Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/107266-ab51-462b-9fc2-a7c9898eecbc/1/EPS6w7WIqM9Gi9Jk5gYgh0UYKfQ.roa
File: EPS6w7WIqM9Gi9Jk5gYgh0UYKfQ.roa (raw, json)
Hash identifier: vV9a41+dnKryWcpTfvnCxTw1Qv9qouITUU+ypBi6fj4=
Subject key identifier: 10:F4:BA:C3:B5:88:A8:CF:46:8B:D2:64:E6:06:20:87:45:18:29:F4
Certificate issuer: /CN=1f46f57735a4e63dbef848ee0d9d199e215f8304
Certificate serial: 189257E4
Authority key identifier: 1F:46:F5:77:35:A4:E6:3D:BE:F8:48:EE:0D:9D:19:9E:21:5F:83:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0b1dzWk5j2--EjuDZ0ZniFfgwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/107266-ab51-462b-9fc2-a7c9898eecbc/1/EPS6w7WIqM9Gi9Jk5gYgh0UYKfQ.roa
Signing time: Wed 09 Feb 2022 08:06:00 +0000
ROA not before: Wed 09 Feb 2022 08:06:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24940
IP address blocks: 142.132.128.0/17 maxlen: 24
162.55.0.0/16 maxlen: 24
168.119.0.0/16 maxlen: 24
49.13.0.0/16 maxlen: 24
65.109.0.0/16 maxlen: 24
116.203.0.0/16 maxlen: 24
167.235.0.0/16 maxlen: 24
88.198.0.0/16 maxlen: 24
5.161.0.0/16 maxlen: 24
116.202.0.0/16 maxlen: 24
159.69.0.0/16 maxlen: 24
188.40.0.0/16 maxlen: 24
88.99.0.0/16 maxlen: 24
5.75.128.0/17 maxlen: 24
91.107.128.0/17 maxlen: 24
95.217.0.0/16 maxlen: 24
128.140.0.0/17 maxlen: 24
49.12.0.0/16 maxlen: 24
65.108.0.0/16 maxlen: 24
213.133.96.0/19 maxlen: 24
94.130.0.0/16 maxlen: 24
85.10.192.0/18 maxlen: 24
46.4.0.0/16 maxlen: 24
178.63.0.0/16 maxlen: 24
157.90.0.0/16 maxlen: 24
135.181.0.0/16 maxlen: 24
65.21.0.0/16 maxlen: 24
188.34.128.0/17 maxlen: 24
23.88.0.0/17 maxlen: 24
185.12.64.0/22 maxlen: 24
95.216.0.0/16 maxlen: 24
78.46.0.0/15 maxlen: 24
213.239.192.0/18 maxlen: 24
167.233.0.0/16 maxlen: 24
176.9.0.0/16 maxlen: 24
5.9.0.0/16 maxlen: 24
195.201.0.0/16 maxlen: 24
2a01:4f8::/32 maxlen: 48
2a01:4ff:ff01::/48 maxlen: 48
2a01:4f9::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 412243940 (0x189257e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f46f57735a4e63dbef848ee0d9d199e215f8304
Validity
Not Before: Feb 9 08:06:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10f4bac3b588a8cf468bd264e6062087451829f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:de:ab:e7:59:4b:dc:7b:9b:26:cc:cc:68:60:
36:f8:1d:b8:57:95:52:3a:e2:94:cd:3e:ec:dc:d2:
