Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/Z3EX0YcCeJEAronwVCq4ZpM61C0.roa
File: Z3EX0YcCeJEAronwVCq4ZpM61C0.roa (raw, json)
Hash identifier: 5PF607MsdtzcBCX4E1LJbJC86L0Aq6URkweUQ9+8fpA=
Subject key identifier: 67:71:17:D1:87:02:78:91:00:AE:89:F0:54:2A:B8:66:93:3A:D4:2D
Certificate issuer: /CN=71949b47df313cbab9452da98fcc637608a909bd
Certificate serial: 018833EB48976E9E4DC56BC93D6CB6EF62ED
Authority key identifier: 71:94:9B:47:DF:31:3C:BA:B9:45:2D:A9:8F:CC:63:76:08:A9:09:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZSbR98xPLq5RS2pj8xjdgipCb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/Z3EX0YcCeJEAronwVCq4ZpM61C0.roa
Signing time: Fri 19 May 2023 12:10:37 +0000
ROA not before: Fri 19 May 2023 12:10:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34758
IP address blocks: 45.13.89.0/24 maxlen: 24
45.13.88.0/24 maxlen: 24
45.13.91.0/24 maxlen: 24
45.13.90.0/24 maxlen: 24
45.13.88.0/22 maxlen: 22
31.6.80.0/24 maxlen: 24
31.6.82.0/24 maxlen: 24
31.6.81.0/24 maxlen: 24
31.6.84.0/24 maxlen: 24
31.6.83.0/24 maxlen: 24
31.6.85.0/24 maxlen: 24
31.6.80.0/20 maxlen: 20
31.6.87.0/24 maxlen: 24
31.6.90.0/24 maxlen: 24
31.6.91.0/24 maxlen: 24
31.6.86.0/24 maxlen: 24
31.6.89.0/24 maxlen: 24
159.255.156.0/22 maxlen: 22
31.6.88.0/24 maxlen: 24
159.255.158.0/24 maxlen: 24
159.255.159.0/24 maxlen: 24
159.255.156.0/24 maxlen: 24
159.255.157.0/24 maxlen: 24
146.255.165.0/24 maxlen: 24
31.6.94.0/24 maxlen: 24
146.255.160.0/21 maxlen: 21
31.6.93.0/24 maxlen: 24
31.6.95.0/24 maxlen: 24
31.6.92.0/24 maxlen: 24
146.255.161.0/24 maxlen: 24
146.255.163.0/24 maxlen: 24
146.255.166.0/24 maxlen: 24
146.255.164.0/24 maxlen: 24
146.255.162.0/24 maxlen: 24
146.255.160.0/24 maxlen: 24
146.255.167.0/24 maxlen: 24
185.126.140.0/22 maxlen: 22
185.126.141.0/24 maxlen: 24
185.126.140.0/24 maxlen: 24
185.126.143.0/24 maxlen: 24
185.126.142.0/24 maxlen: 24
109.234.137.0/24 maxlen: 24
109.234.139.0/24 maxlen: 24
109.234.138.0/24 maxlen: 24
109.234.136.0/24 maxlen: 24
109.234.136.0/21 maxlen: 21
109.234.141.0/24 maxlen: 24
109.234.140.0/24 maxlen: 24
109.234.143.0/24 maxlen: 24
109.234.142.0/24 maxlen: 24
45.93.36.0/22 maxlen: 22
45.93.37.0/24 maxlen: 24
45.93.36.0/24 maxlen: 24
45.93.38.0/24 maxlen: 24
45.93.39.0/24 maxlen: 24
217.72.34.0/24 maxlen: 24
217.72.33.0/24 maxlen: 24
217.72.36.0/24 maxlen: 24
217.72.35.0/24 maxlen: 24
217.72.32.0/24 maxlen: 24
217.72.32.0/21 maxlen: 21
217.72.37.0/24 maxlen: 24
217.72.38.0/24 maxlen: 24
217.72.39.0/24 maxlen: 24
195.225.227.0/24 maxlen: 24
195.225.226.0/24 maxlen: 24
195.225.225.0/24 maxlen: 24
195.225.224.0/24 maxlen: 24
195.225.224.0/22 maxlen: 22
92.246.97.0/24 maxlen: 24
92.246.98.0/24 maxlen: 24
92.246.96.0/24 maxlen: 24
92.246.96.0/21 maxlen: 21
92.246.101.0/24 maxlen: 24
92.246.100.0/24 maxlen: 24
92.246.103.0/24 maxlen: 24
92.246.102.0/24 maxlen: 24
92.246.99.0/24 maxlen: 24
92.246.112.0/24 maxlen: 24
92.246.112.0/20 maxlen: 20
92.246.115.0/24 maxlen: 24
92.246.114.0/24 maxlen: 24
92.246.117.0/24 maxlen: 24
92.246.116.0/24 maxlen: 24
92.246.113.0/24 maxlen: 24
92.246.118.0/24 maxlen: 24
92.246.125.0/24 maxlen: 24
92.246.122.0/24 maxlen: 24
92.246.121.0/24 maxlen: 24
92.246.124.0/24 maxlen: 24
92.246.123.0/24 maxlen: 24
92.246.120.0/24 maxlen: 24
92.246.119.0/24 maxlen: 24
92.246.127.0/24 maxlen: 24
92.246.126.0/24 maxlen: 24
185.171.39.0/24 maxlen: 24
