Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/jaD6JgaZCxCT572wX9wH1nW_F0Y.roa
File: jaD6JgaZCxCT572wX9wH1nW_F0Y.roa (raw, json)
Hash identifier: 6v2g3kEkFoeMJWMbPvFKX4XzUOQzkpJGsJFKoLULk6M=
Subject key identifier: 8D:A0:FA:26:06:99:0B:10:93:E7:BD:B0:5F:DC:07:D6:75:BF:17:46
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 01856D8AF69D11EF29F93965439C5F28F21C
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/jaD6JgaZCxCT572wX9wH1nW_F0Y.roa
Signing time: Sun 01 Jan 2023 13:35:01 +0000
ROA not before: Sun 01 Jan 2023 13:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 138.188.0.0/16 maxlen: 24
193.134.36.0/22 maxlen: 24
194.6.160.0/19 maxlen: 24
193.222.64.0/19 maxlen: 19
193.247.217.0/24 maxlen: 24
193.247.218.0/23 maxlen: 23
193.247.224.0/21 maxlen: 24
193.247.244.0/23 maxlen: 24
193.247.250.0/24 maxlen: 24
193.247.247.0/24 maxlen: 24
193.247.151.0/24 maxlen: 24
193.5.20.0/24 maxlen: 24
193.247.166.0/24 maxlen: 24
193.247.168.0/21 maxlen: 21
193.247.166.0/23 maxlen: 23
193.5.36.0/24 maxlen: 24
193.5.38.0/24 maxlen: 24
193.247.167.0/24 maxlen: 24
138.187.0.0/16 maxlen: 19
185.106.64.0/22 maxlen: 24
193.5.52.0/24 maxlen: 24
193.5.61.0/24 maxlen: 24
193.5.63.0/24 maxlen: 24
193.5.59.0/24 maxlen: 24
193.247.193.0/24 maxlen: 24
185.39.92.0/22 maxlen: 22
193.5.224.0/20 maxlen: 20
193.246.246.0/24 maxlen: 24
193.246.248.0/22 maxlen: 24
193.247.36.0/22 maxlen: 24
188.92.48.0/21 maxlen: 21
193.246.202.0/23 maxlen: 24
195.65.0.0/16 maxlen: 24
193.247.104.0/23 maxlen: 23
193.5.4.0/23 maxlen: 24
193.5.0.0/24 maxlen: 24
193.5.3.0/24 maxlen: 24
193.5.6.0/23 maxlen: 23
193.247.44.0/22 maxlen: 24
193.247.43.0/24 maxlen: 24
193.247.42.0/24 maxlen: 24
194.11.96.0/20 maxlen: 20
193.247.41.0/24 maxlen: 24
193.247.40.0/24 maxlen: 24
194.11.144.0/21 maxlen: 21
193.247.90.0/24 maxlen: 24
193.247.86.0/24 maxlen: 24
193.246.32.0/21 maxlen: 24
193.246.32.0/20 maxlen: 20
193.246.40.0/21 maxlen: 21
193.246.48.0/23 maxlen: 24
193.246.50.0/24 maxlen: 24
193.246.57.0/24 maxlen: 24
193.246.56.0/24 maxlen: 24
217.192.0.0/15 maxlen: 24
185.84.76.0/22 maxlen: 24
193.246.0.0/23 maxlen: 24
193.246.8.0/22 maxlen: 22
193.246.16.0/21 maxlen: 24
193.246.104.0/24 maxlen: 24
193.246.105.0/24 maxlen: 24
193.246.100.0/24 maxlen: 24
193.246.99.0/24 maxlen: 24
