Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/gWGVhXMEsqQbvDJ8wjYf_E_BQDg.roa
File: gWGVhXMEsqQbvDJ8wjYf_E_BQDg.roa (raw, json)
Hash identifier: w8g1PM9xsTrCaS/qzpnLxqM4OsQY4MKPjMWiNhJBPzM=
Subject key identifier: 81:61:95:85:73:04:B2:A4:1B:BC:32:7C:C2:36:1F:FC:4F:C1:40:38
Certificate issuer: /CN=7dc4acedcb86cddfed7f6de8cadfca00469bbc8e
Certificate serial: 018BC7B73F0345081DCF7D2D987D6B95D674
Authority key identifier: 7D:C4:AC:ED:CB:86:CD:DF:ED:7F:6D:E8:CA:DF:CA:00:46:9B:BC:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fcSs7cuGzd_tf23oyt_KAEabvI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/gWGVhXMEsqQbvDJ8wjYf_E_BQDg.roa
Signing time: Mon 13 Nov 2023 08:05:57 +0000
ROA not before: Mon 13 Nov 2023 08:05:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2116
IP address blocks: 85.252.0.0/16 maxlen: 16
194.29.200.0/22 maxlen: 22
37.191.128.0/17 maxlen: 17
213.160.224.0/20 maxlen: 20
213.160.240.0/21 maxlen: 21
31.185.24.0/21 maxlen: 21
81.175.0.0/20 maxlen: 20
178.74.0.0/18 maxlen: 18
81.175.24.0/21 maxlen: 21
81.175.20.0/22 maxlen: 22
213.151.128.0/19 maxlen: 19
81.175.32.0/19 maxlen: 19
217.77.32.0/20 maxlen: 20
195.204.0.0/16 maxlen: 16
85.221.0.0/17 maxlen: 17
217.8.128.0/19 maxlen: 19
77.234.48.0/21 maxlen: 21
86.62.128.0/18 maxlen: 18
62.63.0.0/18 maxlen: 18
89.191.0.0/19 maxlen: 19
81.191.0.0/16 maxlen: 16
193.90.0.0/16 maxlen: 16
80.241.80.0/20 maxlen: 20
194.19.0.0/17 maxlen: 17
212.62.224.0/19 maxlen: 19
64.28.0.0/19 maxlen: 19
85.196.64.0/18 maxlen: 18
193.75.0.0/17 maxlen: 17
195.139.0.0/16 maxlen: 16
213.172.192.0/19 maxlen: 19
78.24.144.0/21 maxlen: 21
109.199.192.0/19 maxlen: 19
195.1.0.0/16 maxlen: 16
213.52.0.0/17 maxlen: 17
185.129.156.0/22 maxlen: 22
185.35.80.0/22 maxlen: 22
193.69.0.0/16 maxlen: 16
195.18.128.0/17 maxlen: 17
185.8.16.0/22 maxlen: 22
85.112.128.0/19 maxlen: 19
82.196.192.0/19 maxlen: 19
217.118.32.0/19 maxlen: 19
79.135.0.0/19 maxlen: 19
193.71.0.0/16 maxlen: 16
91.135.32.0/20 maxlen: 20
217.144.224.0/19 maxlen: 19
77.40.128.0/17 maxlen: 17
185.67.116.0/22 maxlen: 22
213.239.64.0/18 maxlen: 18
87.118.0.0/18 maxlen: 18
84.20.96.0/19 maxlen: 19
77.88.64.0/18 maxlen: 18
195.159.0.0/16 maxlen: 16
62.101.192.0/18 maxlen: 18
80.64.192.0/20 maxlen: 20
88.84.160.0/19 maxlen: 19
194.54.96.0/19 maxlen: 19
81.0.128.0/18 maxlen: 18
212.71.64.0/19 maxlen: 19
195.0.128.0/17 maxlen: 17
217.14.0.0/20 maxlen: 20
193.91.128.0/17 maxlen: 17
213.158.224.0/19 maxlen: 19
2a00:c440::/29 maxlen: 29
2001:840::/29 maxlen: 29
2a03:c000::/29 maxlen: 29
2a01:520::/29 maxlen: 29
2a02:270::/29 maxlen: 29
2001:4dd8::/29 maxlen: 29
2001:8c0::/29 maxlen: 29
2a04:6340::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c7:b7:3f:03:45:08:1d:cf:7d:2d:98:7d:6b:95:d6:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dc4acedcb86cddfed7f6de8cadfca00469bbc8e
Validity
Not Before: Nov 13 08:05:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=816195857304b2a41bbc327cc2361ffc4fc14038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c5:fa:28:16:6d:66:33:73:85:e4:58:12:f5:
2d:bb:c7:e4:37:95:91:50:8b:19:11:57:3a:e2:5d:
