Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/MvCC4oKAj3ou221higx9w7hGIjw.roa
File: MvCC4oKAj3ou221higx9w7hGIjw.roa (raw, json)
Hash identifier: vZnSWKrkP8+8s4Ra+cZEZ/ZWV0UEG4NwV6lTQNpdV8o=
Subject key identifier: 32:F0:82:E2:82:80:8F:7A:2E:DB:6D:61:8A:0C:7D:C3:B8:46:22:3C
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018A6F7774E92530C2FE6EA7E3F131E00E5F
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/MvCC4oKAj3ou221higx9w7hGIjw.roa
Signing time: Thu 07 Sep 2023 11:46:54 +0000
ROA not before: Thu 07 Sep 2023 11:46:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 45.83.148.0/22 maxlen: 24
2.56.172.0/22 maxlen: 24
2.56.176.0/22 maxlen: 24
2.56.117.0/24 maxlen: 24
2.56.118.0/23 maxlen: 24
2.56.120.0/22 maxlen: 24
2.56.124.0/22 maxlen: 24
45.83.128.0/22 maxlen: 24
45.83.140.0/22 maxlen: 24
185.106.97.0/24 maxlen: 24
185.106.98.0/23 maxlen: 24
139.28.233.0/24 maxlen: 24
139.28.234.0/23 maxlen: 24
45.15.125.0/24 maxlen: 24
45.86.60.0/22 maxlen: 24
45.86.64.0/23 maxlen: 24
45.15.128.0/22 maxlen: 24
45.15.126.0/23 maxlen: 24
45.86.68.0/22 maxlen: 24
45.86.67.0/24 maxlen: 24
45.15.142.0/24 maxlen: 24
45.86.74.0/23 maxlen: 24
45.86.76.0/22 maxlen: 24
45.15.140.0/23 maxlen: 24
45.15.144.0/22 maxlen: 24
45.86.72.0/24 maxlen: 24
45.92.165.0/24 maxlen: 24
45.92.164.0/24 maxlen: 24
45.92.160.0/22 maxlen: 24
45.92.164.0/22 maxlen: 24
45.89.96.0/24 maxlen: 24
45.89.98.0/24 maxlen: 24
45.89.105.0/24 maxlen: 24
45.89.106.0/23 maxlen: 24
45.89.108.0/22 maxlen: 24
171.22.138.0/24 maxlen: 24
45.12.108.0/22 maxlen: 24
45.12.112.0/22 maxlen: 24
45.9.12.0/22 maxlen: 24
45.9.16.0/22 maxlen: 24
171.22.136.0/23 maxlen: 24
45.12.128.0/22 maxlen: 24
45.12.132.0/22 maxlen: 24
45.12.136.0/22 maxlen: 24
194.76.136.0/22 maxlen: 24
45.12.140.0/22 maxlen: 24
45.12.144.0/22 maxlen: 24
45.12.149.0/24 maxlen: 24
45.83.84.0/22 maxlen: 24
45.12.150.0/23 maxlen: 24
45.82.245.0/24 maxlen: 24
45.15.152.0/22 maxlen: 24
45.82.246.0/23 maxlen: 24
185.153.180.0/22 maxlen: 24
45.82.248.0/22 maxlen: 24
45.82.252.0/22 maxlen: 24
45.15.160.0/22 maxlen: 24
45.15.164.0/22 maxlen: 24
45.89.196.0/22 maxlen: 24
45.15.168.0/22 maxlen: 24
171.22.110.0/23 maxlen: 24
45.15.176.0/24 maxlen: 24
171.22.112.0/22 maxlen: 24
171.22.109.0/24 maxlen: 24
45.15.178.0/23 maxlen: 24
171.22.116.0/22 maxlen: 24
45.15.184.0/22 maxlen: 24
45.83.20.0/22 maxlen: 24
45.83.24.0/22 maxlen: 24
171.22.120.0/22 maxlen: 24
171.22.124.0/22 maxlen: 24
171.22.128.0/22 maxlen: 24
171.22.132.0/22 maxlen: 24
45.88.160.0/22 maxlen: 24
45.88.168.0/22 maxlen: 24
45.88.176.0/22 maxlen: 24
45.88.181.0/24 maxlen: 24
45.88.182.0/23 maxlen: 24
185.203.4.0/22 maxlen: 24
141.98.160.0/22 maxlen: 24
141.98.164.0/22 maxlen: 24
185.156.108.0/22 maxlen: 24
185.166.152.0/22 maxlen: 24
45.92.140.0/22 maxlen: 24
45.128.56.0/24 maxlen: 24
45.128.58.0/24 maxlen: 24
45.128.52.0/22 maxlen: 24
45.128.56.0/23 maxlen: 24
45.128.74.0/24 maxlen: 24
45.128.72.0/22 maxlen: 24
