Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/LN8f3Wx8BWDFbcrwreWawsUdyec.roa
File: LN8f3Wx8BWDFbcrwreWawsUdyec.roa (raw, json)
Hash identifier: yW3w+pVc6g3DQoAaEe7CezXRXAgGYG3V7cBH6wJJ130=
Subject key identifier: 2C:DF:1F:DD:6C:7C:05:60:C5:6D:CA:F0:AD:E5:9A:C2:C5:1D:C9:E7
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018A5A07F1EB46ABB8A33AAC521FDAD45E08
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/LN8f3Wx8BWDFbcrwreWawsUdyec.roa
Signing time: Sun 03 Sep 2023 07:53:04 +0000
ROA not before: Sun 03 Sep 2023 07:53:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44709
IP address blocks: 91.228.126.0/23 maxlen: 23
194.36.91.0/24 maxlen: 24
194.36.90.0/24 maxlen: 24
194.36.89.0/24 maxlen: 24
195.238.120.0/24 maxlen: 24
5.100.250.0/23 maxlen: 23
5.100.251.0/24 maxlen: 24
5.100.250.0/24 maxlen: 24
5.100.252.0/23 maxlen: 23
5.100.253.0/24 maxlen: 24
5.100.252.0/24 maxlen: 24
5.100.249.0/24 maxlen: 24
5.100.248.0/23 maxlen: 23
5.100.248.0/24 maxlen: 24
212.80.204.0/24 maxlen: 24
212.80.206.0/24 maxlen: 24
212.80.205.0/24 maxlen: 24
5.100.254.0/23 maxlen: 23
5.100.254.0/24 maxlen: 24
5.100.255.0/24 maxlen: 24
212.80.207.0/24 maxlen: 24
188.191.147.0/24 maxlen: 24
31.133.103.0/24 maxlen: 24
31.133.102.0/24 maxlen: 24
31.133.100.0/24 maxlen: 24
195.28.181.0/24 maxlen: 24
195.28.180.0/24 maxlen: 24
109.207.76.0/24 maxlen: 24
185.241.4.0/24 maxlen: 24
109.207.79.0/24 maxlen: 24
185.241.7.0/24 maxlen: 24
185.241.6.0/24 maxlen: 24
185.241.5.0/24 maxlen: 24
185.220.207.0/24 maxlen: 24
45.83.40.0/24 maxlen: 24
45.83.43.0/24 maxlen: 24
45.83.42.0/24 maxlen: 24
185.56.72.0/22 maxlen: 22
45.93.95.0/24 maxlen: 24
45.93.92.0/24 maxlen: 24
45.93.94.0/24 maxlen: 24
45.93.93.0/24 maxlen: 24
81.28.7.0/24 maxlen: 24
91.223.106.0/24 maxlen: 24
63.250.63.0/24 maxlen: 24
63.250.61.0/24 maxlen: 24
63.250.62.0/24 maxlen: 24
185.28.152.0/24 maxlen: 24
185.28.154.0/24 maxlen: 24
185.28.153.0/24 maxlen: 24
185.28.155.0/24 maxlen: 24
83.229.71.0/24 maxlen: 24
83.229.70.0/24 maxlen: 24
83.229.74.0/24 maxlen: 24
83.229.73.0/24 maxlen: 24
83.229.72.0/24 maxlen: 24
103.13.209.0/24 maxlen: 24
185.253.75.0/24 maxlen: 24
185.253.73.0/24 maxlen: 24
185.253.72.0/24 maxlen: 24
185.162.125.0/24 maxlen: 24
185.162.124.0/24 maxlen: 24
185.162.126.0/24 maxlen: 24
185.47.175.0/24 maxlen: 24
91.202.171.0/24 maxlen: 24
91.202.168.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
91.202.169.0/24 maxlen: 24
91.226.76.0/24 maxlen: 24
91.226.72.0/24 maxlen: 24
2a06:c5c0:700::/48 maxlen: 48