193.246.113.0/24 maxlen: 24
193.246.127.0/24 maxlen: 24
212.117.96.0/19 maxlen: 19
195.144.32.0/19 maxlen: 24
78.110.128.0/20 maxlen: 20
46.245.144.0/21 maxlen: 21
195.35.121.0/24 maxlen: 24
193.135.214.0/23 maxlen: 24
193.135.218.0/24 maxlen: 24
193.135.173.0/24 maxlen: 24
195.176.192.0/19 maxlen: 24
193.135.255.0/24 maxlen: 24
195.176.128.0/19 maxlen: 24
138.190.0.0/16 maxlen: 16
193.134.248.0/23 maxlen: 24
193.135.0.0/23 maxlen: 24
193.135.3.0/24 maxlen: 24
193.134.255.0/24 maxlen: 24
193.135.26.0/23 maxlen: 23
164.128.0.0/16 maxlen: 24
194.209.0.0/16 maxlen: 24
193.135.100.0/24 maxlen: 24
193.135.111.0/24 maxlen: 24
193.47.232.0/24 maxlen: 24
193.223.16.0/20 maxlen: 20
193.135.128.0/22 maxlen: 24
193.135.132.0/24 maxlen: 24
193.135.136.0/24 maxlen: 24
193.135.133.0/24 maxlen: 24
193.135.142.0/23 maxlen: 24
193.135.143.0/24 maxlen: 24
193.135.140.0/24 maxlen: 24
193.223.32.0/19 maxlen: 19
193.135.144.0/23 maxlen: 24
212.243.0.0/16 maxlen: 24
2a02:a90::/32 maxlen: 32
2a01:8b00::/32 maxlen: 32
2001:918::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:f6:9d:11:ef:29:f9:39:65:43:9c:5f:28:f2:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 13:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8da0fa2606990b1093e7bdb05fdc07d675bf1746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:16:28:c4:e5:d1:72:c9:86:01:ec:a0:cc:83:
51:78:7c:f3:06:07:86:a5:13:1f:48:d7:f3:71:5a:
c7:60:08:26:16:c5:03:0d:b6:2e:c6:46:5e:c3:07:
27:82:49:13:59:1c:2b:b8:16:64:c9:67:d4:e7:d7:
94:d1:31:56:ab:cf:ff:de:d1:2d:76:a6:6c:f7:60:
9c:7c:f4:86:56:77:59:26:3c:75:bb:8c:23:81:2e:
e9:d8:ab:00:3a:c1:20:a5:5b:9d:a3:68:52:5b:c2:
1b:1d:4b:f0:ee:e5:4c:0c:e0:9c:07:34:53:26:3a:
5a:8f:a8:a9:76:a3:0b:27:e0:a2:d7:f0:38:74:44:
29:74:96:45:72:b9:11:8f:74:fa:a6:1c:4e:86:99:
12:b7:3d:04:0e:2d:af:50:42:35:01:ea:a8:74:0e:
cd:4a:03:7e:84:f9:07:fa:f2:f6:96:8a:00:dd:9b:
55:b5:04:d6:fa:71:da:20:0b:c0:34:0b:0a:66:e3:
c4:5b:bd:bc:c1:74:04:03:97:c7:5d:08:f5:cc:22:
82:52:56:38:11:56:b8:5e:13:2d:b5:8f:55:d7:34:
a3:e0:64:cb:a0:78:85:63:33:be:9d:95:c4:58:f1:
62:f2:79:f2:13:2d:9a:39:41:d4:8d:7f:5f:95:e6:
b1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:A0:FA:26:06:99:0B:10:93:E7:BD:B0:5F:DC:07:D6:75:BF:17:46
