Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/eFaHDg7T9r93FHBanYS9_YaJmS0.roa
File: eFaHDg7T9r93FHBanYS9_YaJmS0.roa (raw, json)
Hash identifier: L5ZGGhYhiCe5wInHpfEPEqEZEShs7/3ngFcDrWGjm/w=
Subject key identifier: 78:56:87:0E:0E:D3:F6:BF:77:14:70:5A:9D:84:BD:FD:86:89:99:2D
Certificate issuer: /CN=97429de8bcc3be474abbda2be2a89d0f3208c385
Certificate serial: 018AB705FB7E9D90BBC7C752418B8616CC0F
Authority key identifier: 97:42:9D:E8:BC:C3:BE:47:4A:BB:DA:2B:E2:A8:9D:0F:32:08:C3:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l0Kd6LzDvkdKu9or4qidDzIIw4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/eFaHDg7T9r93FHBanYS9_YaJmS0.roa
Signing time: Thu 21 Sep 2023 09:15:37 +0000
ROA not before: Thu 21 Sep 2023 09:15:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41833
IP address blocks: 95.141.48.0/20 maxlen: 20
95.141.49.0/24 maxlen: 24
95.141.48.0/24 maxlen: 24
95.141.57.0/24 maxlen: 24
95.141.58.0/24 maxlen: 24
95.141.55.0/24 maxlen: 24
95.141.56.0/24 maxlen: 24
95.141.62.0/24 maxlen: 24
95.141.63.0/24 maxlen: 24
95.141.61.0/24 maxlen: 24
95.141.59.0/24 maxlen: 24
95.141.60.0/24 maxlen: 24
46.227.255.0/24 maxlen: 24
46.227.254.0/24 maxlen: 24
46.227.253.0/24 maxlen: 24
46.227.251.0/24 maxlen: 24
46.227.249.0/24 maxlen: 24
46.227.248.0/21 maxlen: 21
46.227.248.0/24 maxlen: 24
46.227.252.0/24 maxlen: 24
185.58.201.0/24 maxlen: 24
185.58.202.0/24 maxlen: 24
185.58.200.0/24 maxlen: 24
185.58.200.0/22 maxlen: 22
93.185.231.0/29 maxlen: 29
93.185.229.0/24 maxlen: 24
93.185.233.0/24 maxlen: 24
93.185.231.0/24 maxlen: 24
141.138.191.0/24 maxlen: 24
93.185.232.0/24 maxlen: 24
141.138.189.0/24 maxlen: 24
93.185.230.0/24 maxlen: 24
141.138.187.0/24 maxlen: 24
141.138.188.0/24 maxlen: 24
93.185.228.0/24 maxlen: 24
93.185.227.0/24 maxlen: 24
93.185.238.0/24 maxlen: 24
93.185.239.0/24 maxlen: 24
93.185.236.0/24 maxlen: 24
93.185.237.0/24 maxlen: 24
93.185.235.0/24 maxlen: 24
89.249.212.0/24 maxlen: 24
89.249.213.0/24 maxlen: 24
89.249.210.0/24 maxlen: 24
89.249.211.0/24 maxlen: 24
89.249.208.0/24 maxlen: 24
89.249.209.0/24 maxlen: 24
89.249.208.0/20 maxlen: 20
141.138.178.0/24 maxlen: 24
89.249.219.0/24 maxlen: 24
141.138.176.0/20 maxlen: 20
141.138.179.0/24 maxlen: 24
89.249.217.0/24 maxlen: 24
141.138.177.0/24 maxlen: 24
89.249.218.0/24 maxlen: 24
89.249.215.0/24 maxlen: 24
141.138.176.0/24 maxlen: 24
89.249.214.0/24 maxlen: 24
