Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/edEdZ1jJ-Zl4vOUU83xRBMxVBto.roa
File: edEdZ1jJ-Zl4vOUU83xRBMxVBto.roa (raw, json)
Hash identifier: nL7qqK0KQWeZE9Ur9cqzUICRpl5P+uxzCitbJo/A7Qs=
Subject key identifier: 79:D1:1D:67:58:C9:F9:99:78:BC:E5:14:F3:7C:51:04:CC:55:06:DA
Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89
Certificate serial: 018C8C0CCCCC205967F6F4532C9E93428740
Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/edEdZ1jJ-Zl4vOUU83xRBMxVBto.roa
Signing time: Thu 21 Dec 2023 11:04:58 +0000
ROA not before: Thu 21 Dec 2023 11:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44565
IP address blocks: 188.124.4.0/24 maxlen: 24
188.124.1.0/24 maxlen: 24
188.124.0.0/24 maxlen: 24
188.124.2.0/24 maxlen: 24
188.124.11.0/24 maxlen: 24
188.124.6.0/24 maxlen: 24
188.124.8.0/24 maxlen: 24
188.124.7.0/24 maxlen: 24
188.124.10.0/24 maxlen: 24
188.124.9.0/24 maxlen: 24
188.124.13.0/24 maxlen: 24
188.124.12.0/24 maxlen: 24
188.124.15.0/24 maxlen: 24
188.124.14.0/24 maxlen: 24
188.124.17.0/24 maxlen: 24
188.124.16.0/24 maxlen: 24
188.124.18.0/24 maxlen: 24
188.124.20.0/24 maxlen: 24
188.124.19.0/24 maxlen: 24
188.124.22.0/24 maxlen: 24
188.124.21.0/24 maxlen: 24
188.124.24.0/24 maxlen: 24
188.124.23.0/24 maxlen: 24
188.124.25.0/24 maxlen: 24
188.124.27.0/24 maxlen: 24
188.124.26.0/24 maxlen: 24
188.124.29.0/24 maxlen: 24
188.124.28.0/24 maxlen: 24
188.124.31.0/24 maxlen: 24
188.124.30.0/24 maxlen: 24
79.171.17.0/24 maxlen: 24
79.171.16.0/24 maxlen: 24
79.171.19.0/24 maxlen: 24
79.171.18.0/24 maxlen: 24
79.171.21.0/24 maxlen: 24
79.171.20.0/24 maxlen: 24
93.186.112.0/24 maxlen: 24
93.186.113.0/24 maxlen: 24
93.186.115.0/24 maxlen: 24
93.186.114.0/24 maxlen: 24
93.186.117.0/24 maxlen: 24
93.186.116.0/24 maxlen: 24
93.186.118.0/24 maxlen: 24
93.186.120.0/24 maxlen: 24
93.186.119.0/24 maxlen: 24
93.186.122.0/24 maxlen: 24
93.186.121.0/24 maxlen: 24
93.186.124.0/24 maxlen: 24
93.186.123.0/24 maxlen: 24
93.186.127.0/24 maxlen: 24
93.186.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8c:0c:cc:cc:20:59:67:f6:f4:53:2c:9e:93:42:87:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89
Validity
Not Before: Dec 21 11:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79d11d6758c9f99978bce514f37c5104cc5506da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:03:a6:f1:8b:d6:53:2a:cd:fd:f1:09:6b:4f:
8d:c3:02:dc:c6:76:40:53:50:b5:44:79:dd:b8:a2:
d0:aa:47:60:e1:c9:80:35:da:66:8a:04:79:15:06:
53:d5:7f:29:33:e3:1f:9d:20:48:e1:28:c7:03:9e:
7e:0d:c8:c5:a4:b4:e4:e6:fa:72:b5:5d:63:fc:91:
d6:2e:b7:d2:0c:6a:ca:ea:61:82:e6:fb:40:bf:d5:
a6:f5:1b:90:28:24:38:2b:8d:b2:f8:37:9d:61:0b:
7b:e2:e8:29:ae:b9:6b:8d:f1:42:8f:fa:0c:fb:03:
06:76:54:dc:08:3f:55:fc:97:02:35:a9:e6:c5:07:
16:b5:46:51:b2:0d:e6:2e:32:28:32:01:b1:a7:94:
22:a5:4f:ff:72:49:c2:81:12:1c:ab:0c:e5:96:4f:
8d:3a:a8:1b:6a:0a:46:4b:39:87:74:97:a9:1a:fb:
32:7a:a9:83:bd:d1:a7:23:45:fe:41:f0:09:b2:d2:
8f:73:00:c3:3c:12:f9:a0:27:bb:3d:c3:fc:60:e2:
2d:ed:c4:81:50:45:07:d5:e7:ac:67:00:91:d9:50:
61:26:ed:a8:06:41:fe:3b:b5:31:e4:7c:18:6b:11:
44:1a:f4:06:fc:81:af:53:de:d1:0d:33:e5:83:dc:
