Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/28RlsEyp9uYDW42EBdWMM6StG-w.roa
File: 28RlsEyp9uYDW42EBdWMM6StG-w.roa (raw, json)
Hash identifier: 1dN9brKkJopDT11gMFmbKpSvilSm3CO/aEalLoOQd2w=
Subject key identifier: DB:C4:65:B0:4C:A9:F6:E6:03:5B:8D:84:05:D5:8C:33:A4:AD:1B:EC
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018B036D694ADCD03D54D79947C403D73279
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/28RlsEyp9uYDW42EBdWMM6StG-w.roa
Signing time: Fri 06 Oct 2023 05:19:43 +0000
ROA not before: Fri 06 Oct 2023 05:19:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.219.0/24 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.226.0/24 maxlen: 24
84.32.228.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.236.0/23 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.238.0/24 maxlen: 24
84.32.234.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.246.0/23 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.246.0/24 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.241.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
84.32.249.0/24 maxlen: 24
84.32.250.0/24 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.247.0/24 maxlen: 24
84.32.253.0/24 maxlen: 24
84.32.254.0/24 maxlen: 24
84.32.255.0/24 maxlen: 24
84.32.58.0/24 maxlen: 24
84.32.61.0/24 maxlen: 24
84.32.62.0/24 maxlen: 24
84.32.64.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
84.32.65.0/24 maxlen: 24
84.32.66.0/24 maxlen: 24
84.32.76.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
84.32.83.0/24 maxlen: 24
84.32.85.0/24 maxlen: 24
84.32.89.0/24 maxlen: 24
84.32.90.0/24 maxlen: 24
84.32.88.0/24 maxlen: 24
84.32.92.0/24 maxlen: 24
84.32.93.0/24 maxlen: 24
84.32.94.0/24 maxlen: 24
84.32.95.0/24 maxlen: 24
84.32.105.0/24 maxlen: 24
84.32.4.0/24 maxlen: 24
84.32.7.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.14.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.20.0/24 maxlen: 24
84.32.27.0/24 maxlen: 24
84.32.28.0/24 maxlen: 24
84.32.29.0/24 maxlen: 24
84.32.26.0/24 maxlen: 24
84.32.31.0/24 maxlen: 24
84.32.42.0/24 maxlen: 24
84.32.43.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.176.0/24 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.178.0/23 maxlen: 24
84.32.211.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.213.0/24 maxlen: 24
84.32.107.0/24 maxlen: 24
84.32.150.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.155.0/24 maxlen: 24
84.32.157.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.180.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.191.0/24 maxlen: 24
88.216.187.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.198.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.211.0/24 maxlen: 24
88.216.208.0/24 maxlen: 24
88.216.110.0/24 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.107.0/24 maxlen: 24
88.216.109.0/24 maxlen: 24
88.216.106.0/24 maxlen: 24
88.216.128.0/24 maxlen: 24
88.216.129.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.223.0/24 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.228.0/22 maxlen: 24
88.216.236.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.95.0/24 maxlen: 24
88.216.92.0/24 maxlen: 24
88.216.101.0/24 maxlen: 24
88.216.102.0/24 maxlen: 24
88.216.104.0/24 maxlen: 24
88.216.105.0/24 maxlen: 24
88.216.2.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.0.0/24 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.23.0/24 maxlen: 24