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/jaD6JgaZCxCT572wX9wH1nW_F0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.245.144.0/21
78.110.128.0/20
138.187.0.0-138.188.255.255
138.190.0.0/16
164.128.0.0/16
185.39.92.0/22
185.84.76.0/22
185.106.64.0/22
188.92.48.0/21
193.5.0.0/24
193.5.3.0-193.5.7.255
193.5.20.0/24
193.5.36.0/24
193.5.38.0/24
193.5.52.0/24
193.5.59.0/24
193.5.61.0/24
193.5.63.0/24
193.5.224.0/20
193.47.232.0/24
193.134.36.0/22
193.134.248.0/23
193.134.255.0-193.135.1.255
193.135.3.0/24
193.135.26.0/23
193.135.100.0/24
193.135.111.0/24
193.135.128.0-193.135.133.255
193.135.136.0/24
193.135.140.0/24
193.135.142.0-193.135.145.255
193.135.173.0/24
193.135.214.0/23
193.135.218.0/24
193.135.255.0/24
193.222.64.0/19
193.223.16.0-193.223.63.255
193.246.0.0/23
193.246.8.0/22
193.246.16.0/21
193.246.32.0-193.246.50.255
193.246.56.0/23
193.246.99.0-193.246.100.255
193.246.104.0/23
193.246.113.0/24
193.246.127.0/24
193.246.202.0/23
193.246.246.0/24
193.246.248.0/22
193.247.36.0-193.247.47.255
193.247.86.0/24
193.247.90.0/24
193.247.104.0/23
193.247.151.0/24
193.247.166.0-193.247.175.255
193.247.193.0/24
193.247.217.0-193.247.219.255
193.247.224.0/21
193.247.244.0/23
193.247.247.0/24
193.247.250.0/24
194.6.160.0/19
194.11.96.0/20
194.11.144.0/21
194.209.0.0/16
195.35.121.0/24
195.65.0.0/16
195.144.32.0/19
195.176.128.0/19
195.176.192.0/19
212.117.96.0/19
212.243.0.0/16
217.192.0.0/15
IPv6:
2001:918::/32
2a01:8b00::/32
2a02:a90::/32
Signature Algorithm: sha256WithRSAEncryption
a9:49:35:e2:bb:d8:a1:2e:ca:9e:ca:c1:48:09:c3:9d:1d:a6:
b0:2b:10:f1:aa:95:c6:0c:ec:3f:de:97:93:66:09:4c:84:68:
1a:45:99:da:98:66:19:84:0c:37:52:5b:7c:53:c3:2a:1a:7a:
76:ed:ef:ef:dd:47:80:28:b2:97:8f:7e:05:ee:49:cd:b3:03:
de:68:16:2c:90:dd:66:d0:a6:49:fc:4a:b7:a3:ce:85:3d:11:
0e:87:ed:a9:ff:88:e4:00:7c:6b:fb:5c:14:66:c2:c7:6a:f6:
f6:ea:a3:4c:4b:4c:a0:6e:69:64:09:3a:30:05:b1:63:b3:8e:
fb:d7:8a:30:9a:c5:8f:c7:e3:74:4f:d6:b7:d2:46:a4:bc:1c:
ec:63:f1:87:6a:0c:32:5f:c6:c3:6d:ae:ca:75:f9:94:77:bd:
56:cb:f6:da:88:63:d7:c8:3a:7d:92:f7:d2:00:21:84:64:04:
17:3a:36:cd:fd:c0:ae:53:c2:5d:9e:28:6e:af:f8:c6:0b:66:
2c:5a:a4:a8:04:07:e3:a7:24:49:bc:9d:68:92:b4:9c:77:ae:
a2:b3:8d:f6:39:78:fd:11:9a:a2:8e:0f:ae:30:84:e1:b2:4e:
fd:07:53:bc:92:3e:fc:61:72:61:a4:7c:06:52:86:5a:39:bd:
1a:bf:72:72
-----BEGIN CERTIFICATE-----
