Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/E1y_pbkE43OGSHuW5UZkQgvY8gY.roa
File: E1y_pbkE43OGSHuW5UZkQgvY8gY.roa (raw, json)
Hash identifier: 6X1rbF3urYxhmysA1Tkgfcno1mSBnpfrGXTuM53VwvQ=
Subject key identifier: 13:5C:BF:A5:B9:04:E3:73:86:48:7B:96:E5:46:64:42:0B:D8:F2:06
Certificate issuer: /CN=4ee1713e16b4fd8f3301887de6a111980449b29e
Certificate serial: 0182AFF360EB3A4BE131B92DEA0D8AFD1569
Authority key identifier: 4E:E1:71:3E:16:B4:FD:8F:33:01:88:7D:E6:A1:11:98:04:49:B2:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuFxPha0_Y8zAYh95qERmARJsp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/E1y_pbkE43OGSHuW5UZkQgvY8gY.roa
Signing time: Thu 18 Aug 2022 07:55:39 +0000
ROA not before: Thu 18 Aug 2022 07:55:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58321
IP address blocks: 185.73.88.0/22 maxlen: 22
185.80.212.0/22 maxlen: 22
91.232.44.0/23 maxlen: 23
109.199.0.0/19 maxlen: 19
176.227.160.0/21 maxlen: 21
81.161.192.0/24 maxlen: 24
81.161.192.0/20 maxlen: 20
81.161.193.0/24 maxlen: 24
81.161.194.0/24 maxlen: 24
81.161.195.0/24 maxlen: 24
178.249.88.0/21 maxlen: 21
81.161.196.0/24 maxlen: 24
81.161.197.0/24 maxlen: 24
81.161.198.0/24 maxlen: 24
81.161.199.0/24 maxlen: 24
81.161.203.0/24 maxlen: 24
81.161.204.0/24 maxlen: 24
81.161.205.0/24 maxlen: 24
81.161.206.0/24 maxlen: 24
81.161.200.0/24 maxlen: 24
81.161.201.0/24 maxlen: 24
81.161.202.0/24 maxlen: 24
193.242.168.0/24 maxlen: 24
193.242.169.0/24 maxlen: 24
195.3.232.0/22 maxlen: 22
5.104.248.0/21 maxlen: 21
185.34.76.0/22 maxlen: 22
2a04:4c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:af:f3:60:eb:3a:4b:e1:31:b9:2d:ea:0d:8a:fd:15:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee1713e16b4fd8f3301887de6a111980449b29e
Validity
Not Before: Aug 18 07:55:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=135cbfa5b904e37386487b96e54664420bd8f206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3b:4d:7a:16:8a:a5:68:bd:33:b4:fd:89:7a:
fa:8b:ed:a1:a0:db:c0:67:e2:4d:06:0a:be:0d:02:
01:4f:1f:5b:45:bf:e8:f4:5a:8e:6a:26:d3:ea:00:
ea:4b:99:24:64:bc:30:cb:09:d8:4f:40:3e:36:af:
85:74:91:d0:ff:be:22:29:bc:f9:dc:e5:96:fe:07:
70:44:93:38:e4:dd:e9:37:ad:cd:f1:ca:74:06:fe:
11:16:db:ab:a1:60:b5:3b:26:75:90:81:3a:42:c5:
2a:e8:ae:37:57:29:7d:50:a5:f0:c5:05:c0:55:82:
ed:bb:0e:90:f3:f5:6c:af:42:7c:8f:71:49:3e:66:
77:6f:36:b9:9a:5c:4c:fa:10:cf:69:d5:25:d9:71:
53:db:52:f9:6c:06:95:c7:3c:43:1f:a1:07:72:52:
28:80:e0:b0:b8:02:3e:94:b0:fa:f2:b1:9a:b6:69:
f4:54:3c:60:72:e6:73:3f:cb:ac:f0:0e:7b:18:52:
d6:71:69:80:7f:27:ee:ce:9e:71:f7:4e:a5:9d:38:
9a:78:42:97:36:b6:3a:b3:09:57:38:f6:b3:a8:20:
da:e2:f4:ca:2f:34:63:2b:12:62:1f:27:f3:fe:c7:
11:9c:8c:fb:4f:a1:4a:98:d8:90:3f:b0:4b:ae:31:
ae:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:5C:BF:A5:B9:04:E3:73:86:48:7B:96:E5:46:64:42:0B:D8:F2:06
X509v3 Authority Key Identifier:
keyid:4E:E1:71:3E:16:B4:FD:8F:33:01:88:7D:E6:A1:11:98:04:49:B2:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuFxPha0_Y8zAYh95qERmARJsp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/E1y_pbkE43OGSHuW5UZkQgvY8gY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/TuFxPha0_Y8zAYh95qERmARJsp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.248.0/21