2c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D1:1D:67:58:C9:F9:99:78:BC:E5:14:F3:7C:51:04:CC:55:06:DA
X509v3 Authority Key Identifier:
keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/edEdZ1jJ-Zl4vOUU83xRBMxVBto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.171.16.0-79.171.21.255
93.186.112.0-93.186.124.255
93.186.126.0/23
188.124.0.0-188.124.2.255
188.124.4.0/24
188.124.6.0-188.124.31.255
Signature Algorithm: sha256WithRSAEncryption
3b:c3:ae:fe:09:fa:97:19:80:c5:be:fe:1b:82:c6:8f:56:33:
03:42:de:c5:bd:d1:00:01:ee:5f:28:9c:1d:d9:39:ff:b4:fb:
4c:03:e8:15:80:83:58:4f:14:f3:61:a3:58:8e:64:36:36:84:
bf:55:a4:13:2b:2c:ae:e4:81:d8:57:65:e7:a5:75:fe:ef:6d:
2c:1e:00:4a:77:23:d3:0e:62:b2:77:09:87:3e:8e:24:40:8f:
da:b7:c7:0c:60:d2:af:3c:ba:db:a4:fa:6d:c7:5d:5c:e8:4c:
ed:f9:9d:d6:35:e5:a1:27:82:8e:f1:51:f9:a2:e5:ee:d5:25:
85:db:f7:6f:f3:2f:f2:f5:33:c9:55:b7:74:d8:43:3e:5d:e3:
17:d2:a8:de:f6:87:ed:2a:40:a4:07:0e:61:9b:ce:57:6d:20:
1e:de:72:4b:1e:8b:4c:32:07:49:cf:2e:c8:8d:2b:2c:2d:20:
1f:3b:2b:7a:14:56:7c:c5:64:cf:f2:e6:6d:20:b5:d2:cc:3d:
5d:85:0e:ff:dd:21:85:1d:00:bf:c2:5c:33:17:6c:ee:f0:64:
94:51:dd:b8:21:cf:fd:7b:1a:97:1d:e9:69:68:d7:cb:60:4b:
5f:d2:50:94:30:d2:30:4d:da:13:7c:bc:2a:16:d7:0c:f1:6a:
b9:9b:4c:da
-----BEGIN CERTIFICATE-----
MIIFOjCCBCKgAwIBAgISAYyMDMzMIFln9vRTLJ6TQodAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNGFiYThiNjA3NDkzOTM0NzhlODNjMzYwZTZjYmQ3NWQx
NTZmODkwHhcNMjMxMjIxMTEwNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OWQxMWQ2NzU4YzlmOTk5NzhiY2U1MTRmMzdjNTEwNGNjNTUwNmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkwOm8YvWUyrN/fEJa0+NwwLcxnZA
U1C1RHnduKLQqkdg4cmANdpmigR5FQZT1X8pM+MfnSBI4SjHA55+DcjFpLTk5vpy
tV1j/JHWLrfSDGrK6mGC5vtAv9Wm9RuQKCQ4K42y+DedYQt74ugprrlrjfFCj/oM
+wMGdlTcCD9V/JcCNanmxQcWtUZRsg3mLjIoMgGxp5QipU//cknCgRIcqwzllk+N
OqgbagpGSzmHdJepGvsyeqmDvdGnI0X+QfAJstKPcwDDPBL5oCe7PcP8YOIt7cSB
UEUH1eesZwCR2VBhJu2oBkH+O7Ux5HwYaxFEGvQG/IGvU97RDTPlg9wsIwIDAQAB
o4ICRjCCAkIwHQYDVR0OBBYEFHnRHWdYyfmZeLzlFPN8UQTMVQbaMB8GA1UdIwQY
MBaAFLFKuotgdJOTR46Dw2Dmy9ddFW+JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1VxNmkyQjBrNU5Iam9QRFlPYkwxMTBWYjRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi80NjE2ODUtMDczZS00MWFmLTliYjYt
Y2Y2YzMwNTIxMmViLzEvZWRFZFoxakotWmw0dk9VVTgzeFJCTXhWQnRvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi80NjE2ODUtMDczZS00MWFmLTliYjYtY2Y2YzMwNTIxMmVi
LzEvc1VxNmkyQjBrNU5Iam9QRFlPYkwxMTBWYjRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFwGCCsGAQUFBwEHAQH/BE0wSzBJBAIAATBDMAwDBARPqxAD
BAFPqxQwDAMEBF26cAMEAF26fAMEAV26fjALAwMCvHwDBAC8fAIDBAC8fAQwDAME
Abx8BgMEBbx8ADANBgkqhkiG9w0BAQsFAAOCAQEAO8Ou/gn6lxmAxb7+G4LGj1Yz
A0Lexb3RAAHuXyicHdk5/7T7TAPoFYCDWE8U82GjWI5kNjaEv1WkEyssruSB2Fdl
56V1/u9tLB4ASncj0w5isncJhz6OJECP2rfHDGDSrzy626T6bcddXOhM7fmd1jXl
oSeCjvFR+aLl7tUlhdv3b/Mv8vUzyVW3dNhDPl3jF9Ko3vaH7SpApAcOYZvOV20g
Ht5ySx6LTDIHSc8uyI0rLC0gHzsrehRWfMVkz/LmbSC10sw9XYUO/90hhR0Av8Jc
Mxds7vBklFHduCHP/Xsalx3paWjXy2BLX9JQlDDSME3aE3y8KhbXDPFquZtM2g==
-----END CERTIFICATE-----
Generated at Wed Apr 23 00:58:54 2025 by rpki-client