Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/epeBtan2F3eNU4ZDNWA01eGVpwo.roa
File: epeBtan2F3eNU4ZDNWA01eGVpwo.roa (raw, json)
Hash identifier: dodaRnSgxRVQLlow63oekRH+xM6KSf6Sz4Kh+UCL+bM=
Subject key identifier: 7A:97:81:B5:A9:F6:17:77:8D:53:86:43:35:60:34:D5:E1:95:A7:0A
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 01822133DCA7A3A2014A6FCCCFDFED4E3489
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/epeBtan2F3eNU4ZDNWA01eGVpwo.roa
Signing time: Thu 21 Jul 2022 14:40:23 +0000
ROA not before: Thu 21 Jul 2022 14:40:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30781
IP address blocks: 46.231.216.0/21 maxlen: 24
185.53.80.0/22 maxlen: 24
212.114.16.0/20 maxlen: 24
46.22.192.0/20 maxlen: 24
45.80.8.0/22 maxlen: 24
45.80.20.0/22 maxlen: 24
45.80.24.0/22 maxlen: 24
45.80.32.0/22 maxlen: 24
46.255.200.0/21 maxlen: 24
95.178.88.0/22 maxlen: 24
185.114.100.0/22 maxlen: 24
94.100.160.0/20 maxlen: 24
37.110.192.0/21 maxlen: 24
193.151.84.0/24 maxlen: 24
193.151.87.0/24 maxlen: 24
37.26.184.0/21 maxlen: 24
185.146.220.0/22 maxlen: 24
194.116.142.0/23 maxlen: 24
185.15.140.0/22 maxlen: 24
185.62.184.0/22 maxlen: 24
212.85.229.0/24 maxlen: 24
212.85.230.0/23 maxlen: 24
195.234.35.0/24 maxlen: 24
95.143.64.0/20 maxlen: 24
176.241.120.0/21 maxlen: 24
212.18.240.0/21 maxlen: 24
130.180.208.0/20 maxlen: 24
78.153.224.0/19 maxlen: 24
91.226.193.0/24 maxlen: 24
185.61.184.0/22 maxlen: 24
185.61.184.0/21 maxlen: 24
185.61.188.0/22 maxlen: 24
31.172.232.0/21 maxlen: 24
31.172.238.0/24 maxlen: 24
185.78.156.0/22 maxlen: 24
185.92.36.0/22 maxlen: 24
31.7.248.0/21 maxlen: 24
31.172.160.0/22 maxlen: 24
193.189.124.0/23 maxlen: 24
185.4.60.0/23 maxlen: 24
185.4.62.0/24 maxlen: 24
185.91.220.0/22 maxlen: 24
185.91.224.0/22 maxlen: 24
77.72.88.0/21 maxlen: 24
91.203.92.0/22 maxlen: 24
37.61.240.0/21 maxlen: 24
85.31.192.0/19 maxlen: 24
82.163.36.0/22 maxlen: 24
5.226.0.0/21 maxlen: 24
88.212.144.0/21 maxlen: 24
88.212.152.0/22 maxlen: 24
185.209.52.0/22 maxlen: 24
82.196.24.0/21 maxlen: 24
88.202.236.0/22 maxlen: 24
77.246.80.0/20 maxlen: 24
185.44.88.0/22 maxlen: 24
2a05:6e00::/29 maxlen: 48
2a03:bdc0::/32 maxlen: 48
2a02:398::/32 maxlen: 48
2a0b:41c0::/29 maxlen: 48
2a00:68c0::/32 maxlen: 48
2a04:cc00::/29 maxlen: 48
2a01:240::/32 maxlen: 48
2a01:290::/32 maxlen: 48
2a00:78c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:21:33:dc:a7:a3:a2:01:4a:6f:cc:cf:df:ed:4e:34:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: Jul 21 14:40:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a9781b5a9f617778d538643356034d5e195a70a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:2c:a9:c2:12:1c:93:00:73:c8:f0:32:7b:d5:
9e:bd:82:01:65:93:dc:c4:02:ae:07:17:b5:bd:5b:
a6:49:cb:ef:b0:dc:00:a9:21:be:40:ed:a7:b9:90:
7c:af:1e:48:05:3a:38:2b:ef:1d:ce:1a:59:0f:73:
9c:26:4f:06:7c:9e:17:3f:20:ee:56:e5:de:a6:5c:
4d:5b:7b:19:d1:df:81:20:8a:9f:a8:d5:6c:f0:3f:
c4:ab:84:a6:cc:cc:62:4a:6e:6e:ae:e0:d8:a6:cf:
44:78:32:55:09:42:f2:1a:f0:5a:0b:d7:2b:80:cf:
70:61:04:53:50:19:0a:a8:71:03:17:f4:4a:00:8b:
05:b5:ac:d9:ab:0c:5f:ae:ef:97:20:8a:59:98:83:
bc:a7:d4:c2:2e:f9:09:09:0e:bd:3e:f7:20:f4:8b:
af:b1:18:d7:08:17:31:f8:be:ad:32:cd:1a:cc:2e:
57:b7:5d:41:93:bf:ab:40:c1:d4:18:4d:d8:08:fc:
4f:e7:0e:20:6d:21:f0:b8:8e:4a:8a:a4:60:68:cb:
c5:f3:8e:ae:62:7b:8e:a6:52:c5:0e:8e:d8:b8:f6:
14:21:a7:85:6e:97:2f:07:49:10:e6:7f:60:29:49:
0e:1f:d2:e4:a7:2c:3b:05:79:0f:61:4d:4d:e9:88:
99:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:97:81:B5:A9:F6:17:77:8D:53:86:43:35:60:34:D5:E1:95:A7:0A
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/epeBtan2F3eNU4ZDNWA01eGVpwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.0.0/21
31.7.248.0/21
31.172.160.0/22
31.172.232.0/21
37.26.184.0/21
37.61.240.0/21
37.110.192.0/21
45.80.8.0/22
45.80.20.0-45.80.27.255
45.80.32.0/22
46.22.192.0/20
46.231.216.0/21
46.255.200.0/21
77.72.88.0/21
77.246.80.0/20
78.153.224.0/19
82.163.36.0/22
82.196.24.0/21
85.31.192.0/19
88.202.236.0/22
88.212.144.0-88.212.155.255
91.203.92.0/22
91.226.193.0/24
94.100.160.0/20
95.143.64.0/20
95.178.88.0/22
130.180.208.0/20
176.241.120.0/21
185.4.60.0-185.4.62.255
185.15.140.0/22
185.44.88.0/22
185.53.80.0/22
185.61.184.0/21
185.62.184.0/22
185.78.156.0/22
185.91.220.0-185.91.227.255
185.92.36.0/22
185.114.100.0/22
185.146.220.0/22
185.209.52.0/22
193.151.84.0/24
193.151.87.0/24
193.189.124.0/23
194.116.142.0/23
195.234.35.0/24
212.18.240.0/21
212.85.229.0-212.85.231.255
212.114.16.0/20
IPv6:
2a00:68c0::/32
2a00:78c0::/29
2a01:240::/32
2a01:290::/32
2a02:398::/32
2a03:bdc0::/32
2a04:cc00::/29
2a05:6e00::/29
2a0b:41c0::/29
Signature Algorithm: sha256WithRSAEncryption
54:69:fd:a6:52:4f:87:8e:c9:d4:56:f3:a5:79:cb:54:e6:c1:
a9:5e:26:bc:f1:0f:86:16:8e:e8:9d:95:6d:79:45:e0:97:30:
3a:48:86:a6:b7:ba:62:7b:d4:a6:e1:68:ee:93:2b:aa:b6:88:
f3:32:e7:84:7c:81:6e:79:b7:eb:73:de:11:fc:63:58:e5:28:
08:52:25:aa:08:7e:94:f3:b0:8c:6b:79:12:94:e2:e7:7e:67:
1f:c7:fe:4c:03:29:9c:62:dd:1e:5d:9e:4f:5c:55:df:26:bd:
3d:48:20:93:43:6f:7e:c3:0a:c9:67:bb:a5:ac:17:04:d2:dc:
9a:18:28:d7:28:e9:c5:43:21:3d:db:f3:5d:55:d7:25:01:a0:
28:71:32:7f:8d:d4:7e:77:2a:c9:0a:e8:3b:e3:0f:62:81:c3:
