Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/mV5uHdBG-4gMxeqOQgB1PCfg6AY.roa
File: mV5uHdBG-4gMxeqOQgB1PCfg6AY.roa (raw, json)
Hash identifier: 0gIEVei3+hYvd4HkZiL2m5MzzJRZfl6IPRseN1g+5ao=
Subject key identifier: 99:5E:6E:1D:D0:46:FB:88:0C:C5:EA:8E:42:00:75:3C:27:E0:E8:06
Certificate issuer: /CN=83479514959397c5e3fa76e1ea495e8e1f6c319b
Certificate serial: 0187752BA9B492C57B3058E48E142A984B4B
Authority key identifier: 83:47:95:14:95:93:97:C5:E3:FA:76:E1:EA:49:5E:8E:1F:6C:31:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g0eVFJWTl8Xj-nbh6klejh9sMZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/mV5uHdBG-4gMxeqOQgB1PCfg6AY.roa
Signing time: Wed 12 Apr 2023 11:13:28 +0000
ROA not before: Wed 12 Apr 2023 11:13:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13030
IP address blocks: 37.17.232.0/21 maxlen: 21
81.6.32.0/20 maxlen: 20
185.137.172.0/22 maxlen: 22
212.51.128.0/20 maxlen: 20
212.51.128.0/19 maxlen: 19
212.51.144.0/20 maxlen: 20
185.72.64.0/22 maxlen: 22
185.72.67.0/24 maxlen: 24
185.201.248.0/22 maxlen: 22
141.195.80.0/20 maxlen: 20
213.144.128.0/20 maxlen: 20
213.144.128.0/19 maxlen: 19
45.80.136.0/22 maxlen: 22
213.144.144.0/20 maxlen: 20
77.74.80.0/21 maxlen: 21
85.195.192.0/20 maxlen: 20
77.109.128.0/19 maxlen: 19
77.109.128.0/18 maxlen: 18
185.183.192.0/22 maxlen: 22
77.109.160.0/19 maxlen: 19
82.197.176.0/20 maxlen: 20
109.202.192.0/19 maxlen: 19
80.253.88.0/21 maxlen: 21
193.47.153.0/24 maxlen: 24
85.195.208.0/20 maxlen: 20
85.195.224.0/20 maxlen: 20
85.195.224.0/19 maxlen: 19
185.246.104.0/22 maxlen: 22
82.197.160.0/19 maxlen: 19
85.195.240.0/20 maxlen: 20
82.197.160.0/20 maxlen: 20
2a02:169::/32 maxlen: 32
2a02:168::/32 maxlen: 32
2a02:168::/30 maxlen: 30
2a07:600::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:75:2b:a9:b4:92:c5:7b:30:58:e4:8e:14:2a:98:4b:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83479514959397c5e3fa76e1ea495e8e1f6c319b
Validity
Not Before: Apr 12 11:13:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=995e6e1dd046fb880cc5ea8e4200753c27e0e806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ba:81:ea:37:e3:4e:9b:fb:cc:82:af:e5:fc:
aa:ee:c4:66:82:5c:df:30:90:33:d0:54:a8:2a:dd:
8d:4b:d9:53:f0:2c:34:c7:2c:2e:e5:91:17:1a:e2:
22:5a:1c:30:80:98:eb:c2:64:10:bd:49:52:bc:e1:
a1:49:93:4b:a2:9b:73:3a:4f:81:9a:08:5a:7c:11:
a4:52:da:52:a6:91:f5:e4:e6:75:fe:a3:9b:58:41:
4a:e6:77:66:2d:70:ff:af:a1:41:79:d6:cb:1e:91:
af:9c:e1:13:dc:45:80:93:b8:17:c3:0e:4a:48:7e:
27:c9:de:e0:0d:8b:7a:bd:6d:01:58:ba:a3:81:9c:
18:4c:50:f5:bc:77:5d:e4:9c:8a:1c:16:00:9d:7d:
d8:45:a0:4a:11:16:b0:3c:d0:c7:26:90:bc:e8:a4:
33:30:f2:0f:9e:5b:06:5f:00:70:b8:91:b3:20:f8:
2c:a5:f4:de:d8:50:76:ea:09:06:46:2d:62:40:06:
cd:3c:84:be:0d:ad:20:89:44:7c:ea:67:0f:cb:90:
02:b5:20:30:90:54:79:05:7d:17:6b:52:9b:4a:f3:
9c:c4:15:c9:a8:07:cb:a9:f9:f6:1e:48:62:d0:88:
d7:e4:e8:e7:92:6a:16:91:c7:a2:3f:b1:cc:84:0f:
03:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:5E:6E:1D:D0:46:FB:88:0C:C5:EA:8E:42:00:75:3C:27:E0:E8:06
X509v3 Authority Key Identifier:
keyid:83:47:95:14:95:93:97:C5:E3:FA:76:E1:EA:49:5E:8E:1F:6C:31:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g0eVFJWTl8Xj-nbh6klejh9sMZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/mV5uHdBG-4gMxeqOQgB1PCfg6AY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/g0eVFJWTl8Xj-nbh6klejh9sMZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.17.232.0/21
45.80.136.0/22
77.74.80.0/21
77.109.128.0/18
80.253.88.0/21
81.6.32.0/20
82.197.160.0/19
85.195.192.0/18
109.202.192.0/19
141.195.80.0/20
185.72.64.0/22
185.137.172.0/22
185.183.192.0/22
185.201.248.0/22
185.246.104.0/22
193.47.153.0/24
212.51.128.0/19
213.144.128.0/19
IPv6:
2a02:168::/30
2a07:600::/29
Signature Algorithm: sha256WithRSAEncryption
78:9f:cb:6b:8d:26:bb:b7:fb:89:fb:58:53:f4:2e:03:07:47:
83:06:15:8b:f7:82:84:53:89:50:dd:11:8f:7c:62:e5:1d:74:
13:28:40:fc:4d:f6:84:c4:0f:87:eb:6a:cd:d2:a4:6b:38:6c:
37:65:be:6d:28:e9:36:b6:48:d2:aa:1e:50:97:f1:c3:17:fc:
80:cb:e3:77:c7:df:b5:73:1e:9b:f0:fc:e5:91:a1:4c:30:da:
94:d3:dd:b7:6b:c6:f3:96:1c:52:f6:86:58:2e:a3:7e:af:96:
53:29:60:9a:33:61:a7:57:5f:ca:26:e9:a0:cc:6a:7f:0f:03:
37:f1:a0:7d:7e:a5:4e:72:21:1c:98:ed:d5:3d:a7:c4:60:8a:
36:55:ba:98:7f:fa:a5:ed:4e:2e:78:bf:3a:d6:55:4b:2f:25:
2d:54:18:5d:ae:9c:18:a5:61:40:cf:6c:ed:35:a3:e7:d5:9e:
14:b4:b6:48:e4:23:dc:04:b2:8c:29:80:2f:92:c2:50:18:70:
64:73:33:e4:6e:73:fc:1c:e1:d2:e1:79:9d:49:2f:6d:f2:51:
58:a4:7e:f3:97:02:48:60:c4:6c:7f:16:d5:a2:1d:8c:3d:08:
81:0b:f9:09:2c:14:51:60:e1:20:68:99:9d:88:2a:11:57:91:
08:0f:03:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 02:21:33 2025 by rpki-client