Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/SNqig_dFYjskzWyDppg3nUNBx-0.roa
File: SNqig_dFYjskzWyDppg3nUNBx-0.roa (raw, json)
Hash identifier: wwn4R00kUcK/I8E/MjQ7Wu5gMw3lhojycbT9IxrX84s=
Subject key identifier: 48:DA:A2:83:F7:45:62:3B:24:CD:6C:83:A6:98:37:9D:43:41:C7:ED
Certificate issuer: /CN=89da60f049dfba34be4b4e8418b9ff492125c449
Certificate serial: 01867DA34443056F79CEB1CD5D4567E6AB3E
Authority key identifier: 89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/SNqig_dFYjskzWyDppg3nUNBx-0.roa
Signing time: Thu 23 Feb 2023 09:38:17 +0000
ROA not before: Thu 23 Feb 2023 09:38:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15802
IP address blocks: 5.31.96.0/19 maxlen: 19
94.203.44.0/23 maxlen: 23
94.206.152.0/23 maxlen: 23
94.203.62.0/23 maxlen: 23
94.206.181.0/24 maxlen: 24
94.206.112.0/23 maxlen: 23
94.200.0.0/13 maxlen: 19
94.201.251.0/24 maxlen: 24
87.201.176.0/22 maxlen: 22
87.201.180.0/22 maxlen: 22
87.201.184.0/22 maxlen: 22
87.200.0.0/15 maxlen: 19
94.201.196.0/22 maxlen: 22
80.227.0.0/16 maxlen: 19
91.72.0.0/14 maxlen: 19
91.73.216.0/23 maxlen: 23
5.32.64.0/19 maxlen: 19
91.72.204.0/24 maxlen: 24
5.32.96.0/19 maxlen: 19
91.72.205.0/24 maxlen: 24
91.72.206.0/24 maxlen: 24
94.203.204.0/22 maxlen: 22
91.74.78.0/23 maxlen: 23
213.132.32.0/19 maxlen: 19
94.206.74.0/23 maxlen: 23
80.227.200.0/22 maxlen: 22
94.200.248.0/22 maxlen: 22
94.206.16.0/23 maxlen: 23
94.206.21.0/24 maxlen: 24
2a00:f2b::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7d:a3:44:43:05:6f:79:ce:b1:cd:5d:45:67:e6:ab:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89da60f049dfba34be4b4e8418b9ff492125c449
Validity
Not Before: Feb 23 09:38:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48daa283f745623b24cd6c83a698379d4341c7ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:cd:ff:20:33:19:d5:dd:89:be:91:4e:5c:3d:
96:fe:dd:b0:fc:f5:fb:31:27:01:cc:65:79:cd:1b:
3d:07:e6:7a:21:bb:29:b3:f2:8e:97:00:81:ea:42:
45:08:13:16:7b:d5:79:df:bb:2c:74:22:11:4a:78:
5a:d4:46:00:da:6e:fb:01:ae:e4:4d:50:1b:11:5c:
29:8e:25:1a:43:f6:ec:b6:5d:2a:ad:51:07:3d:c4:
79:fd:24:cc:2b:fe:1c:96:66:7f:70:70:67:61:e8:
36:36:f5:98:22:37:6c:be:77:b9:50:ae:b8:b8:72:
45:78:c2:01:ce:d1:9b:7b:09:b2:c0:0f:95:6c:ae:
28:c5:d9:14:44:12:02:4c:52:88:7e:b7:a9:f4:92:
6c:2a:5c:ab:58:77:2f:5b:09:1d:cc:34:a2:7f:1c:
b5:47:0f:c7:a6:e3:39:de:12:04:14:24:72:cf:65:
ae:2c:5b:41:6d:57:5e:e0:6b:93:55:8c:f6:94:14:
98:97:21:14:cd:7c:ee:1c:e8:a9:d0:ab:4c:d1:f4:
a7:2c:a1:28:21:5d:7a:a2:56:61:eb:ec:3b:3e:3f:
f9:20:f7:ca:51:a4:bd:9a:b5:cc:b1:6a:3f:0f:42:
30:87:c1:b8:70:8c:bd:77:f8:70:70:50:73:e6:10:
00:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:DA:A2:83:F7:45:62:3B:24:CD:6C:83:A6:98:37:9D:43:41:C7:ED
X509v3 Authority Key Identifier:
keyid:89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/SNqig_dFYjskzWyDppg3nUNBx-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/idpg8EnfujS-S06EGLn_SSElxEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.31.96.0/19
5.32.64.0/18
80.227.0.0/16
87.200.0.0/15
91.72.0.0/14
94.200.0.0/13
213.132.32.0/19
IPv6:
2a00:f2b::/32
Signature Algorithm: sha256WithRSAEncryption
a5:b3:7f:4d:6a:3f:7b:aa:da:65:8f:b4:6f:3c:7e:19:fc:29:
34:67:88:95:32:7a:5c:b0:d9:ed:ca:e0:48:c1:13:1a:ba:80:
75:99:1e:8c:6a:da:67:fa:60:47:cc:53:0f:57:20:3b:90:07:
48:ce:2b:f4:8a:f3:a9:76:65:28:3f:23:f1:3b:ec:d0:7c:3a:
08:12:24:90:55:50:20:cd:94:06:7f:c6:2f:36:32:15:ac:94:
b6:ec:8b:69:8a:b8:b2:be:39:a0:a7:b2:ff:ab:1e:67:f6:a6:
75:1a:70:cd:79:65:5e:06:19:68:37:c2:0c:47:32:f5:5b:47:
3f:39:c4:10:0b:92:f0:87:e1:81:44:e4:b0:cd:06:0d:c9:26:
f4:96:09:45:e3:92:22:c9:ec:81:4b:f7:3d:36:cd:f6:05:de:
93:de:36:b4:59:1c:31:8e:28:97:d3:cf:d1:04:1f:3a:96:96:
4b:1f:e0:06:09:26:4b:10:14:57:14:ec:22:d9:7f:50:be:5a:
28:75:6c:96:1c:fb:9b:4d:3f:bb:03:56:4f:db:cd:73:fb:0a:
b4:36:4f:db:64:5c:7a:62:da:3e:29:2a:63:be:b0:57:a3:d6:
c6:b2:2a:9a:79:78:e8:ec:5f:32:28:66:b5:ee:df:d6:9d:0c:
ab:df:17:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 23:41:00 2025 by rpki-client