45.128.48.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6f:77:74:e9:25:30:c2:fe:6e:a7:e3:f1:31:e0:0e:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 7 11:46:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32f082e282808f7a2edb6d618a0c7dc3b846223c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c3:6a:f4:5e:45:c5:e3:7b:6d:74:74:c6:0f:
8d:7a:1e:45:fe:d5:55:28:62:96:73:4d:f7:c0:37:
29:13:66:16:d4:ee:0b:74:4a:22:84:3d:38:59:23:
9c:95:d5:8b:9e:4e:16:9f:50:76:e9:b3:32:3c:ed:
5f:8f:b6:d9:0b:67:eb:ea:a3:0a:ed:8a:b7:41:db:
21:a5:38:83:cd:c3:25:f3:49:1a:bd:ea:f8:d9:9a:
d9:20:d4:3c:3d:75:22:12:a9:8e:38:32:83:0a:88:
cc:4c:6b:69:33:fd:b0:f8:dc:8b:13:df:6b:5d:8d:
db:8e:7b:b3:a2:96:4d:20:1d:b5:47:5f:1b:bc:d0:
b8:af:16:53:22:f7:0b:b2:97:5b:8d:9b:2e:a1:de:
1a:b8:d9:dd:b7:c3:df:75:66:25:27:17:4b:ef:d3:
3c:e1:40:68:44:4f:00:6f:9a:dd:b3:5d:62:2c:f5:
d1:ef:b7:57:04:52:54:4d:40:f2:f2:65:ff:db:a3:
89:f7:30:0c:bf:9c:4b:71:10:bc:42:1c:b7:12:f6:
e9:60:ae:c4:6b:81:05:30:ea:d1:84:22:54:56:3a:
00:1e:ec:c1:69:6e:3e:28:85:22:47:ae:8d:24:ff:
16:e4:d6:de:0c:ec:50:fe:72:e1:89:3d:29:df:a6:
a2:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:F0:82:E2:82:80:8F:7A:2E:DB:6D:61:8A:0C:7D:C3:B8:46:22:3C
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/MvCC4oKAj3ou221higx9w7hGIjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.117.0-2.56.127.255
2.56.172.0-2.56.179.255
45.9.12.0-45.9.19.255
45.12.108.0-45.12.115.255
45.12.128.0-45.12.147.255
45.12.149.0-45.12.151.255
45.15.125.0-45.15.131.255
45.15.140.0-45.15.142.255
45.15.144.0/22
45.15.152.0/22
45.15.160.0-45.15.171.255
45.15.176.0/24
45.15.178.0/23
45.15.184.0/22
45.82.245.0-45.82.255.255
45.83.20.0-45.83.27.255
45.83.84.0/22
45.83.128.0/22
45.83.140.0/22
45.83.148.0/22
45.86.60.0-45.86.65.255
45.86.67.0-45.86.72.255
45.86.74.0-45.86.79.255
45.88.160.0/22
45.88.168.0/22
45.88.176.0/22
45.88.181.0-45.88.183.255
45.89.96.0/24
45.89.98.0/24
45.89.105.0-45.89.111.255
45.89.196.0/22
45.92.140.0/22
45.92.160.0/21
45.128.48.0-45.128.58.255
45.128.72.0/22
139.28.233.0-139.28.235.255
141.98.160.0/21
171.22.109.0-171.22.138.255
185.106.97.0-185.106.99.255
185.153.180.0/22
185.156.108.0/22
185.166.152.0/22
185.203.4.0/22
194.76.136.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:36:80:d5:f6:12:c1:bc:bf:46:6f:2c:23:fb:da:d0:ff:da:
d3:5a:a3:32:8e:80:6c:3b:00:d7:77:51:71:bc:69:d7:2b:ea:
f3:71:ea:bb:96:93:ac:ef:de:55:83:07:00:e0:40:3d:d4:e1:
01:01:41:ce:d8:5a:09:df:bf:4f:2e:84:de:3e:04:29:8b:3e:
ca:70:c6:cf:cf:71:30:02:58:84:d0:5d:32:82:d0:80:64:03:
81:32:9f:ec:86:13:34:bb:de:84:fb:7b:85:d3:9a:d1:9a:94:
10:20:54:8b:19:6d:a2:68:cc:37:d5:ac:a2:b4:49:ef:93:8a:
78:ef:b8:fe:af:56:6d:f0:25:90:d8:90:34:fd:7a:fc:c2:d5:
e0:e6:22:99:e1:56:fe:53:47:9b:2c:9c:60:f7:aa:a4:55:11:
2f:14:45:c9:2a:93:5f:fb:88:62:9a:c2:8c:5e:0f:72:aa:ee:
83:2b:4b:04:5c:47:e4:e4:77:a9:43:c3:b0:b6:aa:10:25:93:
32:e4:f5:ef:67:89:3b:69:37:b8:79:e9:a4:f9:8c:98:ee:f4:
27:e2:84:9f:58:02:a4:62:7c:27:e3:a2:e0:d1:e0:85:03:5b:
d4:11:26:9f:22:45:21:fd:c9:9d:56:d7:c7:f6:c7:de:33:c3:
0e:97:73:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 04:20:51 2025 by rpki-client