81:e5:d6:e9:0b:dc:b8:63:d2:e6:91:b3:8c:bf:99:11:df:83:
68:3f:41:7c:1e:a9:7a:76:e7:40:28:49:4c:e4:8e:9e:66:6d:
cc:92:4b:94:85:ab:d8:77:e5:e0:be:94:00:8a:fc:07:9d:6b:
af:b1:61:40:49:24:05:4a:70:15:87:e3:0d:7e:49:d7:77:21:
22:95:08:65:0c:84:84:ec:8c:e2:25:45:95:8b:ba:b9:83:38:
f4:e7:44:a0
-----BEGIN CERTIFICATE-----
MIIGkDCCBXigAwIBAgISAYIhM9yno6IBSm/Mz9/tTjSJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5MDllZTNkNjE4OTc0ZGEwY2JkODA1YTJkYTgwNDEwYTQ5
ODk4ODEwHhcNMjIwNzIxMTQ0MDIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YTk3ODFiNWE5ZjYxNzc3OGQ1Mzg2NDMzNTYwMzRkNWUxOTVhNzBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiCypwhIckwBzyPAye9WevYIBZZPc
xAKuBxe1vVumScvvsNwAqSG+QO2nuZB8rx5IBTo4K+8dzhpZD3OcJk8GfJ4XPyDu
VuXeplxNW3sZ0d+BIIqfqNVs8D/Eq4SmzMxiSm5uruDYps9EeDJVCULyGvBaC9cr
gM9wYQRTUBkKqHEDF/RKAIsFtazZqwxfru+XIIpZmIO8p9TCLvkJCQ69Pvcg9Iuv
sRjXCBcx+L6tMs0azC5Xt11Bk7+rQMHUGE3YCPxP5w4gbSHwuI5KiqRgaMvF846u
YnuOplLFDo7YuPYUIaeFbpcvB0kQ5n9gKUkOH9Lkpyw7BXkPYU1N6YiZTwIDAQAB
o4IDnDCCA5gwHQYDVR0OBBYEFHqXgbWp9hd3jVOGQzVgNNXhlacKMB8GA1UdIwQY
MBaAFOkJ7j1hiXTaDL2AWi2oBBCkmJiBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNlFudVBXR0pkTm9NdllCYUxhZ0VFS1NZbUlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8yYjVmNWYtYmI5Ni00YjMxLThhNmEt
ZGQxMTVmOWUzMzAxLzEvZXBlQnRhbjJGM2VOVTRaRE5XQTAxZUdWcHdvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS8yYjVmNWYtYmI5Ni00YjMxLThhNmEtZGQxMTVmOWUzMzAx
LzEvNlFudVBXR0pkTm9NdllCYUxhZ0VFS1NZbUlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBsAYIKwYBBQUHAQcBAf8EggGfMIIBmzCCAVAEAgABMIIB
SAMEAwXiAAMEAx8H+AMEAh+soAMEAx+s6AMEAyUauAMEAyU98AMEAyVuwAMEAi1Q
CDAMAwQCLVAUAwQCLVAYAwQCLVAgAwQELhbAAwQDLufYAwQDLv/IAwQDTUhYAwQE
TfZQAwQFTpngAwQCUqMkAwQDUsQYAwQFVR/AAwQCWMrsMAwDBARY1JADBAJY1JgD
BAJby1wDBABb4sEDBAReZKADBARfj0ADBAJfslgDBASCtNADBAOw8XgwDAMEArkE
PAMEALkEPgMEArkPjAMEArksWAMEArk1UAMEA7k9uAMEArk+uAMEArlOnDAMAwQC
uVvcAwQCuVvgAwQCuVwkAwQCuXJkAwQCuZLcAwQCudE0AwQAwZdUAwQAwZdXAwQB
wb18AwQBwnSOAwQAw+ojAwQD1BLwMAwDBADUVeUDBAPUVeADBATUchAwRQQCAAIw
PwMFACoAaMADBQMqAHjAAwUAKgECQAMFACoBApADBQAqAgOYAwUAKgO9wAMFAyoE
zAADBQMqBW4AAwUDKgtBwDANBgkqhkiG9w0BAQsFAAOCAQEAVGn9plJPh47J1Fbz
pXnLVObBqV4mvPEPhhaO6J2VbXlF4JcwOkiGpre6YnvUpuFo7pMrqraI8zLnhHyB
bnm363PeEfxjWOUoCFIlqgh+lPOwjGt5EpTi535nH8f+TAMpnGLdHl2eT1xV3ya9
PUggk0NvfsMKyWe7pawXBNLcmhgo1yjpxUMhPdvzXVXXJQGgKHEyf43UfncqyQro
O+MPYoHDgeXW6QvcuGPS5pGzjL+ZEd+DaD9BfB6penbnQChJTOSOnmZtzJJLlIWr
2Hfl4L6UAIr8B51rr7FhQEkkBUpwFYfjDX5J13chIpUIZQyEhOyM4iVFlYu6uYM4
9OdEoA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:02 2023 by rpki-client on console-fra.rpki-client.org