Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/7fyAV0ara1kMUwkX5MBoMHAd9gI.roa
File: 7fyAV0ara1kMUwkX5MBoMHAd9gI.roa (raw, json)
Hash identifier: 1jx7VN1id/JMjx1ks2xONHd0hQjX8xs37zsrnwpneEE=
Subject key identifier: ED:FC:80:57:46:AB:6B:59:0C:53:09:17:E4:C0:68:30:70:1D:F6:02
Certificate issuer: /CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Certificate serial: 018B99FBC5B5B96D1E5E0256D00F45820C5F
Authority key identifier: 66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/7fyAV0ara1kMUwkX5MBoMHAd9gI.roa
Signing time: Sat 04 Nov 2023 10:58:16 +0000
ROA not before: Sat 04 Nov 2023 10:58:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34170
IP address blocks: 158.181.36.0/24 maxlen: 24
158.181.37.0/24 maxlen: 24
158.181.35.0/24 maxlen: 24
158.181.38.0/24 maxlen: 24
158.181.33.0/24 maxlen: 24
158.181.34.0/24 maxlen: 24
158.181.32.0/24 maxlen: 24
158.181.39.0/24 maxlen: 24
158.181.44.0/23 maxlen: 23
158.181.46.0/23 maxlen: 23
80.69.48.0/24 maxlen: 24
80.69.50.0/24 maxlen: 24
80.69.51.0/24 maxlen: 24
80.69.49.0/24 maxlen: 24
80.69.57.0/24 maxlen: 24
80.69.58.0/24 maxlen: 24
80.69.56.0/24 maxlen: 24
80.69.54.0/24 maxlen: 24
80.69.55.0/24 maxlen: 24
80.69.52.0/24 maxlen: 24
80.69.53.0/24 maxlen: 24
80.69.61.0/24 maxlen: 24
80.69.62.0/24 maxlen: 24
80.69.59.0/24 maxlen: 24
80.69.60.0/24 maxlen: 24
80.69.63.0/24 maxlen: 24
92.39.92.0/24 maxlen: 24
92.39.95.0/24 maxlen: 24
92.39.93.0/24 maxlen: 24
92.39.94.0/24 maxlen: 24
92.39.88.0/24 maxlen: 24
92.39.91.0/24 maxlen: 24
92.39.89.0/24 maxlen: 24
92.39.90.0/24 maxlen: 24
91.135.240.0/24 maxlen: 24
91.135.241.0/24 maxlen: 24
91.135.244.0/24 maxlen: 24
91.135.245.0/24 maxlen: 24
91.135.242.0/24 maxlen: 24
91.135.243.0/24 maxlen: 24
91.135.246.0/24 maxlen: 24
91.135.248.0/24 maxlen: 24
91.135.247.0/24 maxlen: 24
91.135.251.0/24 maxlen: 24
91.135.252.0/24 maxlen: 24
91.135.249.0/24 maxlen: 24
91.135.250.0/24 maxlen: 24
91.135.253.0/24 maxlen: 24
91.135.255.0/24 maxlen: 24
91.135.254.0/24 maxlen: 24
185.105.198.0/24 maxlen: 24
185.105.199.0/24 maxlen: 24
185.105.196.0/24 maxlen: 24
185.105.197.0/24 maxlen: 24
212.47.128.0/22 maxlen: 22
212.47.132.0/22 maxlen: 22
212.47.136.0/22 maxlen: 22
212.47.140.0/22 maxlen: 22
212.47.152.0/24 maxlen: 24
212.47.154.0/24 maxlen: 24
212.47.157.0/24 maxlen: 24
212.47.158.0/24 maxlen: 24
212.47.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:99:fb:c5:b5:b9:6d:1e:5e:02:56:d0:0f:45:82:0c:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Validity