81.161.192.0/20
91.232.44.0/23
109.199.0.0/19
176.227.160.0/21
178.249.88.0/21
185.34.76.0/22
185.73.88.0/22
185.80.212.0/22
193.242.168.0/23
195.3.232.0/22
IPv6:
2a04:4c0::/29
Signature Algorithm: sha256WithRSAEncryption
41:c8:ae:17:ce:71:1a:c3:fa:25:7b:d3:9b:f8:6c:49:1f:2a:
83:0a:df:e1:9d:70:9c:cb:5d:7c:5d:45:cf:75:59:b9:b1:14:
45:ec:19:2a:b8:76:10:bd:ef:48:b4:46:08:69:98:21:58:f6:
66:9c:d7:8f:8c:1e:b8:3d:a0:6f:08:ce:b1:12:4e:5b:4d:82:
ae:fc:f9:95:c2:49:29:a0:8a:f6:58:17:70:18:c2:62:8e:11:
90:7e:97:0f:52:0e:a3:d9:7e:a3:21:b4:01:c9:f3:00:6f:32:
54:a6:27:1d:2a:60:c7:9f:cb:59:6f:7b:93:bc:2a:b7:b7:74:
29:cb:ab:df:c3:9d:6a:79:6d:2f:26:a2:ba:62:73:e1:ec:31:
a5:a8:e6:bb:52:eb:f5:12:8f:a9:00:ea:0e:77:c2:ed:98:28:
20:f1:9e:16:32:cf:4a:b2:fb:6a:19:78:16:be:e4:20:e3:5e:
23:cb:2a:37:14:ab:ca:e7:42:8c:95:6d:f6:a7:c3:ef:29:b8:
9e:c6:fb:bc:49:b9:06:36:58:87:6e:ed:25:18:82:16:00:61:
e1:fe:30:09:c6:62:14:b2:2f:df:00:13:65:3c:ff:1a:45:b6:
ba:63:dd:39:17:5e:ce:6b:91:a4:2f:99:61:8c:b9:61:d6:b8:
38:d6:32:74
-----BEGIN CERTIFICATE-----
MIIFSDCCBDCgAwIBAgISAYKv82DrOkvhMbkt6g2K/RVpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlZTE3MTNlMTZiNGZkOGYzMzAxODg3ZGU2YTExMTk4MDQ0
OWIyOWUwHhcNMjIwODE4MDc1NTM5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzVjYmZhNWI5MDRlMzczODY0ODdiOTZlNTQ2NjQ0MjBiZDhmMjA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnDtNehaKpWi9M7T9iXr6i+2hoNvA
Z+JNBgq+DQIBTx9bRb/o9FqOaibT6gDqS5kkZLwwywnYT0A+Nq+FdJHQ/74iKbz5
3OWW/gdwRJM45N3pN63N8cp0Bv4RFturoWC1OyZ1kIE6QsUq6K43Vyl9UKXwxQXA
VYLtuw6Q8/Vsr0J8j3FJPmZ3bza5mlxM+hDPadUl2XFT21L5bAaVxzxDH6EHclIo
gOCwuAI+lLD68rGatmn0VDxgcuZzP8us8A57GFLWcWmAfyfuzp5x906lnTiaeEKX
NrY6swlXOPazqCDa4vTKLzRjKxJiHyfz/scRnIz7T6FKmNiQP7BLrjGu4QIDAQAB
o4ICVDCCAlAwHQYDVR0OBBYEFBNcv6W5BONzhkh7luVGZEIL2PIGMB8GA1UdIwQY
MBaAFE7hcT4WtP2PMwGIfeahEZgESbKeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHVGeFBoYTBfWTh6QVloOTVxRVJtQVJKc3A0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC80OGM5ZjYtNWI1Zi00MWQ0LThlNTYt
MDhlNGI3OTM4N2MwLzEvRTF5X3Bia0U0M09HU0h1VzVVWmtRZ3ZZOGdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC80OGM5ZjYtNWI1Zi00MWQ0LThlNTYtMDhlNGI3OTM4N2Mw
LzEvVHVGeFBoYTBfWTh6QVloOTVxRVJtQVJKc3A0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGoGCCsGAQUFBwEHAQH/BFswWTBIBAIAATBCAwQDBWj4AwQE
UaHAAwQBW+gsAwQFbccAAwQDsOOgAwQDsvlYAwQCuSJMAwQCuUlYAwQCuVDUAwQB
wfKoAwQCwwPoMA0EAgACMAcDBQMqBATAMA0GCSqGSIb3DQEBCwUAA4IBAQBByK4X
znEaw/ole9Ob+GxJHyqDCt/hnXCcy118XUXPdVm5sRRF7BkquHYQve9ItEYIaZgh
WPZmnNePjB64PaBvCM6xEk5bTYKu/PmVwkkpoIr2WBdwGMJijhGQfpcPUg6j2X6j
IbQByfMAbzJUpicdKmDHn8tZb3uTvCq3t3Qpy6vfw51qeW0vJqK6YnPh7DGlqOa7
Uuv1Eo+pAOoOd8LtmCgg8Z4WMs9KsvtqGXgWvuQg414jyyo3FKvK50KMlW32p8Pv
Kbiexvu8SbkGNliHbu0lGIIWAGHh/jAJxmIUsi/fABNlPP8aRba6Y905F17Oa5Gk
L5lhjLlh1rg41jJ0
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:53 2024 by rpki-client on console-fra.rpki-client.org