2a06:c5c0:900::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5a:07:f1:eb:46:ab:b8:a3:3a:ac:52:1f:da:d4:5e:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Sep 3 07:53:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2cdf1fdd6c7c0560c56dcaf0ade59ac2c51dc9e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ed:f5:fb:06:46:5f:1a:cb:59:e4:b5:75:f4:
85:17:62:05:6a:9a:f9:26:6f:90:ce:16:6f:7f:e3:
ac:9e:da:31:1a:e9:ab:d4:8c:b1:05:49:19:ce:84:
1d:6c:21:a2:bc:71:3e:fe:c0:f9:29:94:7c:58:e6:
54:83:06:42:37:50:1b:f4:f4:f3:12:d5:01:fb:9c:
3c:90:61:91:10:50:45:2e:c9:29:e4:1f:cc:f1:16:
08:e1:fd:cf:09:fb:87:65:8f:85:4c:16:90:a2:e3:
fa:36:b6:48:d8:ed:6c:35:90:8b:56:cd:15:6c:6a:
de:a6:42:6b:99:b0:ce:dd:ae:90:41:ab:24:50:34:
a7:6d:44:7e:86:da:ee:af:07:c6:eb:00:05:a0:5e:
05:33:2a:e2:87:95:0e:29:ae:48:5d:22:e1:81:63:
28:84:14:8c:40:f8:bd:96:ce:cc:d2:62:5d:6b:d6:
a0:24:64:83:ba:2d:fa:90:d9:68:06:5e:25:b3:90:
2f:d0:e7:b6:52:78:0d:8d:4c:33:8d:da:a4:df:ca:
3d:23:7f:c1:2d:26:a9:12:08:0b:75:35:f0:c3:3f:
57:3a:73:38:37:0e:a3:7c:78:54:47:28:45:ce:6f:
71:c4:f8:0c:a7:99:e9:43:07:2c:16:c2:87:4d:e1:
24:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:DF:1F:DD:6C:7C:05:60:C5:6D:CA:F0:AD:E5:9A:C2:C5:1D:C9:E7
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/LN8f3Wx8BWDFbcrwreWawsUdyec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.248.0/21
31.133.100.0/24
31.133.102.0/23
45.83.40.0/24
45.83.42.0/23
45.93.92.0/22
63.250.61.0-63.250.63.255
81.28.7.0/24
83.229.70.0-83.229.74.255
91.202.168.0/22
91.223.106.0/24
91.226.72.0/24
91.226.76.0/24
91.228.126.0/23
103.13.209.0/24
109.207.76.0/24
109.207.79.0/24
185.28.152.0/22
185.47.175.0/24
185.56.72.0/22
185.162.124.0-185.162.126.255
185.220.207.0/24
185.241.4.0/22
185.253.72.0/23
185.253.75.0/24
188.191.147.0/24
194.36.89.0-194.36.91.255
195.28.180.0/23
195.238.120.0/24
212.80.204.0/22
IPv6:
2a06:c5c0:700::/48
2a06:c5c0:900::/48
Signature Algorithm: sha256WithRSAEncryption
a5:86:05:3c:fb:8a:98:6e:ae:7e:83:e6:7d:62:87:d6:22:46:
70:e7:0e:8b:e7:0e:64:fa:09:49:cd:f3:c5:c0:5e:bf:1b:0c:
b2:9c:f6:b7:7a:ea:9a:db:8c:ee:e8:7a:28:fb:fa:10:a1:cd:
99:91:63:61:fe:aa:a6:30:ba:ce:87:6c:61:77:f4:ef:5d:b4:
28:24:24:30:54:2a:17:18:74:41:3f:00:71:0f:6d:80:6f:b6:
f7:63:80:ff:5d:01:59:ff:0e:a0:4b:4a:d9:5f:ab:0b:a6:08:
c9:29:fe:6b:85:37:f5:ff:97:b3:ed:c1:42:75:57:e3:06:35:
9e:74:59:19:94:fa:1f:08:69:11:aa:f6:cd:a4:30:96:41:1e:
e0:e3:69:9b:ec:ec:ba:8d:5b:c6:92:a7:59:51:19:7c:0c:e3:
8e:be:2d:bd:56:27:9f:6a:f0:82:8c:e5:71:f7:04:c5:e2:5e:
37:4b:49:24:ef:a5:be:c4:b4:c2:54:2e:06:7e:93:bf:46:ac:
40:26:4a:10:91:b2:b1:b7:9a:25:3c:19:d8:97:b9:d9:5c:16:
1b:a4:e9:58:89:ce:a3:5e:01:f0:fa:84:e1:c9:7d:3a:49:08:
eb:1f:ba:50:c7:f4:df:ab:84:e9:1e:b0:38:ad:8c:41:f9:a5:
18:e9:61:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:16 2025 by rpki-client