Not Before: Nov 4 10:58:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=edfc805746ab6b590c530917e4c06830701df602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f9:33:28:af:30:0f:19:52:c8:1e:cc:24:fd:
4f:73:01:9b:6e:d7:ad:3a:ac:94:26:a3:ba:9b:20:
83:30:75:f2:09:62:51:8d:f2:c5:8a:f9:94:37:0c:
b8:2c:dd:18:89:41:29:c7:48:b9:3c:40:c9:42:72:
e3:8e:14:b3:1a:fa:f1:3e:5f:75:5e:5d:9c:65:0e:
e9:ca:48:47:c0:40:80:bd:f6:14:48:c9:ca:46:2f:
e1:7f:50:ff:76:3a:6a:b8:22:1a:84:0d:4d:b2:ad:
17:32:74:ea:30:ae:2c:89:2a:21:b6:9a:50:44:13:
3e:5c:98:8a:79:f9:43:2c:56:44:94:ce:68:0e:74:
af:bb:5d:86:b0:b9:2e:21:73:7e:e8:78:5e:e6:3a:
a5:c6:34:48:39:94:2c:4f:bf:b6:d4:59:4d:6c:99:
1c:92:61:b0:d0:f4:2c:1d:f9:d9:58:74:e7:5b:31:
a8:e3:8d:93:31:d6:7e:a8:99:8f:08:42:25:9d:a7:
e8:45:5d:70:43:a0:51:c6:9d:25:80:c7:10:5a:fd:
9e:5e:be:f8:c3:ec:a8:25:3d:b1:a4:ee:02:bb:e3:
83:ca:bc:97:ff:c3:2c:c5:de:9a:80:57:b3:11:47:
a5:05:a7:76:2b:19:62:1f:68:e4:d4:f8:e1:48:b4:
bb:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:FC:80:57:46:AB:6B:59:0C:53:09:17:E4:C0:68:30:70:1D:F6:02
X509v3 Authority Key Identifier:
keyid:66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/7fyAV0ara1kMUwkX5MBoMHAd9gI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.69.48.0/20
91.135.240.0/20
92.39.88.0/21
158.181.32.0/21
158.181.44.0/22
185.105.196.0/22
212.47.128.0/20
212.47.152.0/24
212.47.154.0/24
212.47.157.0-212.47.159.255
Signature Algorithm: sha256WithRSAEncryption
8c:41:2f:e6:99:93:37:67:9f:49:df:2c:d4:75:6a:88:3f:6f:
1b:eb:d5:7a:70:e6:9b:ec:3a:1f:86:f9:c0:39:fb:a7:92:8f:
12:9f:f7:38:1a:07:b8:87:19:2a:43:f2:4a:8e:02:24:e4:b3:
01:4e:90:76:77:0e:aa:05:4d:85:bb:5a:28:2e:a0:b9:ac:71:
fd:a5:8c:0f:27:47:e9:0c:9c:2d:c1:90:e0:90:79:ab:4c:8c:
a1:e9:e9:41:75:77:6c:3d:17:19:fc:db:8d:3d:8d:69:86:96:
ba:37:76:0a:b8:76:56:c1:d6:b5:b2:91:12:b2:d1:ba:9c:1e:
de:c9:41:45:d5:c2:e8:4e:e1:c0:91:6b:a3:a9:16:18:69:75:
d9:0a:84:7e:8e:53:eb:f4:2e:f4:4b:0f:5c:c3:a6:ae:37:56:
3a:4c:94:cb:a2:a7:fb:5c:30:41:2e:ac:06:94:13:d5:6b:5e:
90:02:6e:80:7e:2f:5a:b4:4f:69:b6:01:21:11:d2:c9:79:cb:
dd:47:1f:45:bd:b6:cd:0f:f7:af:5c:81:60:a0:46:33:dd:d5:
40:0c:9b:26:82:40:d0:ac:25:d7:d8:1d:16:f5:94:45:a9:01:
b6:ac:d4:e2:28:91:c9:93:f8:51:59:5f:5c:42:1c:d7:f2:a8:
aa:43:49:18
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun May 11 00:55:16 2025 by rpki-client