e:75:c1:2c:07:e4:4b:43:93:e8:
0a:72:81:24:9b:ec:45:33:ee:82:20:3d:dc:74:82:
70:68:a8:54:d5:2d:30:3b:6e:4c:a1:40:30:71:d9:
57:e5:0b:b3:bd:b6:21:fa:b0:aa:4a:d7:fd:3d:b3:
fc:3a:14:d3:dc:b5:81:c8:07:83:f8:13:cb:77:44:
3c:27:7c:61:c0:dc:0d:68:37:04:61:5b:7a:ba:25:
27:e6:fe:6d:7c:37:57:75:0c:6e:81:6c:1c:20:1a:
be:03:f9:3e:7c:9f:70:28:f5:28:85:96:e6:f6:1e:
10:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:0F:B0:0B:B9:0E:29:CF:D4:62:F5:5C:CF:5A:A3:01:D5:90:BB:23
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Fg-wC7kOKc_UYvVcz1qjAdWQuyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.8.23.0/24
45.90.16.0/24
45.147.224.0/24
185.108.204.0/23
185.206.250.0/24
185.220.249.0-185.220.251.255
185.222.30.0/23
185.223.78.0/24
185.225.0.0/23
185.227.146.0/23
185.251.229.0/24
185.251.231.0/24
193.58.146.0/23
Signature Algorithm: sha256WithRSAEncryption
40:ec:2f:67:3a:6b:63:0e:b2:49:5b:f4:e7:83:20:72:84:52:
0f:61:94:36:50:f0:c8:1c:df:3b:c5:94:2d:17:64:4b:6f:6b:
5d:3b:c6:75:b4:75:e3:33:cb:1b:e6:3e:34:55:37:00:9e:d9:
20:e2:a0:e5:5d:12:4b:93:85:a6:d9:50:37:d9:dd:0e:95:2a:
10:3e:9c:1c:29:9d:90:ad:20:ef:00:22:ff:bc:2f:70:92:85:
16:ba:f4:a7:ee:34:8f:eb:0d:73:7b:1f:45:7a:66:1c:ef:b0:
ed:03:51:6a:07:b5:f7:dc:5b:7c:83:e4:a9:e4:23:72:7d:71:
15:7c:c7:7c:73:08:35:25:cd:0d:a7:5f:f7:54:57:4b:f5:89:
66:ae:22:ef:52:d2:41:80:d2:94:02:5e:7f:7c:43:34:3b:6e:
a4:ed:0d:c6:bc:5a:be:e1:59:df:04:d3:ba:a8:a4:f6:b8:4e:
28:07:a0:41:18:b0:40:37:2c:ff:36:e2:83:fc:8c:2d:27:78:
f6:4b:bd:e7:85:87:15:21:02:8e:c8:19:da:88:9e:6e:23:8d:
ac:60:c8:9e:aa:34:28:14:c2:8a:57:05:9f:be:ee:03:ce:84:
11:b1:59:68:e7:95:3c:84:d2:ce:42:26:f7:33:cf:87:72:34:
7d:84:0d:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 02:50:28 2025 by rpki-client