193.238.139.0/24 maxlen: 24
193.238.138.0/24 maxlen: 24
193.238.136.0/24 maxlen: 24
193.238.137.0/24 maxlen: 24
193.238.136.0/22 maxlen: 22
185.171.38.0/24 maxlen: 24
185.171.37.0/24 maxlen: 24
185.171.36.0/24 maxlen: 24
185.171.36.0/22 maxlen: 22
185.23.85.0/24 maxlen: 24
185.23.84.0/24 maxlen: 24
185.23.84.0/22 maxlen: 22
185.23.87.0/24 maxlen: 24
185.23.86.0/24 maxlen: 24
185.103.81.0/24 maxlen: 24
185.103.83.0/24 maxlen: 24
185.103.82.0/24 maxlen: 24
185.103.80.0/24 maxlen: 24
185.103.80.0/22 maxlen: 22
2a04:2080::/29 maxlen: 48
2a06:c2c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:33:eb:48:97:6e:9e:4d:c5:6b:c9:3d:6c:b6:ef:62:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71949b47df313cbab9452da98fcc637608a909bd
Validity
Not Before: May 19 12:10:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=677117d18702789100ae89f0542ab866933ad42d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:53:ad:28:22:0a:02:a0:6f:1a:e2:5f:97:6e:
eb:e6:2a:1d:07:d1:d3:08:4f:fd:80:21:96:e9:c5:
bb:a7:67:56:f7:3a:7e:03:1e:5a:74:0c:05:83:21:
77:9f:06:c6:e2:6e:bf:2f:20:a9:92:e4:1d:d6:59:
dd:c0:0b:97:a2:b8:7a:be:bd:f0:a5:5d:92:a9:9c:
3d:c1:f3:c6:b9:7d:5b:cd:54:55:be:18:49:68:6a:
73:dc:2c:92:0a:53:8f:9b:a8:12:28:a7:94:5e:d5:
d9:bd:1d:06:c3:50:66:0a:bf:6f:5c:60:ab:a0:0e:
61:da:5f:34:1d:a7:54:8a:26:44:b2:57:3c:2e:84:
f0:d4:fe:62:54:0f:11:c1:4e:c0:a1:5f:18:8f:f0:
d3:fc:30:f0:fb:ff:4a:f1:f7:8d:69:35:ff:95:cc:
12:8f:fb:61:5f:d0:d7:70:b6:bc:7b:12:99:b5:f9:
71:17:1d:32:66:ec:00:d2:60:b5:c3:a4:71:ed:fa:
f4:c2:41:c3:d3:40:7e:01:88:ac:da:87:03:e4:c6:
43:95:34:cb:32:ff:7e:10:25:2d:e6:ce:b9:cb:d0:
0a:47:92:be:9e:a7:9e:d3:22:1c:3e:e9:ac:69:9b:
0e:a3:50:6d:b7:00:3f:ba:57:18:e3:bd:09:de:e8:
4b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:71:17:D1:87:02:78:91:00:AE:89:F0:54:2A:B8:66:93:3A:D4:2D
X509v3 Authority Key Identifier:
keyid:71:94:9B:47:DF:31:3C:BA:B9:45:2D:A9:8F:CC:63:76:08:A9:09:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZSbR98xPLq5RS2pj8xjdgipCb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/Z3EX0YcCeJEAronwVCq4ZpM61C0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/cZSbR98xPLq5RS2pj8xjdgipCb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.80.0/20
45.13.88.0/22
45.93.36.0/22
92.246.96.0/21
92.246.112.0/20
109.234.136.0/21
146.255.160.0/21
159.255.156.0/22
185.23.84.0/22
185.103.80.0/22
185.126.140.0/22
185.171.36.0/22
193.238.136.0/22
195.225.224.0/22
217.72.32.0/21
IPv6:
2a04:2080::/29
2a06:c2c0::/29
Signature Algorithm: sha256WithRSAEncryption
8e:ee:ba:80:16:01:e5:52:0d:8b:07:f9:33:56:23:3f:e0:6c:
db:b8:d7:e0:c5:73:cc:4e:eb:05:ef:e3:65:8a:bf:f6:16:d9:
49:aa:e7:a0:ce:9f:8a:e8:0f:0c:01:fc:3f:a5:af:d6:aa:46:
9d:96:33:44:81:59:b2:5c:7d:b7:57:63:e1:bc:f4:43:3d:55:
7d:2c:8a:ef:b8:dc:95:01:da:03:ec:0e:d7:1e:99:c7:ec:5e:
e0:44:97:71:a0:3d:d8:fe:e1:0a:b8:64:3f:65:0b:e9:b0:85:
23:0b:67:87:a5:dc:67:e5:ae:4c:44:80:b9:2c:a4:07:e9:fd:
4d:8f:08:47:5c:68:88:27:38:87:5c:b8:ed:84:0e:d9:c2:cd:
94:4d:59:ed:c8:ea:1f:04:64:1a:54:f5:8e:be:ad:85:a3:4f:
c5:e3:97:92:01:8b:3e:60:ca:f3:8b:1c:ca:47:89:69:70:42:
9a:26:01:f3:60:62:cc:17:a0:90:86:c8:66:5d:b7:86:12:2f:
be:55:0c:ae:f1:29:60:1b:20:3b:ac:67:30:e5:f0:1d:dd:6a:
0a:d2:83:42:12:98:26:59:88:98:aa:e2:8b:ba:47:68:d5:76:
fc:4d:a7:fc:e6:40:00:b4:73:69:8a:61:1c:64:b5:be:0f:1e:
bb:c7:95:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:13 2025 by rpki-client