Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/7cc0f6-74ef-423a-a696-4a2bf4ab199d/1/u9LJB0Wjs74LsgJe9bLA3cfFSDY.roa
File: u9LJB0Wjs74LsgJe9bLA3cfFSDY.roa (raw, json)
Hash identifier: Vtg2uTsk5bGHDsgBwBGM4bSYJDbFwcF7TR6/jpF8Guw=
Subject key identifier: BB:D2:C9:07:45:A3:B3:BE:0B:B2:02:5E:F5:B2:C0:DD:C7:C5:48:36
Certificate issuer: /CN=26f36b5c6ca7a1698e7421a27e3d4a6b7648148d
Certificate serial: 01892A8D7F4F4D3403E471DFB4CF233F1736
Authority key identifier: 26:F3:6B:5C:6C:A7:A1:69:8E:74:21:A2:7E:3D:4A:6B:76:48:14:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JvNrXGynoWmOdCGifj1Ka3ZIFI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/7cc0f6-74ef-423a-a696-4a2bf4ab199d/1/u9LJB0Wjs74LsgJe9bLA3cfFSDY.roa
Signing time: Thu 06 Jul 2023 09:34:23 +0000
ROA not before: Thu 06 Jul 2023 09:34:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58243
IP address blocks: 207.89.65.0/24 maxlen: 24
207.89.66.0/23 maxlen: 23
207.89.67.0/24 maxlen: 24
207.89.64.0/18 maxlen: 18
207.89.68.0/24 maxlen: 24
207.89.70.0/23 maxlen: 23
207.89.78.0/23 maxlen: 23
207.89.74.0/23 maxlen: 23
207.89.76.0/24 maxlen: 24
207.89.77.0/24 maxlen: 24
207.89.72.0/23 maxlen: 23
207.89.72.0/22 maxlen: 22
207.89.80.0/23 maxlen: 23
207.89.80.0/20 maxlen: 20
207.89.82.0/24 maxlen: 24
207.89.83.0/24 maxlen: 24
207.89.86.0/23 maxlen: 23
207.89.88.0/22 maxlen: 22
207.89.92.0/24 maxlen: 24
207.89.92.0/22 maxlen: 22
207.89.96.0/20 maxlen: 20
207.89.96.0/19 maxlen: 24
207.89.112.0/20 maxlen: 20
5.61.176.0/21 maxlen: 21
5.61.176.0/20 maxlen: 20
5.61.184.0/23 maxlen: 23
5.61.186.0/24 maxlen: 24
5.61.187.0/24 maxlen: 24
5.61.188.0/23 maxlen: 23
5.61.190.0/24 maxlen: 24
5.61.190.0/23 maxlen: 23
5.61.132.0/22 maxlen: 24
5.61.128.0/18 maxlen: 18
5.61.128.0/19 maxlen: 19
5.61.128.0/20 maxlen: 20
5.61.128.0/23 maxlen: 23
5.61.130.0/23 maxlen: 23
5.61.130.0/24 maxlen: 24
5.61.131.0/24 maxlen: 24
5.61.134.0/23 maxlen: 23
5.61.136.0/21 maxlen: 24
5.61.138.0/23 maxlen: 23
5.61.140.0/22 maxlen: 22
5.61.144.0/24 maxlen: 24
5.61.145.0/24 maxlen: 24
5.61.144.0/20 maxlen: 24
5.61.149.0/24 maxlen: 24
5.61.150.0/24 maxlen: 24
5.61.151.0/24 maxlen: 24
5.61.152.0/22 maxlen: 22
5.61.146.0/24 maxlen: 24
5.61.147.0/24 maxlen: 24
5.61.148.0/24 maxlen: 24
5.61.156.0/24 maxlen: 24
5.61.157.0/24 maxlen: 24
5.61.158.0/23 maxlen: 23
5.61.160.0/24 maxlen: 24
5.61.160.0/19 maxlen: 19
5.61.160.0/20 maxlen: 20