30:ea:81:c5:66:bf:b1:da:af:63:f3:45:52:0a:cb:
32:19:f8:fb:a0:e9:c1:28:b7:08:06:95:07:6f:ba:
bf:e2:36:ff:f4:b0:e6:8c:e7:fc:ce:f8:c5:6c:29:
8b:89:73:e0:5c:ff:5c:a4:28:3f:06:4a:7f:61:a0:
af:eb:aa:d0:58:3f:f3:e8:fd:5d:e8:1f:21:cd:54:
bd:dc:d7:73:e7:b5:fe:af:b6:01:1e:d5:ec:b6:63:
22:19:43:5c:5e:3e:e2:a3:ba:c1:85:68:3a:db:7b:
6f:d7:a5:a4:6a:19:84:6b:ec:64:15:f8:fe:f8:e5:
ca:7f:8b:03:7e:22:d7:d9:28:5e:e8:c7:3a:6e:1e:
54:c2:0a:2a:96:74:63:15:76:8f:9c:f4:61:7f:ac:
80:79:4d:5b:4d:f5:d6:41:e2:f5:6b:50:d0:4b:ae:
7e:87:ad:3c:22:c7:0c:65:42:99:99:d1:d2:28:f0:
94:36:02:0b:8b:92:20:bb:bf:be:f5:94:1a:99:98:
8d:35:63:4a:b1:20:70:a1:b7:28:6b:73:09:3f:6e:
18:ed:50:a4:01:4c:4f:bd:0a:2c:cb:d7:16:94:b4:
40:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:F4:BA:C3:B5:88:A8:CF:46:8B:D2:64:E6:06:20:87:45:18:29:F4
X509v3 Authority Key Identifier:
keyid:1F:46:F5:77:35:A4:E6:3D:BE:F8:48:EE:0D:9D:19:9E:21:5F:83:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0b1dzWk5j2--EjuDZ0ZniFfgwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/107266-ab51-462b-9fc2-a7c9898eecbc/1/EPS6w7WIqM9Gi9Jk5gYgh0UYKfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/107266-ab51-462b-9fc2-a7c9898eecbc/1/H0b1dzWk5j2--EjuDZ0ZniFfgwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.9.0.0/16
5.75.128.0/17
5.161.0.0/16
23.88.0.0/17
46.4.0.0/16
49.12.0.0/15
65.21.0.0/16
65.108.0.0/15
78.46.0.0/15
85.10.192.0/18
88.99.0.0/16
88.198.0.0/16
91.107.128.0/17
94.130.0.0/16
95.216.0.0/15
116.202.0.0/15
128.140.0.0/17
135.181.0.0/16
142.132.128.0/17
157.90.0.0/16
159.69.0.0/16
162.55.0.0/16
167.233.0.0/16
167.235.0.0/16
168.119.0.0/16
176.9.0.0/16
178.63.0.0/16
185.12.64.0/22
188.34.128.0/17
188.40.0.0/16
195.201.0.0/16
213.133.96.0/19
213.239.192.0/18
IPv6:
2a01:4f8::/31
2a01:4ff:ff01::/48
Signature Algorithm: sha256WithRSAEncryption
68:5c:62:43:95:00:43:26:25:cb:70:5b:0b:5e:e3:d1:e9:54:
f4:ac:0b:8c:15:6b:12:b3:7b:f6:31:22:9a:81:09:3a:5a:2b:
30:0d:74:ae:67:91:5c:8c:b3:77:2c:fb:6b:54:d8:3c:04:c2:
2a:71:3b:e2:a4:91:50:f1:0b:d1:86:ca:6a:e4:2a:e9:ed:27:
39:76:4f:b0:4c:fb:60:5b:af:d3:7b:bb:cc:c6:e7:92:db:41:
10:8f:fd:07:3e:ad:b3:b9:2d:70:a4:19:c2:0e:a9:61:bc:b5:
8c:c0:a5:0d:81:3f:8b:dd:df:f1:5e:3a:8a:5c:c3:b2:2c:be:
a7:c6:5f:71:ac:c9:21:08:a1:4c:10:17:5d:88:10:8c:61:64:
b5:0f:32:f4:b4:bd:5e:bf:9b:ae:94:58:79:16:a8:cf:04:68:
57:c6:34:12:9a:15:20:10:a4:a9:95:ba:b6:7f:0f:fe:68:20:
7c:ce:31:02:a9:86:a1:c1:7a:6f:df:32:d5:87:cd:6f:03:91:
1b:9b:f8:9b:ec:0a:bc:c5:27:d3:be:08:a8:a4:52:d5:b6:b4:
6b:7f:7a:ba:d7:46:0d:38:64:52:f3:72:0c:f8:21:2f:9b:5a:
9d:20:fc:7a:de:72:48:71:55:df:cc:e0:d7:9b:01:cd:50:c7:
6f:28:7b:d7
-----BEGIN CERTIFICATE-----
MIIFtTCCBJ2gAwIBAgIEGJJX5DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZjQ2ZjU3NzM1YTRlNjNkYmVmODQ4ZWUwZDlkMTk5ZTIxNWY4MzA0MB4XDTIyMDIw
OTA4MDYwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTBmNGJhYzNiNTg4
YThjZjQ2OGJkMjY0ZTYwNjIwODc0NTE4MjlmNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKLeq+dZS9x7mybMzGhgNvgduFeVUjrilM0+7NzSMOqBxWa/
sdqvY/NFUgrLMhn4+6DpwSi3CAaVB2+6v+I2//Sw5ozn/M74xWwpi4lz4Fz/XKQo
PwZKf2Ggr+uq0Fg/8+j9XegfIc1UvdzXc+e1/q+2AR7V7LZjIhlDXF4+4qO6wYVo
Ott7b9elpGoZhGvsZBX4/vjlyn+LA34i19koXujHOm4eVMIKKpZ0YxV2j5z0YX+s
gHlNW0311kHi9WtQ0EuufoetPCLHDGVCmZnR0ijwlDYCC4uSILu/vvWUGpmYjTVj
SrEgcKG3KGtzCT9uGO1QpAFMT70KLMvXFpS0QDUCAwEAAaOCAs8wggLLMB0GA1Ud
DgQWBBQQ9LrDtYioz0aL0mTmBiCHRRgp9DAfBgNVHSMEGDAWgBQfRvV3NaTmPb74
SO4NnRmeIV+DBDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0gwYjFkeldrNWoyLS1FanVEWjBabmlGZmd3US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTMvMTA3MjY2LWFiNTEtNDYyYi05ZmMyLWE3Yzk4OThlZWNiYy8x
L0VQUzZ3N1dJcU05R2k5Sms1Z1lnaDBVWUtmUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTMv
MTA3MjY2LWFiNTEtNDYyYi05ZmMyLWE3Yzk4OThlZWNiYy8xL0gwYjFkeldrNWoy
LS1FanVEWjBabmlGZmd3US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
5AYIKwYBBQUHAQcBAf8EgdQwgdEwgbYEAgABMIGvAwMABQkDBAcFS4ADAwAFoQME
BxdYAAMDAC4EAwMBMQwDAwBBFQMDAUFsAwMBTi4DBAZVCsADAwBYYwMDAFjGAwQH
W2uAAwMAXoIDAwFf2AMDAXTKAwQHgIwAAwMAh7UDBAeOhIADAwCdWgMDAJ9FAwMA
ojcDAwCn6QMDAKfrAwMAqHcDAwCwCQMDALI/AwQCuQxAAwQHvCKAAwMAvCgDAwDD
yQMEBdWFYAMEBtXvwDAWBAIAAjAQAwUBKgEE+AMHACoBBP//ATANBgkqhkiG9w0B
AQsFAAOCAQEAaFxiQ5UAQyYly3BbC17j0elU9KwLjBVrErN79jEimoEJOlorMA10
rmeRXIyzdyz7a1TYPATCKnE74qSRUPEL0YbKauQq6e0nOXZPsEz7YFuv03u7zMbn
kttBEI/9Bz6ts7ktcKQZwg6pYby1jMClDYE/i93f8V46ilzDsiy+p8ZfcazJIQih
TBAXXYgQjGFktQ8y9LS9Xr+brpRYeRaozwRoV8Y0EpoVIBCkqZW6tn8P/mggfM4x
AqmGocF6b98y1YfNbwORG5v4m+wKvMUn074IqKRS1ba0a396utdGDThkUvNyDPgh
L5tanSD8et5ySHFV38zg15sBzVDHbyh71w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:56 2024 by rpki-client on console-fra.rpki-client.org