141.138.182.0/24 maxlen: 24
89.249.222.0/24 maxlen: 24
89.249.223.0/24 maxlen: 24
141.138.183.0/24 maxlen: 24
141.138.184.0/24 maxlen: 24
141.138.185.0/24 maxlen: 24
141.138.186.0/24 maxlen: 24
141.138.180.0/24 maxlen: 24
93.185.226.0/24 maxlen: 24
93.185.225.0/24 maxlen: 24
93.185.224.0/20 maxlen: 20
93.185.224.0/24 maxlen: 24
89.249.221.0/24 maxlen: 24
141.138.181.0/24 maxlen: 24
89.249.220.0/24 maxlen: 24
2a02:f50::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b7:05:fb:7e:9d:90:bb:c7:c7:52:41:8b:86:16:cc:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97429de8bcc3be474abbda2be2a89d0f3208c385
Validity
Not Before: Sep 21 09:15:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7856870e0ed3f6bf7714705a9d84bdfd8689992d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:aa:8a:9c:fc:21:e7:7a:d0:d9:23:09:97:d0:
ee:28:f0:a8:b8:72:7e:91:14:3d:dd:8d:73:1b:4f:
c7:fa:94:12:e3:00:a8:7d:87:2d:2d:5b:d7:cc:b3:
a3:85:30:c2:92:21:18:51:d7:b3:3a:da:df:b1:07:
ab:e4:24:ff:d8:02:c7:47:19:14:e0:1a:b4:f8:5e:
60:88:3f:dc:3b:46:44:6d:e0:b9:6b:b9:44:be:b7:
03:75:96:1e:d2:dd:14:84:5a:3d:aa:37:cf:9a:3c:
b8:f8:f2:8f:f0:4b:16:02:e9:3d:d0:23:c6:54:28:
94:d7:d7:8a:94:dd:4e:b7:c1:2f:4c:8b:58:8d:e5:
1b:9e:0d:f1:c2:94:1b:de:20:1d:12:65:e5:c9:62:
82:6c:41:42:0b:5e:a9:86:61:60:5b:38:a7:5e:89:
76:1a:5f:1b:37:70:b8:cd:b3:98:34:62:85:a2:bd:
41:09:80:8a:29:78:7f:fc:8f:47:c0:9b:cb:c6:29:
6d:89:02:20:de:27:1b:4f:df:cf:4c:02:9d:ea:55:
e3:89:f2:5d:2c:16:79:22:6a:4b:8e:fc:01:31:9a:
0d:5a:4d:cc:6e:f5:dc:e9:32:e9:ca:7d:51:fe:b0:
19:a7:9e:29:e9:8a:e1:db:69:f7:d9:1f:e9:15:4d:
44:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:56:87:0E:0E:D3:F6:BF:77:14:70:5A:9D:84:BD:FD:86:89:99:2D
X509v3 Authority Key Identifier:
keyid:97:42:9D:E8:BC:C3:BE:47:4A:BB:DA:2B:E2:A8:9D:0F:32:08:C3:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l0Kd6LzDvkdKu9or4qidDzIIw4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/eFaHDg7T9r93FHBanYS9_YaJmS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/l0Kd6LzDvkdKu9or4qidDzIIw4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.248.0/21
89.249.208.0/20
93.185.224.0/20
95.141.48.0/20
141.138.176.0/20
185.58.200.0/22
IPv6:
2a02:f50::/32
Signature Algorithm: sha256WithRSAEncryption
98:64:d4:ad:54:99:9a:7c:28:94:bf:56:75:f3:73:05:b3:31:
40:cf:e6:ee:27:35:c1:9c:73:78:af:6b:20:db:40:a6:54:6b:
b1:7b:99:83:3f:93:bb:94:62:57:67:ee:68:b6:ea:17:6e:07:
dc:e5:6f:dd:50:a3:b1:22:98:0a:fa:9a:91:9a:4a:c3:f6:6e:
da:55:ae:b4:1c:d8:72:c8:45:73:3b:5d:2e:83:1b:90:a6:a2:
b3:3a:70:ed:2e:85:e5:94:07:8c:4f:3e:04:8d:c4:3d:f4:20:
d3:71:54:62:28:00:4a:bb:25:b2:6e:64:4a:ae:83:09:f0:40:
1a:db:9f:62:57:d4:67:10:3f:b7:03:29:c0:70:50:95:7f:0f:
7f:3d:ce:a0:f4:11:21:83:03:4f:94:40:29:39:5b:79:66:e3:
2e:3b:ff:bb:01:bd:77:08:f0:9c:c1:e9:b0:d3:c5:41:6e:e7:
07:3e:92:11:6d:cd:eb:28:fd:36:15:0b:ff:2e:b5:4c:51:c7:
6d:4d:cd:73:d6:46:14:7f:c0:81:30:f6:8f:e9:5b:15:e8:7f:
0a:13:13:5a:c8:09:2e:62:ba:3c:08:30:fc:d2:cf:95:b4:f8:
10:03:03:37:eb:72:bc:34:3d:1a:7d:77:c2:a5:d8:d7:13:a2:
b2:63:36:98
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgISAYq3Bft+nZC7x8dSQYuGFswPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3NDI5ZGU4YmNjM2JlNDc0YWJiZGEyYmUyYTg5ZDBmMzIw
OGMzODUwHhcNMjMwOTIxMDkxNTM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ODU2ODcwZTBlZDNmNmJmNzcxNDcwNWE5ZDg0YmRmZDg2ODk5OTJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt6qKnPwh53rQ2SMJl9DuKPCouHJ+
kRQ93Y1zG0/H+pQS4wCofYctLVvXzLOjhTDCkiEYUdezOtrfsQer5CT/2ALHRxkU
4Bq0+F5giD/cO0ZEbeC5a7lEvrcDdZYe0t0UhFo9qjfPmjy4+PKP8EsWAuk90CPG
VCiU19eKlN1Ot8EvTItYjeUbng3xwpQb3iAdEmXlyWKCbEFCC16phmFgWzinXol2
Gl8bN3C4zbOYNGKFor1BCYCKKXh//I9HwJvLxiltiQIg3icbT9/PTAKd6lXjifJd
LBZ5ImpLjvwBMZoNWk3MbvXc6TLpyn1R/rAZp54p6Yrh22n32R/pFU1E3QIDAQAB
o4ICNjCCAjIwHQYDVR0OBBYEFHhWhw4O0/a/dxRwWp2Evf2GiZktMB8GA1UdIwQY
MBaAFJdCnei8w75HSrvaK+KonQ8yCMOFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDBLZDZMekR2a2RLdTlvcjRxaWREeklJdzRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC85OTExYWMtNGNmMi00ZWU1LThkNjMt
MDQ5YmRjNmI4ZWYzLzEvZUZhSERnN1Q5cjkzRkhCYW5ZUzlfWWFKbVMwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC85OTExYWMtNGNmMi00ZWU1LThkNjMtMDQ5YmRjNmI4ZWYz
LzEvbDBLZDZMekR2a2RLdTlvcjRxaWREeklJdzRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQDLuP4AwQE
WfnQAwQEXbngAwQEX40wAwQEjYqwAwQCuTrIMA0EAgACMAcDBQAqAg9QMA0GCSqG
SIb3DQEBCwUAA4IBAQCYZNStVJmafCiUv1Z183MFszFAz+buJzXBnHN4r2sg20Cm
VGuxe5mDP5O7lGJXZ+5otuoXbgfc5W/dUKOxIpgK+pqRmkrD9m7aVa60HNhyyEVz
O10ugxuQpqKzOnDtLoXllAeMTz4EjcQ99CDTcVRiKABKuyWybmRKroMJ8EAa259i
V9RnED+3AynAcFCVfw9/Pc6g9BEhgwNPlEApOVt5ZuMuO/+7Ab13CPCcwemw08VB
bucHPpIRbc3rKP02FQv/LrVMUcdtTc1z1kYUf8CBMPaP6VsV6H8KExNayAkuYro8
CDD80s+VtPgQAwM363K8ND0afXfCpdjXE6KyYzaY
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:31 2025 by rpki-client