Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/CDAMt2s0HvNORP_NTdT9oVJEKVY.roa
File: CDAMt2s0HvNORP_NTdT9oVJEKVY.roa (raw, json)
Hash identifier: LKPhjlj+NaT+XE/B6vyhjauvuqsD92r+m9fT4IPmDkQ=
Subject key identifier: 08:30:0C:B7:6B:34:1E:F3:4E:44:FF:CD:4D:D4:FD:A1:52:44:29:56
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018785DCA1139C29FF438AB89CA3B97D6EFC
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/CDAMt2s0HvNORP_NTdT9oVJEKVY.roa
Signing time: Sat 15 Apr 2023 17:00:41 +0000
ROA not before: Sat 15 Apr 2023 17:00:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12880
IP address blocks: 2.188.2.0/24 maxlen: 24
2.188.3.0/24 maxlen: 24
2.188.4.0/24 maxlen: 24
2.188.5.0/24 maxlen: 24
2.188.0.0/16 maxlen: 16
2.188.10.0/24 maxlen: 24
2.188.9.0/24 maxlen: 24
2.188.8.0/24 maxlen: 24
2.188.7.0/24 maxlen: 24
2.188.14.0/24 maxlen: 24
2.188.13.0/24 maxlen: 24
2.188.17.0/24 maxlen: 24
2.188.12.0/24 maxlen: 24
2.188.12.0/22 maxlen: 22
2.188.15.0/24 maxlen: 24
2.188.22.0/24 maxlen: 24
2.188.18.0/24 maxlen: 24
2.188.21.0/24 maxlen: 24
2.188.20.0/24 maxlen: 24
2.188.19.0/24 maxlen: 24
2.188.26.0/23 maxlen: 23
2.188.30.0/24 maxlen: 24
2.188.25.0/24 maxlen: 24
2.188.31.0/24 maxlen: 24
2.188.48.0/22 maxlen: 22
78.39.165.0/24 maxlen: 24
78.39.179.0/24 maxlen: 24
2.189.5.48/28 maxlen: 28
2.188.58.0/24 maxlen: 24
2.188.61.0/24 maxlen: 24
2.188.64.0/21 maxlen: 21
2.188.78.0/24 maxlen: 24
2.188.77.0/24 maxlen: 24
2.188.76.0/24 maxlen: 24
2.188.79.0/24 maxlen: 24
78.38.242.0/24 maxlen: 24
78.38.241.0/24 maxlen: 24
78.38.244.0/24 maxlen: 24
78.38.245.0/24 maxlen: 24
78.38.249.0/24 maxlen: 24
78.38.253.0/24 maxlen: 24
78.38.255.0/24 maxlen: 24
78.39.0.0/16 maxlen: 16
78.38.193.0/24 maxlen: 24
78.38.201.0/24 maxlen: 24
78.38.209.0/24 maxlen: 24
2.187.0.0/16 maxlen: 16
78.38.220.0/23 maxlen: 23
78.38.240.0/24 maxlen: 24
78.39.130.0/24 maxlen: 24
2.189.5.96/28 maxlen: 28
78.38.32.0/19 maxlen: 19
217.219.236.0/22 maxlen: 22
78.38.0.0/16 maxlen: 16
78.38.160.0/19 maxlen: 19
195.146.37.0/24 maxlen: 24
195.146.32.0/19 maxlen: 19
195.146.32.0/20 maxlen: 20
195.146.36.0/24 maxlen: 24
195.146.32.0/24 maxlen: 24
195.146.50.0/24 maxlen: 24
195.146.46.0/23 maxlen: 23
195.146.60.0/24 maxlen: 24
195.146.63.0/24 maxlen: 24
217.219.40.0/22 maxlen: 22
2.178.192.0/18 maxlen: 18
217.219.0.0/16 maxlen: 16
217.219.24.0/21 maxlen: 21
217.219.152.0/21 maxlen: 21
85.185.230.0/23 maxlen: 23
2.189.5.64/28 maxlen: 28
85.185.192.0/22 maxlen: 22
217.218.85.0/24 maxlen: 24
80.191.103.0/24 maxlen: 24
217.218.94.0/24 maxlen: 24
217.218.96.0/19 maxlen: 19
217.218.105.0/24 maxlen: 24
217.218.104.0/24 maxlen: 24
2.178.0.0/19 maxlen: 19
217.218.114.0/24 maxlen: 24
217.218.131.0/24 maxlen: 24
217.218.127.0/24 maxlen: 24
217.218.132.0/24 maxlen: 24
80.191.41.0/24 maxlen: 24
80.191.64.0/23 maxlen: 23
217.218.48.0/21 maxlen: 21
80.191.61.0/24 maxlen: 24
80.191.67.0/24 maxlen: 24
217.218.56.0/24 maxlen: 24
80.191.69.0/24 maxlen: 24
80.191.70.0/24 maxlen: 24
217.218.55.0/24 maxlen: 24
217.218.64.0/24 maxlen: 24
217.218.64.0/18 maxlen: 18
80.191.81.0/24 maxlen: 24
217.218.67.0/24 maxlen: 24
80.191.88.0/21 maxlen: 21
2.189.79.64/27 maxlen: 27
85.185.42.0/24 maxlen: 24
85.185.45.0/24 maxlen: 24
217.218.239.0/24 maxlen: 24
217.218.235.0/24 maxlen: 24
2.189.5.112/28 maxlen: 28
2.178.128.0/18 maxlen: 18
217.218.143.0/24 maxlen: 24
