Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/EMnqbhcM_S3o5iG0qUVUk1gXGHQ.roa
File: EMnqbhcM_S3o5iG0qUVUk1gXGHQ.roa (raw, json)
Hash identifier: ji0jxh0iZ8VywckF0QCwVuRAFvty5wTNE7sCjeR9myI=
Subject key identifier: 10:C9:EA:6E:17:0C:FD:2D:E8:E6:21:B4:A9:45:54:93:58:17:18:74
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018571B9EC9EB2247E95BB3DBDD09C9CA915
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/EMnqbhcM_S3o5iG0qUVUk1gXGHQ.roa
Signing time: Mon 02 Jan 2023 09:04:48 +0000
ROA not before: Mon 02 Jan 2023 09:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12880
IP address blocks: 2.188.2.0/24 maxlen: 24
2.188.3.0/24 maxlen: 24
2.188.4.0/24 maxlen: 24
2.188.5.0/24 maxlen: 24
2.188.0.0/16 maxlen: 16
2.188.10.0/24 maxlen: 24
2.188.9.0/24 maxlen: 24
2.188.8.0/24 maxlen: 24
2.188.7.0/24 maxlen: 24
2.188.14.0/24 maxlen: 24
2.188.13.0/24 maxlen: 24
2.188.17.0/24 maxlen: 24
2.188.12.0/24 maxlen: 24
2.188.12.0/22 maxlen: 22
2.188.15.0/24 maxlen: 24
2.188.22.0/24 maxlen: 24
2.188.18.0/24 maxlen: 24
2.188.21.0/24 maxlen: 24
2.188.20.0/24 maxlen: 24
2.188.19.0/24 maxlen: 24
2.188.26.0/23 maxlen: 23
2.188.30.0/24 maxlen: 24
2.188.25.0/24 maxlen: 24
2.188.31.0/24 maxlen: 24
78.39.165.0/24 maxlen: 24
78.39.179.0/24 maxlen: 24
2.189.5.48/28 maxlen: 28
2.188.58.0/24 maxlen: 24
2.188.64.0/21 maxlen: 21
2.188.78.0/24 maxlen: 24
2.188.77.0/24 maxlen: 24
2.188.76.0/24 maxlen: 24
2.188.79.0/24 maxlen: 24
78.38.242.0/24 maxlen: 24
78.38.241.0/24 maxlen: 24
78.38.244.0/24 maxlen: 24
78.38.245.0/24 maxlen: 24
78.38.249.0/24 maxlen: 24
78.38.253.0/24 maxlen: 24
78.38.255.0/24 maxlen: 24
78.39.0.0/16 maxlen: 16
78.38.193.0/24 maxlen: 24
78.38.201.0/24 maxlen: 24
78.38.209.0/24 maxlen: 24
2.187.0.0/16 maxlen: 16
78.38.220.0/23 maxlen: 23
78.38.240.0/24 maxlen: 24
78.39.130.0/24 maxlen: 24
2.189.5.96/28 maxlen: 28
78.38.32.0/19 maxlen: 19
217.219.236.0/22 maxlen: 22
78.38.0.0/16 maxlen: 16
78.38.160.0/19 maxlen: 19
195.146.37.0/24 maxlen: 24
195.146.32.0/19 maxlen: 19
195.146.32.0/20 maxlen: 20
195.146.36.0/24 maxlen: 24
195.146.32.0/24 maxlen: 24
195.146.50.0/24 maxlen: 24
195.146.46.0/23 maxlen: 23
195.146.60.0/24 maxlen: 24
195.146.63.0/24 maxlen: 24
217.219.40.0/22 maxlen: 22
2.178.192.0/18 maxlen: 18
217.219.0.0/16 maxlen: 16
217.219.24.0/21 maxlen: 21
217.219.152.0/21 maxlen: 21
85.185.230.0/23 maxlen: 23
2.189.5.64/28 maxlen: 28
85.185.192.0/22 maxlen: 22
217.218.85.0/24 maxlen: 24
80.191.103.0/24 maxlen: 24
217.218.94.0/24 maxlen: 24
217.218.96.0/19 maxlen: 19
217.218.105.0/24 maxlen: 24
217.218.104.0/24 maxlen: 24
2.178.0.0/19 maxlen: 19
217.218.114.0/24 maxlen: 24
217.218.131.0/24 maxlen: 24
217.218.127.0/24 maxlen: 24
217.218.132.0/24 maxlen: 24
80.191.41.0/24 maxlen: 24
80.191.64.0/23 maxlen: 23
217.218.48.0/21 maxlen: 21
80.191.61.0/24 maxlen: 24
80.191.67.0/24 maxlen: 24
217.218.56.0/24 maxlen: 24
80.191.69.0/24 maxlen: 24
80.191.70.0/24 maxlen: 24
217.218.55.0/24 maxlen: 24
217.218.64.0/24 maxlen: 24
217.218.64.0/18 maxlen: 18
80.191.81.0/24 maxlen: 24
217.218.67.0/24 maxlen: 24
80.191.88.0/21 maxlen: 21
2.189.79.64/27 maxlen: 27
85.185.42.0/24 maxlen: 24
85.185.45.0/24 maxlen: 24
217.218.239.0/24 maxlen: 24
217.218.235.0/24 maxlen: 24
2.189.5.112/28 maxlen: 28