MIIHJDCCBgygAwIBAgISAYVtivadEe8p+TllQ5xfKPIcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI2NjNmM2RiMTUyZTA1NWFjMTQ1YmRiYjQyOWUwMTg2NTQy
MDRjOGQwHhcNMjMwMTAxMTMzNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZGEwZmEyNjA2OTkwYjEwOTNlN2JkYjA1ZmRjMDdkNjc1YmYxNzQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoBYoxOXRcsmGAeygzINReHzzBgeG
pRMfSNfzcVrHYAgmFsUDDbYuxkZewwcngkkTWRwruBZkyWfU59eU0TFWq8//3tEt
dqZs92CcfPSGVndZJjx1u4wjgS7p2KsAOsEgpVudo2hSW8IbHUvw7uVMDOCcBzRT
Jjpaj6ipdqMLJ+Ci1/A4dEQpdJZFcrkRj3T6phxOhpkStz0EDi2vUEI1AeqodA7N
SgN+hPkH+vL2looA3ZtVtQTW+nHaIAvANAsKZuPEW728wXQEA5fHXQj1zCKCUlY4
EVa4XhMttY9V1zSj4GTLoHiFYzO+nZXEWPFi8nnyEy2aOUHUjX9fleaxnQIDAQAB
o4IEMDCCBCwwHQYDVR0OBBYEFI2g+iYGmQsQk+e9sF/cB9Z1vxdGMB8GA1UdIwQY
MBaAFCZj89sVLgVawUW9u0KeAYZUIEyNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUt
YmQxOTI2NzZjOWJiLzEvamFENkpnYVpDeENUNTcyd1g5d0gxbldfRjBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUtYmQxOTI2NzZjOWJi
LzEvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICRAYIKwYBBQUHAQcBAf8EggIzMIICLzCCAg4EAgABMIIC
BgMEAy71kAMEBE5ugDAKAwMAirsDAwCKvAMDAIq+AwMApIADBAK5J1wDBAK5VEwD
BAK5akADBAO8XDADBADBBQAwDAMEAMEFAwMEA8EFAAMEAMEFFAMEAMEFJAMEAMEF
JgMEAMEFNAMEAMEFOwMEAMEFPQMEAMEFPwMEBMEF4AMEAMEv6AMEAsGGJAMEAcGG
+DAMAwQAwYb/AwQBwYcAAwQAwYcDAwQBwYcaAwQAwYdkAwQAwYdvMAwDBAfBh4AD
BAHBh4QDBADBh4gDBADBh4wwDAMEAcGHjgMEAcGHkAMEAMGHrQMEAcGH1gMEAMGH
2gMEAMGH/wMEBcHeQDAMAwQEwd8QAwQGwd8AAwQBwfYAAwQCwfYIAwQDwfYQMAwD
BAXB9iADBADB9jIDBAHB9jgwDAMEAMH2YwMEAMH2ZAMEAcH2aAMEAMH2cQMEAMH2
fwMEAcH2ygMEAMH29gMEAsH2+DAMAwQCwfckAwQEwfcgAwQAwfdWAwQAwfdaAwQB
wfdoAwQAwfeXMAwDBAHB96YDBATB96ADBADB98EwDAMEAMH32QMEAsH32AMEA8H3
4AMEAcH39AMEAMH39wMEAMH3+gMEBcIGoAMEBMILYAMEA8ILkAMDAMLRAwQAwyN5
AwMAw0EDBAXDkCADBAXDsIADBAXDsMADBAXUdWADAwDU8wMDAdnAMBsEAgACMBUD
BQAgAQkYAwUAKgGLAAMFACoCCpAwDQYJKoZIhvcNAQELBQADggEBAKlJNeK72KEu
yp7KwUgJw50dprArEPGqlcYM7D/el5NmCUyEaBpFmdqYZhmEDDdSW3xTwyoaenbt
7+/dR4AospePfgXuSc2zA95oFiyQ3WbQpkn8SrejzoU9EQ6H7an/iOQAfGv7XBRm
wsdq9vbqo0xLTKBuaWQJOjAFsWOzjvvXijCaxY/H43RP1rfSRqS8HOxj8YdqDDJf
xsNtrsp1+ZR3vVbL9tqIY9fIOn2S99IAIYRkBBc6Ns39wK5Twl2eKG6v+MYLZixa
pKgEB+OnJEm8nWiStJx3rqKzjfY5eP0RmqKOD64whOGyTv0HU7ySPvxhcmGkfAZS
hlo5vRq/cnI=
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:08:14 2025 by rpki-client