88.216.22.0/24 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.36.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.42.0/24 maxlen: 24
88.216.40.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
88.216.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:03:6d:69:4a:dc:d0:3d:54:d7:99:47:c4:03:d7:32:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Oct 6 05:19:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbc465b04ca9f6e6035b8d8405d58c33a4ad1bec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b3:77:d3:7c:88:75:e8:7b:66:8e:e0:eb:c1:
4d:2b:51:53:80:e6:8f:33:c8:db:3a:4e:cf:c3:39:
d8:44:28:67:2e:54:4f:9e:02:bd:3d:2a:53:c8:23:
23:8b:65:42:04:5f:4a:46:9d:5c:8b:1f:82:63:bb:
39:df:d2:3f:ae:5d:b2:03:6b:22:b8:3a:c5:89:43:
c8:8d:a5:e6:d2:0c:f0:c6:3d:18:a6:28:de:af:66:
0d:83:50:d5:a6:30:0d:bf:43:dc:95:a9:f1:bf:4b:
18:60:ad:86:08:38:e2:b8:77:60:7f:bc:9a:81:c1:
52:cc:75:4f:54:16:b3:f6:bb:dd:9b:fe:ea:f3:6a:
83:4d:36:39:a9:d4:c7:72:eb:8c:c9:89:9c:f9:5a:
32:1e:c3:7f:94:b3:45:2f:b8:fa:c2:09:79:ea:a4:
d5:b9:ed:b1:1a:7c:fa:33:02:80:af:e0:01:91:12:
7c:cc:17:36:64:c8:c7:3b:a9:47:9c:01:0b:11:81:
8c:20:5d:56:08:52:38:00:51:42:a1:58:2c:1c:d8:
83:10:8b:42:42:e1:b0:06:26:8e:2c:33:79:1c:7b:
51:8f:13:e5:b4:31:fc:00:59:6a:55:19:be:7e:77:
97:fd:0e:96:64:83:82:3c:34:8e:64:af:c3:ea:7b:
bc:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C4:65:B0:4C:A9:F6:E6:03:5B:8D:84:05:D5:8C:33:A4:AD:1B:EC
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/28RlsEyp9uYDW42EBdWMM6StG-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.4.0/24
84.32.7.0-84.32.8.255
84.32.14.0/24
84.32.20.0-84.32.29.255
84.32.31.0/24
84.32.42.0/23
84.32.46.0/23
84.32.58.0/24
84.32.60.0-84.32.62.255
84.32.64.0-84.32.66.255
84.32.68.0/24
84.32.76.0/23
84.32.83.0/24
84.32.85.0/24
84.32.88.0-84.32.90.255
84.32.92.0/22
84.32.105.0/24
84.32.107.0/24
84.32.148.0/22
84.32.153.0/24
84.32.155.0/24
84.32.157.0-84.32.159.255
84.32.174.0-84.32.176.255
84.32.178.0/23
84.32.211.0-84.32.215.255
84.32.219.0/24
84.32.221.0/24
84.32.224.0/24
84.32.226.0/24
84.32.228.0/24
84.32.232.0/24
84.32.234.0-84.32.242.255
84.32.244.0/22
84.32.249.0-84.32.255.255
88.216.0.0/22
88.216.16.0/24
88.216.22.0/23
88.216.35.0-88.216.36.255
88.216.40.0/24
88.216.42.0/24
88.216.44.0/23
88.216.47.0/24
88.216.58.0/24
88.216.64.0/23
88.216.92.0/23
88.216.95.0/24
88.216.101.0-88.216.102.255
88.216.104.0/22
88.216.109.0-88.216.111.255
88.216.128.0-88.216.132.255
88.216.134.0/23
88.216.180.0/24
88.216.183.0/24
88.216.187.0-88.216.191.255
88.216.197.0-88.216.198.255
88.216.208.0/24
88.216.211.0-88.216.215.255
88.216.220.0/24
88.216.223.0/24
88.216.228.0/22
88.216.236.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:bd:e1:07:a7:6d:99:0f:c0:53:3a:80:c0:ac:37:27:76:ec:
d9:40:d9:2f:ae:64:03:cf:40:1d:80:7c:cc:17:4e:34:33:14:
c1:33:b9:19:e2:6d:2f:61:6b:7f:6c:de:3b:d9:a5:d1:a9:9c:
dc:82:16:78:6a:62:e8:76:86:c9:77:fb:ba:c5:ce:aa:b4:f4:
bb:fa:5a:5e:2f:05:c7:d3:90:1f:15:79:39:c7:40:25:df:ec:
f9:24:07:a3:f9:d4:b3:19:b3:20:76:51:ff:5d:b3:c2:d0:10:
82:43:8f:a3:76:0f:2c:de:3f:74:e8:ab:88:02:16:43:b8:19:
25:65:86:87:1e:e0:e5:ed:00:a1:1b:6d:89:07:6a:71:41:d9:
92:53:89:f0:3b:2c:a1:52:84:1d:1c:50:79:cb:d3:88:ff:50:
32:21:85:5f:d7:6f:d1:63:5f:25:78:a5:8c:7e:f1:d3:df:e0:
c2:09:9d:f1:ec:9b:5a:05:52:c6:47:bc:26:69:47:ad:27:67:
e7:70:a3:ec:62:09:c4:df:7a:35:b0:30:c3:45:a9:b6:81:57:
e7:c4:53:3d:02:8c:7c:8c:b7:74:71:dc:90:1c:23:5e:4f:79:
a7:e2:7c:da:b4:99:3f:6a:ed:fc:b4:2b:c1:51:8e:3b:b0:ba:
36:52:a1:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 19:49:21 2025 by rpki-client