a7:c5:a2:89:d0:9e:94:6d:07:cf:e2:92:7f:d2:4b:
9c:87:d7:61:f2:7a:ac:c6:92:41:45:59:88:22:f9:
84:bd:6b:47:65:bb:45:f8:9f:ca:39:f4:d8:09:1c:
cf:fe:5d:31:9e:a7:5e:2d:91:b5:9a:a6:cb:85:f4:
b6:90:5a:47:71:a0:83:85:dc:10:b7:40:a0:31:63:
90:44:0f:ae:f6:71:7e:3b:c6:b9:b2:42:1d:64:d8:
a3:49:3c:e1:99:7a:fa:c1:a9:6e:fa:02:05:62:be:
5a:ae:17:9a:e9:18:b2:0a:5e:82:99:83:c2:67:d1:
69:ca:99:3b:2b:8c:0b:9b:81:a9:5e:33:69:96:67:
38:cb:2b:37:3a:51:15:e2:1c:92:66:b5:91:0d:63:
d5:c1:6f:e7:07:57:c8:a5:08:ce:10:9d:ba:e5:12:
f1:82:b6:eb:e3:3c:54:e5:fe:7b:8d:a7:52:f8:3e:
09:3a:16:09:22:ba:8e:08:79:d8:91:72:70:54:84:
7a:7b:c5:4a:0d:0a:b3:3f:a4:be:a0:76:4c:0b:78:
a6:2d:01:bc:cb:0d:27:ac:a8:2b:00:76:12:b3:ef:
eb:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:61:95:85:73:04:B2:A4:1B:BC:32:7C:C2:36:1F:FC:4F:C1:40:38
X509v3 Authority Key Identifier:
keyid:7D:C4:AC:ED:CB:86:CD:DF:ED:7F:6D:E8:CA:DF:CA:00:46:9B:BC:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fcSs7cuGzd_tf23oyt_KAEabvI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/gWGVhXMEsqQbvDJ8wjYf_E_BQDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/fcSs7cuGzd_tf23oyt_KAEabvI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.185.24.0/21
37.191.128.0/17
62.63.0.0/18
62.101.192.0/18
64.28.0.0/19
77.40.128.0/17
77.88.64.0/18
77.234.48.0/21
78.24.144.0/21
79.135.0.0/19
80.64.192.0/20
80.241.80.0/20
81.0.128.0/18
81.175.0.0/20
81.175.20.0-81.175.63.255
81.191.0.0/16
82.196.192.0/19
84.20.96.0/19
85.112.128.0/19
85.196.64.0/18
85.221.0.0/17
85.252.0.0/16
86.62.128.0/18
87.118.0.0/18
88.84.160.0/19
89.191.0.0/19
91.135.32.0/20
109.199.192.0/19
178.74.0.0/18
185.8.16.0/22
185.35.80.0/22
185.67.116.0/22
185.129.156.0/22
193.69.0.0/16
193.71.0.0/16
193.75.0.0/17
193.90.0.0/16
193.91.128.0/17
194.19.0.0/17
194.29.200.0/22
194.54.96.0/19
195.0.128.0-195.1.255.255
195.18.128.0/17
195.139.0.0/16
195.159.0.0/16
195.204.0.0/16
212.62.224.0/19
212.71.64.0/19
213.52.0.0/17
213.151.128.0/19
213.158.224.0/19
213.160.224.0-213.160.247.255
213.172.192.0/19
213.239.64.0/18
217.8.128.0/19
217.14.0.0/20
217.77.32.0/20
217.118.32.0/19
217.144.224.0/19
IPv6:
2001:840::/29
2001:8c0::/29
2001:4dd8::/29
2a00:c440::/29
2a01:520::/29
2a02:270::/29
2a03:c000::/29
2a04:6340::/29
Signature Algorithm: sha256WithRSAEncryption
6f:65:b6:24:96:f6:1b:bc:68:c5:71:39:93:b4:28:8f:f9:e1:
eb:f5:6e:9a:66:a3:98:99:0f:b3:5d:db:e6:86:4c:b7:27:64:
42:50:63:82:b3:52:88:9b:b4:29:48:6b:a0:17:66:08:68:35:
88:08:b0:d1:f7:bf:b2:c1:8c:02:e9:dd:39:0c:59:9f:6d:8e:
08:27:c8:38:3f:6a:b1:3d:6f:a6:49:41:d5:f9:38:6d:16:c4:
1a:bd:88:59:6a:01:53:82:95:43:0f:64:16:88:64:f5:a1:5d:
b9:ad:10:7e:86:ea:10:9a:0c:47:6b:d1:8e:7e:4f:b5:27:dd:
7d:20:b1:ea:6f:41:89:15:a7:93:40:4d:2b:d0:22:94:5f:e4:
88:53:d5:2d:8a:5a:06:1c:30:a4:d5:98:36:2c:3c:88:bc:d2:
33:60:3a:d1:fd:0c:8c:22:9f:41:1e:11:f2:1c:5f:ff:fa:c6:
45:00:c3:f1:fa:d9:f9:b3:4b:06:75:1a:64:db:24:05:4a:92:
a9:ce:9d:8c:fe:5d:b5:a0:c5:f1:cd:e9:34:97:1f:1c:14:d1:
11:b3:58:75:3f:2d:da:75:fc:f6:b8:4c:27:68:1f:9c:3f:70:
13:6b:5e:1f:e2:e6:60:b9:38:b5:2d:80:6c:8f:f3:0a:b8:b8:
42:36:20:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:20 2025 by rpki-client