Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/98ktWO9b98rlV1SMnXAN0D5JDsc.roa
File: 98ktWO9b98rlV1SMnXAN0D5JDsc.roa (raw, json)
Hash identifier: Y2f34ozzFGV1FTKaKzrBCjJ/lzsFNedli4CcIZLIxlU=
Subject key identifier: F7:C9:2D:58:EF:5B:F7:CA:E5:57:54:8C:9D:70:0D:D0:3E:49:0E:C7
Certificate issuer: /CN=bdd244214d76468d3fb72abad1892ef23dede978
Certificate serial: 018A5F9C2A7DC5694598B44CFE5A82AB4326
Authority key identifier: BD:D2:44:21:4D:76:46:8D:3F:B7:2A:BA:D1:89:2E:F2:3D:ED:E9:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vdJEIU12Ro0_tyq60Yku8j3t6Xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/98ktWO9b98rlV1SMnXAN0D5JDsc.roa
Signing time: Mon 04 Sep 2023 09:53:04 +0000
ROA not before: Mon 04 Sep 2023 09:53:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6730
IP address blocks: 81.7.224.0/20 maxlen: 20
81.7.224.0/19 maxlen: 19
178.82.0.0/16 maxlen: 16
81.7.240.0/20 maxlen: 20
178.82.0.0/15 maxlen: 15
84.20.32.0/21 maxlen: 21
84.20.32.0/20 maxlen: 20
84.74.0.0/15 maxlen: 15
84.20.40.0/21 maxlen: 21
84.20.48.0/22 maxlen: 22
84.20.48.0/21 maxlen: 21
84.72.0.0/15 maxlen: 15
84.72.0.0/14 maxlen: 14
46.126.0.0/16 maxlen: 16
46.126.0.0/15 maxlen: 15
46.140.0.0/17 maxlen: 17
46.140.0.0/16 maxlen: 16
62.2.0.0/17 maxlen: 17
62.2.0.0/16 maxlen: 16
31.10.128.0/18 maxlen: 18
31.10.128.0/17 maxlen: 17
84.20.52.0/22 maxlen: 22
80.219.0.0/16 maxlen: 16
31.10.192.0/18 maxlen: 18
46.127.0.0/16 maxlen: 16
46.140.128.0/17 maxlen: 17
80.218.0.0/16 maxlen: 16
80.218.0.0/15 maxlen: 15
62.2.128.0/17 maxlen: 17
178.83.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:9c:2a:7d:c5:69:45:98:b4:4c:fe:5a:82:ab:43:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdd244214d76468d3fb72abad1892ef23dede978
Validity
Not Before: Sep 4 09:53:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7c92d58ef5bf7cae557548c9d700dd03e490ec7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:57:67:c6:0e:04:97:de:95:a1:05:6e:21:16:
c0:2f:e7:b2:8a:7c:67:0c:7e:21:19:db:50:bc:39:
8c:a6:83:12:eb:06:22:53:be:86:9a:20:35:23:56:
3f:fd:f8:ae:ae:6f:fe:7e:01:50:e0:b9:30:99:d8:
17:bd:17:34:d8:25:9b:09:e0:8c:81:ac:e2:f8:55:
4f:32:56:d6:36:c4:3b:ec:a3:99:bc:ac:db:26:ad:
f1:48:72:36:be:5d:bd:0d:6d:a4:85:e1:5a:d0:be:
4e:9c:c3:79:95:4e:c6:63:45:eb:51:bd:e9:0e:c2:
e1:34:88:b3:8b:45:f6:f9:9f:19:e3:d4:2e:4d:e1:
1f:00:59:5d:66:ea:ac:ef:36:1c:0a:8d:54:b3:ce:
21:21:d9:d1:41:ea:d7:27:a9:ca:c6:6c:04:93:52:
68:1b:b1:e0:de:49:85:fe:0f:ef:e6:da:83:a2:2c:
6b:68:e1:d2:2c:ca:22:de:08:15:44:f1:78:6c:d8:
4a:ae:5b:3c:ef:81:3d:78:1e:5e:7d:09:ee:e6:d7:
e6:95:9c:92:f7:5e:32:86:3d:3b:07:09:bf:fc:51:
dc:6f:3b:56:21:7b:5e:04:9a:8f:47:9c:aa:d1:47:
c9:fa:a0:81:c2:2b:be:0a:66:ad:c8:93:f5:80:0f:
4e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:C9:2D:58:EF:5B:F7:CA:E5:57:54:8C:9D:70:0D:D0:3E:49:0E:C7
X509v3 Authority Key Identifier:
keyid:BD:D2:44:21:4D:76:46:8D:3F:B7:2A:BA:D1:89:2E:F2:3D:ED:E9:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vdJEIU12Ro0_tyq60Yku8j3t6Xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/98ktWO9b98rlV1SMnXAN0D5JDsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/vdJEIU12Ro0_tyq60Yku8j3t6Xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.128.0/17
46.126.0.0/15
46.140.0.0/16
62.2.0.0/16
80.218.0.0/15
81.7.224.0/19
84.20.32.0-84.20.55.255
84.72.0.0/14
178.82.0.0/15
Signature Algorithm: sha256WithRSAEncryption
31:5b:f9:cf:2a:18:c9:f9:b4:f9:e2:c7:29:33:93:94:3a:78:
54:b1:7e:8b:41:94:25:2e:9a:d6:d3:9d:5f:b3:e7:dd:a3:af:
b7:b3:5f:e8:1e:af:b5:07:03:05:f8:4a:e1:9d:dc:07:89:31:
4e:bb:c6:24:05:a8:6d:77:55:54:21:cf:7a:72:af:4a:1c:d1:
cf:dc:eb:c1:46:62:80:d3:8f:0c:b1:73:29:d4:74:26:a1:c9:
22:da:1e:9f:fc:2f:5a:53:4c:a8:8c:59:44:f9:a3:9b:bb:a5:
43:ce:6a:a0:b0:98:9f:79:6c:c0:9b:41:8d:6d:35:81:ed:f5:
81:ff:a7:1e:1c:02:85:24:b2:93:ad:3c:9c:c3:28:67:60:2d:
3d:58:81:a8:aa:f2:a5:c9:78:56:85:f4:53:13:8f:fd:46:b6:
8b:17:54:61:ce:a7:60:c5:49:8d:6c:f5:56:54:6d:da:ec:95:
62:3e:87:b1:8a:1b:14:33:f4:6d:95:80:1d:7b:6c:38:ae:29:
31:c1:5f:93:4c:3e:d7:b9:32:28:90:e1:9a:6a:1f:7c:a2:05:
b6:6e:fb:51:47:af:29:1d:ba:db:a7:1b:58:f7:f1:98:9e:09:
8c:08:d9:db:3b:ee:ae:d4:ec:eb:cd:ed:45:94:00:22:37:96:
7c:59:a1:60
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgISAYpfnCp9xWlFmLRM/lqCq0MmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkZDI0NDIxNGQ3NjQ2OGQzZmI3MmFiYWQxODkyZWYyM2Rl
ZGU5NzgwHhcNMjMwOTA0MDk1MzA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmN2M5MmQ1OGVmNWJmN2NhZTU1NzU0OGM5ZDcwMGRkMDNlNDkwZWM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtldnxg4El96VoQVuIRbAL+eyinxn
DH4hGdtQvDmMpoMS6wYiU76GmiA1I1Y//fiurm/+fgFQ4LkwmdgXvRc02CWbCeCM
gazi+FVPMlbWNsQ77KOZvKzbJq3xSHI2vl29DW2kheFa0L5OnMN5lU7GY0XrUb3p
DsLhNIizi0X2+Z8Z49QuTeEfAFldZuqs7zYcCo1Us84hIdnRQerXJ6nKxmwEk1Jo
G7Hg3kmF/g/v5tqDoixraOHSLMoi3ggVRPF4bNhKrls874E9eB5efQnu5tfmlZyS
914yhj07Bwm//FHcbztWIXteBJqPR5yq0UfJ+qCBwiu+CmatyJP1gA9OvwIDAQAB
o4ICOzCCAjcwHQYDVR0OBBYEFPfJLVjvW/fK5VdUjJ1wDdA+SQ7HMB8GA1UdIwQY
MBaAFL3SRCFNdkaNP7cqutGJLvI97el4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmRKRUlVMTJSbzBfdHlxNjBZa3U4ajN0NlhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC83NTZlZWYtNjYyOS00NjNhLTk5ZmYt
NDZhNDNlZjAyMjFiLzEvOThrdFdPOWI5OHJsVjFTTW5YQU4wRDVKRHNjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC83NTZlZWYtNjYyOS00NjNhLTk5ZmYtNDZhNDNlZjAyMjFi
LzEvdmRKRUlVMTJSbzBfdHlxNjBZa3U4ajN0NlhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDA+BAIAATA4AwQHHwqAAwMB
Ln4DAwAujAMDAD4CAwMBUNoDBAVRB+AwDAMEBVQUIAMEA1QUMAMDAlRIAwMBslIw
DQYJKoZIhvcNAQELBQADggEBADFb+c8qGMn5tPnixykzk5Q6eFSxfotBlCUumtbT
nV+z592jr7ezX+ger7UHAwX4SuGd3AeJMU67xiQFqG13VVQhz3pyr0oc0c/c68FG
YoDTjwyxcynUdCahySLaHp/8L1pTTKiMWUT5o5u7pUPOaqCwmJ95bMCbQY1tNYHt
9YH/px4cAoUkspOtPJzDKGdgLT1Ygaiq8qXJeFaF9FMTj/1GtosXVGHOp2DFSY1s
9VZUbdrslWI+h7GKGxQz9G2VgB17bDiuKTHBX5NMPte5MiiQ4ZpqH3yiBbZu+1FH
rykdutunG1j38ZieCYwI2ds77q7U7OvN7UWUACI3lnxZoWA=
-----END CERTIFICATE-----
Generated at Wed May 14 16:06:01 2025 by rpki-client