Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/853996-6cbb-4d42-8778-b1d7ac9ea321/1/dVuStr03NVuOPb_z1toeU4NtBOo.roa
File: dVuStr03NVuOPb_z1toeU4NtBOo.roa (raw, json)
Hash identifier: 4cWuHhp7tnh5yjqXOSoe9DgASJ3b4/lWvTLymWFU/To=
Subject key identifier: 75:5B:92:B6:BD:37:35:5B:8E:3D:BF:F3:D6:DA:1E:53:83:6D:04:EA
Certificate issuer: /CN=089523953939f8a5e464b1cc7719ebeb9467ca3f
Certificate serial: 01856D81B07175F99791C4278D1B9398C038
Authority key identifier: 08:95:23:95:39:39:F8:A5:E4:64:B1:CC:77:19:EB:EB:94:67:CA:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CJUjlTk5-KXkZLHMdxnr65Rnyj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/853996-6cbb-4d42-8778-b1d7ac9ea321/1/dVuStr03NVuOPb_z1toeU4NtBOo.roa
Signing time: Sun 01 Jan 2023 13:24:53 +0000
ROA not before: Sun 01 Jan 2023 13:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12353
IP address blocks: 94.60.0.0/14 maxlen: 14
89.114.0.0/15 maxlen: 15
46.189.128.0/17 maxlen: 17
5.43.0.0/18 maxlen: 18
192.160.246.0/23 maxlen: 23
178.166.0.0/17 maxlen: 17
192.160.245.0/24 maxlen: 24
192.160.251.0/24 maxlen: 24
161.230.0.0/16 maxlen: 16
192.160.248.0/23 maxlen: 23
148.69.0.0/16 maxlen: 16
188.37.0.0/16 maxlen: 16
95.136.0.0/17 maxlen: 17
78.137.192.0/18 maxlen: 18
213.30.0.0/17 maxlen: 17
5.158.0.0/18 maxlen: 18
5.249.0.0/17 maxlen: 17
93.108.0.0/16 maxlen: 16
87.103.0.0/17 maxlen: 17
148.71.0.0/16 maxlen: 16
212.18.160.0/19 maxlen: 19
77.54.0.0/16 maxlen: 16
37.28.192.0/18 maxlen: 18
148.63.0.0/16 maxlen: 16
149.90.0.0/16 maxlen: 16
185.37.208.0/22 maxlen: 22
83.174.0.0/18 maxlen: 18
2001:818::/32 maxlen: 32
2001:818::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:b0:71:75:f9:97:91:c4:27:8d:1b:93:98:c0:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=089523953939f8a5e464b1cc7719ebeb9467ca3f
Validity
Not Before: Jan 1 13:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=755b92b6bd37355b8e3dbff3d6da1e53836d04ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:91:73:ae:8a:c2:82:d6:1e:87:e3:db:7f:c8:
cb:62:e6:6e:70:f3:60:0d:26:3f:32:cd:b7:97:33:
10:4f:cc:0c:5b:d1:12:2a:fe:72:8b:c6:7b:4c:ee:
d4:20:49:f3:5c:c2:5d:66:ab:e4:d3:b7:47:c4:c8:
0c:48:1d:f2:9b:e6:84:bf:09:8f:7b:29:d7:36:70:
12:3c:f8:e9:c6:1a:b2:61:39:e4:91:57:2b:4d:7e:
a2:ae:a8:d4:de:ac:b8:e2:d4:de:eb:68:b9:4a:3b:
e0:5c:75:c6:63:38:d0:d6:40:23:79:f1:f3:7c:86:
c3:0f:a9:a6:bd:40:4a:94:25:25:ec:22:b2:36:98:
6e:78:44:a1:7a:74:ab:00:de:9b:2d:73:39:36:02:
bd:7e:11:38:00:2d:77:ae:21:0a:a9:78:c9:5e:47:
3c:aa:70:3d:9a:01:38:a8:5e:d2:a6:c7:e0:cc:f8:
0e:44:3d:ac:6d:42:ac:70:a6:43:78:bd:21:dd:9c:
e7:34:a4:19:97:58:1b:7e:d0:71:21:31:a6:53:cc:
ae:12:f7:59:fd:a2:f1:8d:b8:94:b1:85:5e:09:78:
f9:41:5e:1f:57:15:5c:7e:64:39:22:33:11:38:d2:
2d:20:96:55:b6:f6:f6:f0:9c:9a:7b:88:bc:0c:a5:
29:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:5B:92:B6:BD:37:35:5B:8E:3D:BF:F3:D6:DA:1E:53:83:6D:04:EA
X509v3 Authority Key Identifier:
keyid:08:95:23:95:39:39:F8:A5:E4:64:B1:CC:77:19:EB:EB:94:67:CA:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CJUjlTk5-KXkZLHMdxnr65Rnyj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/853996-6cbb-4d42-8778-b1d7ac9ea321/1/dVuStr03NVuOPb_z1toeU4NtBOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/853996-6cbb-4d42-8778-b1d7ac9ea321/1/CJUjlTk5-KXkZLHMdxnr65Rnyj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.43.0.0/18
5.158.0.0/18
5.249.0.0/17
37.28.192.0/18
46.189.128.0/17
77.54.0.0/16
78.137.192.0/18
83.174.0.0/18
87.103.0.0/17
89.114.0.0/15
93.108.0.0/16
94.60.0.0/14
95.136.0.0/17
148.63.0.0/16
148.69.0.0/16
148.71.0.0/16
149.90.0.0/16
161.230.0.0/16
178.166.0.0/17
185.37.208.0/22
188.37.0.0/16
192.160.245.0-192.160.249.255
192.160.251.0/24
212.18.160.0/19
213.30.0.0/17
IPv6:
2001:818::/29
Signature Algorithm: sha256WithRSAEncryption
8b:16:5d:f6:d6:9e:3f:a3:63:b2:37:20:57:2e:4f:07:0c:e1:
5a:67:77:04:4c:08:a7:86:e8:05:46:37:c8:92:b2:c3:29:77:
42:cb:69:0f:3f:8a:26:0e:3a:6f:4c:40:88:d8:49:92:57:08:
01:d6:5f:57:0b:51:a0:95:ff:a3:6e:44:86:47:81:b0:43:61:
d8:e9:b7:e5:fa:3c:bb:4d:b9:59:02:ec:2c:26:29:d6:ba:d2:
25:19:2f:6a:73:91:39:38:5c:77:d6:c4:b9:18:9d:88:d3:3d:
7e:c2:f7:47:4b:86:fa:64:93:6a:b8:1e:fa:bf:e7:08:3b:f1:
f2:c7:f4:66:1f:0c:76:90:c7:2c:db:76:d0:f8:d1:06:18:21:
f1:4e:cc:4b:6e:0d:89:5f:e9:f5:0d:97:21:90:d3:9f:a6:5d:
6b:86:71:d9:db:38:22:7e:be:73:4e:30:f2:5c:16:35:5a:29:
fb:8d:c7:11:69:02:26:e0:a5:73:33:86:2f:af:31:aa:c8:77:
b6:83:c4:cf:61:95:93:d5:ea:07:ab:bb:ab:04:9b:ed:87:dc:
d3:36:3c:ce:e0:cc:29:2c:ea:16:dd:6c:51:c2:bb:9d:e7:7e:
30:83:47:a1:6a:fb:69:4a:65:6a:21:13:aa:fa:99:a4:1b:81:
ed:6f:93:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:29:20 2025 by rpki-client