5.61.163.0/24 maxlen: 24
5.61.164.0/24 maxlen: 24
5.61.164.0/22 maxlen: 22
5.61.165.0/24 maxlen: 24
5.61.168.0/23 maxlen: 23
5.61.168.0/21 maxlen: 21
5.61.166.0/23 maxlen: 23
5.61.170.0/23 maxlen: 23
5.61.172.0/22 maxlen: 22
185.78.252.0/22 maxlen: 22
185.78.255.0/24 maxlen: 24
207.89.64.0/24 maxlen: 24
207.89.64.0/19 maxlen: 19
207.89.64.0/20 maxlen: 20
2a01:5244::/30 maxlen: 30
2a01:5240::/29 maxlen: 29
2a01:5240::/30 maxlen: 30
2a01:5241::/39 maxlen: 39
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2a:8d:7f:4f:4d:34:03:e4:71:df:b4:cf:23:3f:17:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26f36b5c6ca7a1698e7421a27e3d4a6b7648148d
Validity
Not Before: Jul 6 09:34:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbd2c90745a3b3be0bb2025ef5b2c0ddc7c54836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e7:51:05:e8:67:d6:b8:c8:17:00:f0:cc:f9:
7d:af:2b:87:f6:a9:71:94:9f:c3:f9:e3:a7:e6:41:
e2:ad:1a:61:39:cf:93:48:cb:5a:5e:58:91:bd:7a:
bb:57:23:cd:dc:17:30:15:71:be:e1:24:bf:13:90:
62:75:ee:9c:28:02:b8:50:56:5c:c9:95:46:e6:e5:
d1:31:c1:80:f9:c1:6b:7e:fc:82:a3:f7:4c:06:96:
04:52:5a:ec:2e:77:da:60:7d:78:27:a1:b7:5c:43:
b5:ce:9b:c1:c4:17:0e:fe:cf:db:47:f7:fc:c1:e2:
4a:d8:bb:ae:66:18:d0:61:fd:d6:1c:3e:e5:f7:65:
2f:86:76:e0:ca:37:bd:0f:b4:d4:d3:af:ce:2c:25:
8a:28:e1:8e:af:85:78:86:b9:7c:8f:fc:f4:1f:d0:
a0:e5:73:ac:ae:93:2c:ff:4b:11:d2:35:71:e2:a3:
b9:1b:c7:97:90:8b:92:b8:0d:a7:5b:49:2f:72:da:
6d:8e:e8:26:33:82:c0:c4:e7:f8:94:8f:c1:fd:f8:
18:e0:78:2c:e2:00:97:aa:6b:68:85:e6:bd:ce:62:
eb:4e:cf:f2:2d:1c:54:fa:34:e2:b5:15:dc:51:49:
f6:68:64:11:0a:1b:79:82:63:ab:83:b9:59:f2:c7:
ef:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D2:C9:07:45:A3:B3:BE:0B:B2:02:5E:F5:B2:C0:DD:C7:C5:48:36
X509v3 Authority Key Identifier:
keyid:26:F3:6B:5C:6C:A7:A1:69:8E:74:21:A2:7E:3D:4A:6B:76:48:14:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JvNrXGynoWmOdCGifj1Ka3ZIFI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/7cc0f6-74ef-423a-a696-4a2bf4ab199d/1/u9LJB0Wjs74LsgJe9bLA3cfFSDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/7cc0f6-74ef-423a-a696-4a2bf4ab199d/1/JvNrXGynoWmOdCGifj1Ka3ZIFI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.61.128.0/18
185.78.252.0/22
207.89.64.0/18
IPv6:
2a01:5240::/29
Signature Algorithm: sha256WithRSAEncryption
38:bb:4b:eb:09:20:c2:41:fb:fd:27:22:80:e0:81:ab:34:64:
6a:96:1d:31:b0:3b:83:29:0d:ef:c6:4b:98:0d:e5:e9:ff:2d:
c9:f9:08:17:24:cf:17:6a:b7:55:f9:f5:d4:b5:ec:40:95:8d:
c8:37:67:ae:7e:b7:45:50:ab:0d:4b:c2:65:a8:33:2f:34:67:
c4:0b:65:e4:14:82:35:49:ff:45:9a:4c:32:ba:62:b9:08:1a:
89:6b:5e:0d:a7:1f:d9:f2:6a:e8:8e:5f:f4:6e:4f:db:27:4c:
ff:da:6f:2a:d0:cc:83:68:a5:1e:dd:28:d4:e1:bc:fc:d0:24:
14:99:7f:be:e0:f5:ee:38:49:0c:a8:35:08:03:1c:d6:4c:24:
8c:49:09:e7:46:b8:ba:6c:30:c6:d8:b2:64:b0:68:aa:05:e7:
8d:68:11:37:7e:11:18:78:36:96:6a:18:dd:30:5d:1c:b4:5f:
fe:0e:68:92:ef:59:c4:44:75:49:f2:07:b9:2b:68:83:cb:fb:
f7:94:f7:34:3a:f5:45:ad:a1:28:4c:0a:1c:56:c2:ad:c2:f8:
17:76:87:2a:6b:b1:30:44:9d:65:f6:7e:56:bc:e8:f3:07:17:
63:1d:d9:8d:a4:22:cb:90:e5:0b:30:76:c3:ed:6a:51:d8:18:
0b:ea:b4:5d
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgISAYkqjX9PTTQD5HHftM8jPxc2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI2ZjM2YjVjNmNhN2ExNjk4ZTc0MjFhMjdlM2Q0YTZiNzY0
ODE0OGQwHhcNMjMwNzA2MDkzNDIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYmQyYzkwNzQ1YTNiM2JlMGJiMjAyNWVmNWIyYzBkZGM3YzU0ODM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj+dRBehn1rjIFwDwzPl9ryuH9qlx
lJ/D+eOn5kHirRphOc+TSMtaXliRvXq7VyPN3BcwFXG+4SS/E5Bide6cKAK4UFZc
yZVG5uXRMcGA+cFrfvyCo/dMBpYEUlrsLnfaYH14J6G3XEO1zpvBxBcO/s/bR/f8
weJK2LuuZhjQYf3WHD7l92Uvhnbgyje9D7TU06/OLCWKKOGOr4V4hrl8j/z0H9Cg
5XOsrpMs/0sR0jVx4qO5G8eXkIuSuA2nW0kvctptjugmM4LAxOf4lI/B/fgY4Hgs
4gCXqmtohea9zmLrTs/yLRxU+jTitRXcUUn2aGQRCht5gmOrg7lZ8sfvywIDAQAB
o4ICJDCCAiAwHQYDVR0OBBYEFLvSyQdFo7O+C7ICXvWywN3HxUg2MB8GA1UdIwQY
MBaAFCbza1xsp6FpjnQhon49Smt2SBSNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSnZOclhHeW5vV21PZENHaWZqMUthM1pJRkkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS83Y2MwZjYtNzRlZi00MjNhLWE2OTYt
NGEyYmY0YWIxOTlkLzEvdTlMSkIwV2pzNzRMc2dKZTliTEEzY2ZGU0RZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS83Y2MwZjYtNzRlZi00MjNhLWE2OTYtNGEyYmY0YWIxOTlk
LzEvSnZOclhHeW5vV21PZENHaWZqMUthM1pJRkkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQGBT2AAwQC
uU78AwQGz1lAMA0EAgACMAcDBQMqAVJAMA0GCSqGSIb3DQEBCwUAA4IBAQA4u0vr
CSDCQfv9JyKA4IGrNGRqlh0xsDuDKQ3vxkuYDeXp/y3J+QgXJM8XardV+fXUtexA
lY3IN2eufrdFUKsNS8JlqDMvNGfEC2XkFII1Sf9FmkwyumK5CBqJa14Npx/Z8mro
jl/0bk/bJ0z/2m8q0MyDaKUe3SjU4bz80CQUmX++4PXuOEkMqDUIAxzWTCSMSQnn
Rri6bDDG2LJksGiqBeeNaBE3fhEYeDaWahjdMF0ctF/+DmiS71nERHVJ8ge5K2iD
y/v3lPc0OvVFraEoTAocVsKtwvgXdocqa7EwRJ1l9n5WvOjzBxdjHdmNpCLLkOUL
MHbD7WpR2BgL6rRd
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:51:02 2025 by rpki-client