Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/NoEUAZfDi2Oj6J5wW-oA1ia-zXo.roa
File: NoEUAZfDi2Oj6J5wW-oA1ia-zXo.roa (raw, json)
Hash identifier: JkoSLLSRzIsw3qiQ6fxthpyYimBWr6usTNB9XFwW4tA=
Subject key identifier: 36:81:14:01:97:C3:8B:63:A3:E8:9E:70:5B:EA:00:D6:26:BE:CD:7A
Certificate issuer: /CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Certificate serial: 0183A6B99D7DA54107E45BAB0638F342015C
Authority key identifier: F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/NoEUAZfDi2Oj6J5wW-oA1ia-zXo.roa
Signing time: Wed 05 Oct 2022 05:58:45 +0000
ROA not before: Wed 05 Oct 2022 05:58:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202468
IP address blocks: 37.152.176.0/20 maxlen: 24
37.152.184.0/24 maxlen: 24
185.206.92.0/22 maxlen: 22
185.231.180.0/22 maxlen: 22
185.228.238.0/24 maxlen: 24
185.228.239.0/24 maxlen: 24
185.228.236.0/24 maxlen: 24
185.228.236.0/22 maxlen: 22
185.228.237.0/24 maxlen: 24
185.97.116.0/22 maxlen: 22
188.121.120.0/21 maxlen: 24
185.239.104.0/24 maxlen: 24
185.239.105.0/24 maxlen: 24
185.220.224.0/24 maxlen: 24
185.220.224.0/22 maxlen: 22
185.220.225.0/24 maxlen: 24
185.220.226.0/24 maxlen: 24
185.239.106.0/23 maxlen: 23
185.220.227.0/24 maxlen: 24
37.32.8.0/22 maxlen: 22
37.32.12.0/22 maxlen: 22
37.32.24.0/22 maxlen: 22
193.176.240.0/22 maxlen: 24
37.32.20.0/22 maxlen: 22
37.32.28.0/22 maxlen: 24
193.176.242.0/23 maxlen: 23
188.121.96.0/19 maxlen: 24
188.121.104.0/22 maxlen: 22
188.121.108.0/22 maxlen: 22
94.101.176.0/20 maxlen: 24
94.101.184.0/21 maxlen: 24
94.101.180.0/23 maxlen: 23
94.101.180.0/24 maxlen: 24
94.101.182.0/24 maxlen: 24
185.143.232.0/22 maxlen: 24
185.226.116.0/22 maxlen: 22
2a0c:a7c0:1::/48 maxlen: 48
2a0c:a7c0:3::/48 maxlen: 48
2a0c:a7c0::/48 maxlen: 48
2a07:3900::/29 maxlen: 29
2a0c:a7c0:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a6:b9:9d:7d:a5:41:07:e4:5b:ab:06:38:f3:42:01:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Validity
Not Before: Oct 5 05:58:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3681140197c38b63a3e89e705bea00d626becd7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:0b:99:7f:8c:42:4d:74:bd:7b:b7:f1:96:08:
a6:fd:e3:49:f5:ef:72:b3:eb:2d:01:f2:82:f5:9a:
db:af:44:9c:2f:e4:e3:9d:22:c4:e5:26:f8:6e:4c:
0c:87:c7:1c:cd:75:68:5c:fd:a4:d0:64:eb:c5:d9:
8a:09:88:97:25:7c:1f:b7:23:96:95:9d:d9:f4:76:
31:89:07:8a:6d:5d:7f:b7:56:ea:06:f3:37:1a:34:
aa:73:60:3f:db:56:af:0e:a2:7b:40:1b:27:27:b0:
19:df:33:eb:2a:b0:1a:86:1a:61:6b:53:70:f1:92:
b1:8b:c2:14:0b:d7:9c:2c:1e:3d:6d:67:ae:ee:34:
8c:48:a4:36:b5:06:de:a8:b9:02:67:c8:ad:2b:21:
16:d6:21:be:a9:df:d8:50:44:e1:6e:47:11:20:45:
f9:52:c0:b3:8f:e0:4d:e7:70:6f:d1:23:c1:7f:b0:
a6:ca:b5:49:a6:1c:1e:8a:df:67:d9:d1:8a:2b:7b:
b8:79:46:2b:c0:24:5a:9e:e3:92:2c:2e:86:f3:bf:
62:38:53:0c:9f:bb:58:62:03:92:40:03:68:4a:11:
14:67:18:0d:5e:7d:96:b3:84:d5:8b:06:ac:6b:4f:
8f:bc:5c:fa:c2:86:fe:6c:41:22:a6:d8:a3:bc:c7:
be:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:81:14:01:97:C3:8B:63:A3:E8:9E:70:5B:EA:00:D6:26:BE:CD:7A
X509v3 Authority Key Identifier:
keyid:F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/NoEUAZfDi2Oj6J5wW-oA1ia-zXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/9cNx86NKvxlX0Yld-AY_TWIH7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.8.0/21
37.32.20.0-37.32.31.255
37.152.176.0/20
94.101.176.0/20
185.97.116.0/22
185.143.232.0/22
185.206.92.0/22
185.220.224.0/22
185.226.116.0/22
185.228.236.0/22
185.231.180.0/22
185.239.104.0/22
188.121.96.0/19
193.176.240.0/22
IPv6:
2a07:3900::/29
2a0c:a7c0::/46
Signature Algorithm: sha256WithRSAEncryption
a2:dd:d5:86:5a:d3:97:7f:be:eb:1c:05:3c:90:6a:59:d3:b4:
9e:f0:15:ec:09:44:f2:2b:70:4a:a3:39:29:c3:15:9a:98:dc:
0a:0f:05:e9:30:80:43:3f:11:80:65:9a:65:12:75:ae:a3:82:
0c:64:97:e6:03:c1:07:39:35:e5:ee:a7:db:4f:dc:ff:4c:92:
73:32:ff:38:25:3f:3b:2f:44:64:5d:27:fb:f7:23:7e:8f:90:
74:bc:8b:cf:bc:bd:48:53:cb:ad:fe:b5:2f:67:17:ad:59:cb:
c6:5f:82:25:eb:70:2c:99:cd:d8:2f:c1:62:e8:f3:a9:5c:36:
b9:1d:93:21:69:a5:39:46:d1:37:2c:e2:f4:11:25:20:2b:de:
bc:43:9d:2c:9a:da:dc:fa:d1:30:06:47:ac:e3:6d:c1:2b:1c:
f2:be:6b:61:86:36:75:0b:d5:5f:ac:44:27:80:9f:4d:f5:d0:
5f:84:b0:e6:8d:4c:c0:b0:de:b9:e3:e5:79:55:7e:f1:e8:7f:
30:1c:11:39:9d:46:64:71:e7:09:a4:16:aa:ab:1d:b0:ac:3b:
53:98:9f:24:f9:b6:e9:f0:f5:5e:67:f2:64:8c:71:9f:9f:e0:
23:8a:d2:53:dc:52:de:de:1e:df:54:bb:4c:6f:f0:8b:ea:d8:
73:90:87:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 22:45:46 2025 by rpki-client