2.178.32.0/19 maxlen: 19
217.218.141.0/24 maxlen: 24
217.218.155.0/24 maxlen: 24
2.178.64.0/18 maxlen: 18
85.185.0.0/16 maxlen: 16
217.218.180.0/24 maxlen: 24
2.185.0.0/16 maxlen: 16
2.177.0.0/17 maxlen: 17
2.177.128.0/17 maxlen: 17
80.191.0.0/24 maxlen: 24
80.191.0.0/16 maxlen: 16
2.191.0.0/16 maxlen: 16
217.218.0.0/17 maxlen: 17
217.218.0.0/16 maxlen: 16
80.191.24.0/24 maxlen: 24
80.191.27.0/24 maxlen: 24
80.191.29.0/24 maxlen: 24
80.191.36.0/24 maxlen: 24
217.218.21.0/24 maxlen: 24
80.191.32.0/24 maxlen: 24
2.189.5.32/28 maxlen: 28
2.182.248.0/22 maxlen: 22
2.182.214.0/23 maxlen: 23
2.189.79.32/27 maxlen: 27
2.176.192.0/18 maxlen: 18
2.189.5.80/28 maxlen: 28
2.176.0.0/12 maxlen: 12
2.189.7.0/24 maxlen: 24
2.189.0.0/16 maxlen: 16
2.188.183.0/24 maxlen: 24
2.188.185.0/24 maxlen: 24
2.188.192.0/18 maxlen: 18
2.189.78.0/24 maxlen: 24
2.189.77.0/24 maxlen: 24
2.189.79.0/24 maxlen: 24
2.182.96.0/19 maxlen: 19
2.189.45.0/24 maxlen: 24
2.189.59.0/24 maxlen: 24
2001:4188::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:85:dc:a1:13:9c:29:ff:43:8a:b8:9c:a3:b9:7d:6e:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Apr 15 17:00:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08300cb76b341ef34e44ffcd4dd4fda152442956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:be:50:78:26:88:93:7a:4d:7d:a0:e0:5d:4d:
11:f1:49:28:58:f8:f2:e0:53:32:31:57:d6:fc:8c:
ca:18:b8:a1:9e:d6:ce:20:74:8a:c5:3a:58:a3:b1:
16:c8:87:92:be:17:2e:2c:6d:e2:54:b0:65:c9:ea:
9f:7f:5e:da:0d:8c:dd:3b:75:c3:78:bb:14:26:a8:
e0:9d:f1:99:87:7d:88:da:02:cc:24:b1:e7:bb:e4:
2c:53:45:49:9d:9e:ed:62:44:3b:d7:57:24:24:59:
ed:2e:bd:d4:15:23:8b:57:47:4a:9c:f9:5f:43:28:
ea:96:4b:a0:18:8d:3d:59:13:65:30:db:ab:93:15:
ab:76:2b:a1:b5:41:67:a7:f4:ea:e8:1a:04:0c:fb:
8f:58:6c:4d:74:26:89:e4:e3:b4:56:31:ea:45:94:
32:ae:b1:82:6e:be:30:8f:31:23:7c:0c:ac:39:f0:
ed:21:55:65:28:b2:c1:31:db:f7:32:5b:68:0c:c2:
1d:d4:71:fd:1f:0a:c7:29:6c:9e:a4:0b:55:03:4b:
ec:7e:52:a7:7f:d7:b1:f4:7d:d8:a8:84:ba:71:be:
67:e0:82:a8:1e:aa:84:a7:e8:57:87:b1:54:7c:b4:
99:31:57:36:46:13:f0:e1:49:95:73:08:02:fa:18:
b5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:30:0C:B7:6B:34:1E:F3:4E:44:FF:CD:4D:D4:FD:A1:52:44:29:56
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/CDAMt2s0HvNORP_NTdT9oVJEKVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.176.0.0/12
78.38.0.0/15
80.191.0.0/16
85.185.0.0/16
195.146.32.0/19
217.218.0.0/15
IPv6:
2001:4188::/48
Signature Algorithm: sha256WithRSAEncryption
60:26:dd:2d:2f:a6:d0:ae:74:dc:93:58:28:dc:66:60:b6:36:
8d:01:b7:b1:1a:fd:eb:e3:07:7b:a2:a5:da:b6:2d:c9:83:a5:
22:4c:01:a4:48:e5:8c:b4:55:e1:8c:35:fa:e3:6c:92:cb:aa:
4a:95:00:b7:5f:20:4e:11:f1:7e:4f:61:53:bd:00:6f:11:66:
a0:ef:ab:63:0d:98:1d:47:52:0c:78:ad:e2:e0:d3:6c:de:19:
2a:02:2f:d9:64:e6:74:7a:16:bd:b6:14:d7:31:8b:33:96:ef:
f7:4e:71:65:fd:77:5f:e6:55:90:1d:75:e6:27:90:59:d3:80:
ef:3f:22:46:81:7a:11:67:21:96:5b:16:bb:60:0d:a2:b8:9e:
84:69:47:2b:e8:2b:53:e2:eb:65:e7:e9:df:60:3c:29:e9:15:
37:64:1e:9d:8b:e7:9d:42:5f:a6:39:cd:7c:af:e3:30:52:9a:
a1:11:e8:63:2a:70:61:09:92:2d:25:18:99:7f:55:38:91:8d:
ff:d0:eb:76:f0:6e:ac:72:ab:4e:05:db:93:e1:a2:a0:43:f6:
92:5f:84:05:00:dd:b8:99:b7:2d:52:9c:ca:6c:f2:a2:f7:37:
86:43:4f:54:f1:40:41:a5:29:5a:41:46:bf:34:44:23:80:f8:
d6:e6:c4:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:06 2025 by rpki-client