2.178.128.0/18 maxlen: 18
217.218.143.0/24 maxlen: 24
2.178.32.0/19 maxlen: 19
217.218.141.0/24 maxlen: 24
217.218.155.0/24 maxlen: 24
2.178.64.0/18 maxlen: 18
85.185.0.0/16 maxlen: 16
217.218.180.0/24 maxlen: 24
2.185.0.0/16 maxlen: 16
2.177.0.0/17 maxlen: 17
2.177.128.0/17 maxlen: 17
80.191.0.0/24 maxlen: 24
80.191.0.0/16 maxlen: 16
2.191.0.0/16 maxlen: 16
217.218.0.0/17 maxlen: 17
217.218.0.0/16 maxlen: 16
80.191.24.0/24 maxlen: 24
80.191.27.0/24 maxlen: 24
80.191.29.0/24 maxlen: 24
80.191.36.0/24 maxlen: 24
217.218.21.0/24 maxlen: 24
80.191.32.0/24 maxlen: 24
2.189.5.32/28 maxlen: 28
2.182.248.0/22 maxlen: 22
2.182.214.0/23 maxlen: 23
2.189.79.32/27 maxlen: 27
2.176.192.0/18 maxlen: 18
2.189.5.80/28 maxlen: 28
2.176.0.0/12 maxlen: 12
2.188.183.0/24 maxlen: 24
2.188.185.0/24 maxlen: 24
2.188.192.0/18 maxlen: 18
2.189.78.0/24 maxlen: 24
2.189.79.0/24 maxlen: 24
2.182.96.0/19 maxlen: 19
2001:4188::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:ec:9e:b2:24:7e:95:bb:3d:bd:d0:9c:9c:a9:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 2 09:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10c9ea6e170cfd2de8e621b4a945549358171874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:06:8e:51:ef:fb:98:13:37:09:ff:4d:35:0b:
0b:94:99:d4:2b:22:95:f6:2e:70:0d:0a:da:19:44:
36:2b:19:fb:53:34:10:26:95:65:ac:78:a8:1c:03:
f9:2f:ec:25:c0:cf:f8:4e:98:33:d4:09:cb:11:63:
df:dc:ea:a6:b4:a5:8f:e5:a4:c0:a1:fc:bb:46:5b:
91:65:88:2e:cf:ed:d5:13:70:63:9f:71:08:b4:f4:
75:af:76:cb:25:b0:0b:8f:9d:f7:87:e2:b7:4f:a1:
4b:7b:dc:a5:d9:f2:d2:8a:81:cb:8d:22:f3:63:0e:
47:6c:95:95:78:7e:d6:c2:09:7a:46:1d:5b:9d:d0:
f4:5b:43:0d:ba:f0:2f:60:8e:70:ab:43:d7:a9:3d:
fc:63:c1:b7:f7:18:17:c9:b4:17:8e:70:fe:06:98:
2a:33:c3:dc:01:75:da:e7:91:d5:9a:09:a4:5b:af:
2f:1e:d0:08:6b:34:7c:2e:cb:28:94:1c:07:80:36:
f4:75:1f:19:5e:94:db:9c:8b:7f:6d:ad:32:91:d3:
00:fc:c4:d0:52:b6:66:56:9d:47:02:c7:a7:0f:d6:
46:20:74:d6:27:f2:d9:2f:7c:e6:61:85:eb:ea:0a:
47:d7:7d:a5:8d:1b:87:66:ab:b2:f1:80:49:51:5a:
7f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:C9:EA:6E:17:0C:FD:2D:E8:E6:21:B4:A9:45:54:93:58:17:18:74
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/EMnqbhcM_S3o5iG0qUVUk1gXGHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.176.0.0/12
78.38.0.0/15
80.191.0.0/16
85.185.0.0/16
195.146.32.0/19
217.218.0.0/15
IPv6:
2001:4188::/48
Signature Algorithm: sha256WithRSAEncryption
97:aa:8c:0c:14:5c:fa:90:6e:5c:29:50:25:b6:da:fd:e7:e3:
78:ba:64:04:6a:30:5d:36:3f:a1:61:5a:b5:63:71:85:c4:0b:
ec:5c:33:87:4e:3b:6d:d7:4a:e6:31:f5:1d:09:1a:a1:43:1e:
8f:11:63:cc:c2:19:8c:e2:78:35:6a:f0:15:7a:e9:ab:5a:f2:
b7:a8:e2:a8:00:52:9c:82:e7:30:81:68:ce:1e:b1:03:70:8f:
17:b3:11:df:b2:a8:dd:f9:45:21:65:7c:61:46:f3:77:b8:c4:
36:5a:60:db:ee:df:27:ac:8b:72:ac:d2:ff:bc:65:d8:02:3a:
da:4d:de:3b:6d:89:d2:cf:3b:1d:b1:9a:6a:fb:00:1a:76:8e:
dc:10:47:31:71:e9:4a:c9:4a:ff:80:e6:62:ad:78:c2:6f:10:
66:ae:ba:2b:d8:d1:7e:78:e9:eb:c7:ca:64:f8:1e:7f:98:3b:
56:00:8f:83:ed:4f:fe:3c:55:53:c2:82:95:59:96:cb:fa:2c:
91:3b:ec:eb:71:2c:31:04:36:7b:6e:63:02:9d:3c:5f:ca:ee:
b4:d8:ae:f4:cd:2e:a4:ee:79:55:0a:04:c5:f0:ca:ec:94:8f:
84:01:4b:65:d8:9f:79:f7:91:4b:5f:51:15:6b:f5:b6:6e:4c:
d5:40:7a:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:41 2025 by rpki-client