Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/efb2d1-c5cb-4143-aa88-610072d80115/1/ixtBajpBEQuItJvWj9s-40Yc0Ik.roa
File: ixtBajpBEQuItJvWj9s-40Yc0Ik.roa (raw, json)
Hash identifier: qZ0pOJsmq3mzhnjNhCMBxSPkB5Tg+wJ7MRUusM+b+Hs=
Subject key identifier: 8B:1B:41:6A:3A:41:11:0B:88:B4:9B:D6:8F:DB:3E:E3:46:1C:D0:89
Certificate issuer: /CN=5be8fe8827bdc609355509e0c9e80eab21f9cdc3
Certificate serial: 01851A800367A4E1017CE8C9122B05120CF8
Authority key identifier: 5B:E8:FE:88:27:BD:C6:09:35:55:09:E0:C9:E8:0E:AB:21:F9:CD:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-j-iCe9xgk1VQngyegOqyH5zcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/efb2d1-c5cb-4143-aa88-610072d80115/1/ixtBajpBEQuItJvWj9s-40Yc0Ik.roa
Signing time: Fri 16 Dec 2022 10:34:35 +0000
ROA not before: Fri 16 Dec 2022 10:34:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6802
IP address blocks: 194.141.0.0/24 maxlen: 24
194.141.1.0/24 maxlen: 24
194.141.2.0/24 maxlen: 24
194.141.3.0/24 maxlen: 24
194.141.8.0/24 maxlen: 24
194.141.9.0/24 maxlen: 24
194.141.5.0/24 maxlen: 24
194.141.0.0/16 maxlen: 16
194.141.6.0/24 maxlen: 24
194.141.66.0/24 maxlen: 24
194.141.67.0/24 maxlen: 24
194.141.68.0/24 maxlen: 24
194.141.69.0/24 maxlen: 24
194.141.78.0/24 maxlen: 24
194.141.79.0/24 maxlen: 24
194.141.84.0/24 maxlen: 24
194.141.86.0/24 maxlen: 24
194.141.104.0/21 maxlen: 21
194.141.112.0/24 maxlen: 24
194.141.118.0/24 maxlen: 24
194.141.116.0/22 maxlen: 22
194.141.113.0/24 maxlen: 24
194.141.116.0/23 maxlen: 23
194.141.16.0/22 maxlen: 22
194.141.15.0/24 maxlen: 24
194.141.12.0/24 maxlen: 24
194.141.22.0/24 maxlen: 24
194.141.24.0/21 maxlen: 21
194.141.37.0/24 maxlen: 24
194.141.32.0/22 maxlen: 22
194.141.43.0/24 maxlen: 24
194.141.44.0/23 maxlen: 23
194.141.38.0/23 maxlen: 23
194.141.40.0/24 maxlen: 24
194.141.41.0/24 maxlen: 24
194.141.51.0/24 maxlen: 24
194.141.47.0/24 maxlen: 24
194.141.52.0/22 maxlen: 22
194.141.56.0/23 maxlen: 23
194.141.64.0/23 maxlen: 23
194.141.221.0/24 maxlen: 24
194.141.222.0/24 maxlen: 24
194.141.225.0/24 maxlen: 24
194.141.226.0/24 maxlen: 24
194.141.119.0/24 maxlen: 24
194.141.228.0/22 maxlen: 22
194.141.232.0/21 maxlen: 21
194.141.227.0/24 maxlen: 24
194.141.245.0/24 maxlen: 24
2001:4b58::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1a:80:03:67:a4:e1:01:7c:e8:c9:12:2b:05:12:0c:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5be8fe8827bdc609355509e0c9e80eab21f9cdc3
Validity
Not Before: Dec 16 10:34:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b1b416a3a41110b88b49bd68fdb3ee3461cd089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c6:1b:9c:0c:bb:01:4e:ad:be:51:bf:b7:c6:
3f:88:a5:14:2d:01:0f:c6:21:6f:d7:d6:5f:4b:3b:
25:52:ff:ef:39:9f:a6:50:d3:9b:52:d9:bf:96:0e:
58:c5:3e:b3:f1:16:cd:19:c9:f9:f3:86:74:ea:8a:
f8:0e:fa:3b:63:cc:01:c2:72:ef:73:ea:78:28:58:
e3:0a:b9:0e:c9:75:23:0f:a2:db:fa:27:4e:49:3a:
0f:52:2c:ab:2b:7b:19:e9:15:d0:0a:83:93:2b:c0:
40:24:1a:09:4c:96:0f:cd:a4:f2:d7:90:21:f1:fc:
00:68:c9:a9:bf:39:bc:a6:56:ff:93:56:bc:93:f8:
32:e8:c1:ab:31:5b:4a:50:75:b4:ae:6f:89:8c:1b:
e7:39:8d:52:81:2f:d0:75:7a:75:86:07:15:5e:b4:
08:b0:a6:b0:4d:19:ee:a0:a6:20:8f:17:f5:38:d6:
01:1f:3c:93:42:b7:cd:72:6f:27:48:d1:b0:79:22:
9b:d7:08:60:0e:b4:a2:53:8a:8c:67:c9:16:43:96:
f4:19:15:e2:17:ab:e3:3a:08:15:89:ea:fa:a3:52:
90:82:99:ed:3e:44:6e:a6:cf:13:5c:a7:9e:f4:9d:
e9:9c:96:a7:b4:db:22:26:ab:d3:8d:29:af:39:63:
8d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:1B:41:6A:3A:41:11:0B:88:B4:9B:D6:8F:DB:3E:E3:46:1C:D0:89
X509v3 Authority Key Identifier:
keyid:5B:E8:FE:88:27:BD:C6:09:35:55:09:E0:C9:E8:0E:AB:21:F9:CD:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-j-iCe9xgk1VQngyegOqyH5zcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/efb2d1-c5cb-4143-aa88-610072d80115/1/ixtBajpBEQuItJvWj9s-40Yc0Ik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/efb2d1-c5cb-4143-aa88-610072d80115/1/W-j-iCe9xgk1VQngyegOqyH5zcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.141.0.0/16
IPv6:
2001:4b58::/32
Signature Algorithm: sha256WithRSAEncryption
79:50:82:31:cd:fc:0e:6f:00:e0:3c:06:23:b0:a7:17:ce:ac:
e7:6e:42:a2:cc:cc:83:77:78:33:32:e3:1a:d6:d6:27:32:e6:
5e:83:1a:26:61:6a:0e:76:d0:90:73:2e:04:bb:a2:93:53:5b:
00:ff:cb:fe:f1:5a:df:24:4e:0f:44:16:ef:ed:70:69:6f:4d:
9a:39:eb:ce:2a:b5:ab:10:3b:f5:45:f4:86:2b:9e:96:92:93:
9f:75:22:f4:ee:fd:98:fd:1b:8a:83:29:62:73:1e:c2:ac:2d:
ca:6e:d6:9d:6e:37:00:06:e6:8c:ef:77:87:69:f1:16:d1:28:
bb:f4:be:7a:c0:6b:a0:c1:c8:94:a6:12:0b:da:79:74:22:1e:
9b:43:0a:51:f8:4c:b9:bd:04:e1:e7:e9:d5:fc:3c:a3:a1:a0:
24:53:45:53:6e:25:cc:ef:1e:b4:d5:79:18:25:8f:8b:70:76:
39:3d:ce:c2:76:bb:7d:4f:95:e5:c1:b1:8f:69:7d:ab:ac:df:
f9:81:a7:71:91:83:86:7a:99:c7:f3:11:a2:f0:d3:18:7f:a4:
3e:f6:ce:a6:d8:07:68:98:3f:17:b3:c8:97:2b:d6:23:57:6c:
85:94:fe:f5:59:b5:6a:9e:ff:e6:c2:49:a6:a1:d1:2b:7a:b1:
90:53:16:14
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYUagANnpOEBfOjJEisFEgz4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViZThmZTg4MjdiZGM2MDkzNTU1MDllMGM5ZTgwZWFiMjFm
OWNkYzMwHhcNMjIxMjE2MTAzNDM1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YjFiNDE2YTNhNDExMTBiODhiNDliZDY4ZmRiM2VlMzQ2MWNkMDg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAicYbnAy7AU6tvlG/t8Y/iKUULQEP
xiFv19ZfSzslUv/vOZ+mUNObUtm/lg5YxT6z8RbNGcn584Z06or4Dvo7Y8wBwnLv
c+p4KFjjCrkOyXUjD6Lb+idOSToPUiyrK3sZ6RXQCoOTK8BAJBoJTJYPzaTy15Ah
8fwAaMmpvzm8plb/k1a8k/gy6MGrMVtKUHW0rm+JjBvnOY1SgS/QdXp1hgcVXrQI
sKawTRnuoKYgjxf1ONYBHzyTQrfNcm8nSNGweSKb1whgDrSiU4qMZ8kWQ5b0GRXi
F6vjOggVier6o1KQgpntPkRups8TXKee9J3pnJantNsiJqvTjSmvOWONywIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFIsbQWo6QRELiLSb1o/bPuNGHNCJMB8GA1UdIwQY
MBaAFFvo/ognvcYJNVUJ4MnoDqsh+c3DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVy1qLWlDZTl4Z2sxVlFuZ3llZ09xeUg1emNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9lZmIyZDEtYzVjYi00MTQzLWFhODgt
NjEwMDcyZDgwMTE1LzEvaXh0QmFqcEJFUXVJdEp2V2o5cy00MFljMElrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS9lZmIyZDEtYzVjYi00MTQzLWFhODgtNjEwMDcyZDgwMTE1
LzEvVy1qLWlDZTl4Z2sxVlFuZ3llZ09xeUg1emNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDALBAIAATAFAwMAwo0wDQQC
AAIwBwMFACABS1gwDQYJKoZIhvcNAQELBQADggEBAHlQgjHN/A5vAOA8BiOwpxfO
rOduQqLMzIN3eDMy4xrW1icy5l6DGiZhag520JBzLgS7opNTWwD/y/7xWt8kTg9E
Fu/tcGlvTZo5684qtasQO/VF9IYrnpaSk591IvTu/Zj9G4qDKWJzHsKsLcpu1p1u
NwAG5ozvd4dp8RbRKLv0vnrAa6DByJSmEgvaeXQiHptDClH4TLm9BOHn6dX8PKOh
oCRTRVNuJczvHrTVeRglj4twdjk9zsJ2u31PleXBsY9pfaus3/mBp3GRg4Z6mcfz
EaLw0xh/pD72zqbYB2iYPxezyJcr1iNXbIWU/vVZtWqe/+bCSaah0St6sZBTFhQ=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:22 2025 by rpki-client