Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/Di4Nn5n4nhiiOLNzKiCT-EWwZuo.roa
File: Di4Nn5n4nhiiOLNzKiCT-EWwZuo.roa (raw, json)
Hash identifier: TX8WFy4OVPatulEhZVvH4nrZTHJj3MwoI9sBUtWRrmM=
Subject key identifier: 0E:2E:0D:9F:99:F8:9E:18:A2:38:B3:73:2A:20:93:F8:45:B0:66:EA
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018C69E3CE9A785BCD293C00DEF42CCE70CD
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/Di4Nn5n4nhiiOLNzKiCT-EWwZuo.roa
Signing time: Thu 14 Dec 2023 19:53:06 +0000
ROA not before: Thu 14 Dec 2023 19:53:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209737
IP address blocks: 5.180.107.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
5.180.104.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
45.147.47.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.229.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
45.136.5.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.3.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:69:e3:ce:9a:78:5b:cd:29:3c:00:de:f4:2c:ce:70:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Dec 14 19:53:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e2e0d9f99f89e18a238b3732a2093f845b066ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ab:e9:6b:ef:bd:54:f1:09:65:26:ba:7e:38:
a7:24:fa:c2:e4:e7:37:13:a2:37:26:aa:d4:5f:7c:
1a:1c:38:3f:fa:67:b5:51:6a:23:38:ce:83:f7:5a:
a2:f4:86:bf:eb:51:9b:f8:c3:75:20:bc:a7:98:d6:
9c:32:bc:c9:57:57:39:c6:28:98:cf:21:6c:72:35:
3f:43:39:f9:27:99:03:44:38:b9:a3:63:c3:13:8d:
a9:79:06:3e:5e:81:c7:7a:54:cf:1b:cd:57:ca:12:
0c:eb:22:de:80:d2:cf:6b:9e:11:68:8a:25:d7:e4:
60:b5:56:f1:78:85:5f:c8:70:d0:4f:21:0f:ab:b7:
45:ae:3e:49:5d:11:6c:a7:4a:06:b6:cb:a7:36:db:
b1:3a:74:8c:df:da:fc:2a:f9:eb:6b:37:5b:34:01:
9a:8b:f9:cd:c0:44:0a:b4:c1:88:d5:85:90:a4:9b:
9f:b0:20:b3:c8:47:1c:1c:57:63:b6:bf:f8:fb:ce:
e2:ed:51:78:5b:9b:72:3a:68:15:e0:e9:61:ad:6d:
66:c8:1c:7c:91:b9:ec:7d:9e:2b:68:8d:5b:ac:c8:
2f:65:b3:66:05:d8:eb:5e:0c:d3:7b:25:46:6f:91:
fe:0d:68:07:14:2b:fa:17:13:9b:b5:2a:c5:24:f1:
a4:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:2E:0D:9F:99:F8:9E:18:A2:38:B3:73:2A:20:93:F8:45:B0:66:EA
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/Di4Nn5n4nhiiOLNzKiCT-EWwZuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.104.0/24
5.180.107.0/24
45.131.0.0/23
45.131.3.0/24
45.136.5.0/24
45.141.148.0/24
45.147.44.0/24
45.147.47.0/24
77.83.200.0/22
194.116.228.0/23
194.116.236.0/24
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a09:8780::/29
Signature Algorithm: sha256WithRSAEncryption
5c:75:70:fe:89:fa:c8:07:4f:f3:fb:15:b5:f9:ab:d8:9c:63:
10:6f:4f:43:75:bf:e5:de:48:db:4c:31:66:c0:d7:8a:cf:89:
bb:c2:e8:7e:88:92:c2:80:54:c4:ad:bf:56:98:3a:c2:1f:ed:
7f:09:f8:41:c2:12:ed:90:5b:e3:4d:92:08:6b:8d:37:a9:c3:
56:47:7b:23:50:c0:3f:76:df:5a:69:43:0b:45:e3:35:54:ed:
d8:db:10:a5:8b:b1:4d:54:01:92:f5:ad:86:70:52:a3:c7:b2:
26:6f:bb:2c:0a:94:70:b6:16:a3:c3:f2:4e:8e:00:31:a8:76:
9c:38:14:34:db:6c:17:3a:ed:aa:43:b1:85:f0:7a:95:b5:c4:
d0:c4:c0:47:7d:22:65:d7:47:bd:22:54:aa:e8:c4:11:01:96:
02:54:67:43:3d:31:a7:6e:7e:fd:54:e0:72:b2:b2:61:44:3e:
c1:94:0b:33:28:e1:4f:ab:fc:7a:c4:49:97:5c:c4:04:ed:31:
bc:15:c9:07:f4:e9:ef:58:8a:f0:8d:17:e6:09:c4:f0:eb:e8:
f7:8d:9c:fc:f7:02:e8:0b:d8:f6:e3:6a:60:bd:60:18:ba:1f:
16:54:80:80:bf:7b:7f:ad:9d:e9:58:df:fc:19:4f:bd:c5:af:
4a:dc:54:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:46:15 2025 by rpki-client