Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/974213-49fd-4c5c-8014-bd3a630ee5cc/1/kMTce0s-0wUz9LiwCmI17fj0Xjw.roa
File: kMTce0s-0wUz9LiwCmI17fj0Xjw.roa (raw, json)
Hash identifier: hSPMd1r8TqaoIdHaKqk1jtWSlGG8QJAAhZD4xuatGto=
Subject key identifier: 90:C4:DC:7B:4B:3E:D3:05:33:F4:B8:B0:0A:62:35:ED:F8:F4:5E:3C
Certificate issuer: /CN=602be661e57c14659a608e9f6be605d6250047fc
Certificate serial: 01CC02C9
Authority key identifier: 60:2B:E6:61:E5:7C:14:65:9A:60:8E:9F:6B:E6:05:D6:25:00:47:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YCvmYeV8FGWaYI6fa-YF1iUAR_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/974213-49fd-4c5c-8014-bd3a630ee5cc/1/kMTce0s-0wUz9LiwCmI17fj0Xjw.roa
Signing time: Sat 01 Jan 2022 12:06:03 +0000
ROA not before: Sat 01 Jan 2022 12:06:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6876
IP address blocks: 31.31.96.0/19 maxlen: 19
185.184.168.0/22 maxlen: 22
185.177.240.0/22 maxlen: 22
212.178.0.0/19 maxlen: 19
45.156.36.0/22 maxlen: 22
185.247.20.0/22 maxlen: 22
212.90.124.0/22 maxlen: 22
62.16.0.0/19 maxlen: 19
37.203.0.0/19 maxlen: 19
85.238.96.0/19 maxlen: 19
188.115.128.0/18 maxlen: 18
185.228.104.0/22 maxlen: 22
185.23.104.0/22 maxlen: 22
193.178.48.0/22 maxlen: 22
176.119.64.0/18 maxlen: 18
79.140.0.0/20 maxlen: 20
95.214.40.0/22 maxlen: 22
45.130.0.0/22 maxlen: 22
130.0.32.0/19 maxlen: 19
185.166.220.0/22 maxlen: 22
195.138.64.0/19 maxlen: 19
88.214.8.0/22 maxlen: 22
185.206.36.0/22 maxlen: 22
45.140.120.0/22 maxlen: 22
185.226.112.0/22 maxlen: 22
185.145.104.0/22 maxlen: 22
2a04:2c00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30147273 (0x1cc02c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=602be661e57c14659a608e9f6be605d6250047fc
Validity
Not Before: Jan 1 12:06:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90c4dc7b4b3ed30533f4b8b00a6235edf8f45e3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:50:fe:3b:ab:7c:93:d1:39:9a:42:10:d4:a8:
84:a4:79:a7:91:b7:d5:b3:51:0e:4b:47:69:b7:68:
f1:24:5f:c4:b5:53:e0:a1:67:24:78:7a:81:34:c3:
e6:79:a9:d5:02:5a:a4:bf:be:5f:ea:3c:9e:77:1b:
6f:50:a7:fd:40:98:bd:5e:31:2e:c6:45:df:2f:ac:
e3:14:85:37:78:7b:a4:66:fb:2f:c5:6d:bb:a1:27:
08:5e:bb:cb:7b:92:7a:d6:64:18:1d:f8:06:36:25:
16:4c:ae:8e:5d:bc:dc:6f:de:a5:40:78:ad:1d:12:
f7:5a:8c:10:af:a5:35:89:f6:7d:83:e5:df:da:11:
5a:b8:ad:e2:b4:cc:87:72:e6:d7:1e:33:13:40:b3:
18:ff:1f:ad:1f:19:60:5a:ea:97:78:25:84:a7:bd:
30:74:b1:de:8c:38:b4:38:be:86:95:37:d9:98:3c:
ca:68:df:ef:d0:ef:3d:60:ef:cf:cd:f4:1f:c0:68:
de:fd:ab:a2:fc:27:65:98:95:50:e8:0f:86:93:e5:
8a:6d:56:0d:5d:87:98:73:0b:51:ae:d8:66:a1:99:
e7:15:37:d7:22:20:26:ed:32:78:ee:99:e0:8d:3c:
bc:01:af:2c:21:11:ab:ca:b5:46:f6:ff:27:13:6b:
6e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C4:DC:7B:4B:3E:D3:05:33:F4:B8:B0:0A:62:35:ED:F8:F4:5E:3C
X509v3 Authority Key Identifier:
keyid:60:2B:E6:61:E5:7C:14:65:9A:60:8E:9F:6B:E6:05:D6:25:00:47:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YCvmYeV8FGWaYI6fa-YF1iUAR_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974213-49fd-4c5c-8014-bd3a630ee5cc/1/kMTce0s-0wUz9LiwCmI17fj0Xjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974213-49fd-4c5c-8014-bd3a630ee5cc/1/YCvmYeV8FGWaYI6fa-YF1iUAR_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.31.96.0/19
37.203.0.0/19
45.130.0.0/22
45.140.120.0/22
45.156.36.0/22
62.16.0.0/19
79.140.0.0/20
85.238.96.0/19
88.214.8.0/22
95.214.40.0/22
130.0.32.0/19
176.119.64.0/18
185.23.104.0/22
185.145.104.0/22
185.166.220.0/22
185.177.240.0/22
185.184.168.0/22
185.206.36.0/22
185.226.112.0/22
185.228.104.0/22
185.247.20.0/22
188.115.128.0/18
193.178.48.0/22
195.138.64.0/19
212.90.124.0/22
212.178.0.0/19
IPv6:
2a04:2c00::/29
Signature Algorithm: sha256WithRSAEncryption
44:e2:3e:6f:cc:7c:6b:d5:df:59:ce:19:6b:4c:8e:09:b7:3a:
47:13:78:b6:3c:d7:e8:21:73:cc:ed:ff:09:42:5c:7d:17:8b:
07:08:84:bf:63:e6:38:01:16:53:41:8a:7d:6c:a0:56:8d:17:
05:93:b1:de:2d:5f:2c:36:9e:75:0b:5b:3a:3a:18:a6:9e:6d:
c7:f4:8f:e0:47:cc:d9:a2:61:47:e6:42:50:e1:2f:59:9a:d9:
86:bd:4d:4c:9c:03:7f:35:41:e1:4d:6c:ff:9d:5b:a6:e5:ce:
94:0a:34:e2:2f:43:a2:f1:31:9b:93:13:5f:f9:77:7d:b4:51:
1e:d0:32:8f:76:28:29:5c:4b:32:e7:2c:e5:5e:66:cc:01:1d:
e6:05:cd:db:15:d3:83:3b:eb:a2:a5:55:86:2a:58:2c:df:25:
29:9b:a6:f0:76:ef:a5:ab:65:d1:d3:36:db:34:b7:8e:98:2e:
ec:8f:a8:db:d9:a9:13:51:90:e9:94:af:5f:c5:55:df:07:ba:
f1:39:13:cb:18:75:55:19:4f:40:45:28:3a:79:5b:1d:22:cd:
c6:9c:4c:fd:29:2b:c6:44:92:46:3c:06:23:fb:9d:77:f8:b7:
8a:04:84:c1:22:a0:a0:d9:d8:f0:b3:0c:22:89:0f:42:33:97:
f8:25:57:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:47:55 2025 by rpki-client