Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/Vzic3rXTt5CKm8Kd9RpXQ2kdiY4.roa
File: Vzic3rXTt5CKm8Kd9RpXQ2kdiY4.roa (raw, json)
Hash identifier: ZQJj+UhSNIdFdJHAsukcw3YjZhJzol3XhLZdH3UjzUQ=
Subject key identifier: 57:38:9C:DE:B5:D3:B7:90:8A:9B:C2:9D:F5:1A:57:43:69:1D:89:8E
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018557603819FCB5DE706DA4ADEBC3B93F7A
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/Vzic3rXTt5CKm8Kd9RpXQ2kdiY4.roa
Signing time: Wed 28 Dec 2022 06:16:41 +0000
ROA not before: Wed 28 Dec 2022 06:16:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12880
IP address blocks: 2.188.2.0/24 maxlen: 24
2.188.3.0/24 maxlen: 24
2.188.4.0/24 maxlen: 24
2.188.5.0/24 maxlen: 24
2.188.0.0/16 maxlen: 16
2.188.10.0/24 maxlen: 24
2.188.9.0/24 maxlen: 24
2.188.8.0/24 maxlen: 24
2.188.7.0/24 maxlen: 24
2.188.14.0/24 maxlen: 24
2.188.13.0/24 maxlen: 24
2.188.17.0/24 maxlen: 24
2.188.12.0/24 maxlen: 24
2.188.12.0/22 maxlen: 22
2.188.15.0/24 maxlen: 24
2.188.22.0/24 maxlen: 24
2.188.18.0/24 maxlen: 24
2.188.21.0/24 maxlen: 24
2.188.20.0/24 maxlen: 24
2.188.19.0/24 maxlen: 24
2.188.26.0/23 maxlen: 23
2.188.30.0/24 maxlen: 24
2.188.25.0/24 maxlen: 24
2.188.31.0/24 maxlen: 24
78.39.165.0/24 maxlen: 24
78.39.179.0/24 maxlen: 24
2.189.5.48/28 maxlen: 28
2.188.58.0/24 maxlen: 24
2.188.64.0/21 maxlen: 21
2.188.78.0/24 maxlen: 24
2.188.77.0/24 maxlen: 24
2.188.76.0/24 maxlen: 24
2.188.79.0/24 maxlen: 24
78.38.242.0/24 maxlen: 24
78.38.241.0/24 maxlen: 24
78.38.244.0/24 maxlen: 24
78.38.245.0/24 maxlen: 24
78.38.249.0/24 maxlen: 24
78.38.253.0/24 maxlen: 24
78.38.255.0/24 maxlen: 24
78.39.0.0/16 maxlen: 16
78.38.193.0/24 maxlen: 24
78.38.201.0/24 maxlen: 24
78.38.209.0/24 maxlen: 24
2.187.0.0/16 maxlen: 16
78.38.220.0/23 maxlen: 23
78.38.240.0/24 maxlen: 24
78.39.130.0/24 maxlen: 24
2.189.5.96/28 maxlen: 28
78.38.32.0/19 maxlen: 19
217.219.236.0/22 maxlen: 22
78.38.0.0/16 maxlen: 16
78.38.160.0/19 maxlen: 19
195.146.37.0/24 maxlen: 24
195.146.32.0/19 maxlen: 19
195.146.32.0/20 maxlen: 20
195.146.36.0/24 maxlen: 24
195.146.32.0/24 maxlen: 24
195.146.50.0/24 maxlen: 24
195.146.46.0/23 maxlen: 23
195.146.60.0/24 maxlen: 24
195.146.63.0/24 maxlen: 24
217.219.40.0/22 maxlen: 22
2.178.192.0/18 maxlen: 18
217.219.0.0/16 maxlen: 16
217.219.24.0/21 maxlen: 21
217.219.152.0/21 maxlen: 21
85.185.230.0/23 maxlen: 23
2.189.5.64/28 maxlen: 28
85.185.192.0/22 maxlen: 22
217.218.85.0/24 maxlen: 24
80.191.103.0/24 maxlen: 24
217.218.94.0/24 maxlen: 24
217.218.96.0/19 maxlen: 19
217.218.105.0/24 maxlen: 24
217.218.104.0/24 maxlen: 24
2.178.0.0/19 maxlen: 19
217.218.114.0/24 maxlen: 24
217.218.131.0/24 maxlen: 24
217.218.127.0/24 maxlen: 24
217.218.132.0/24 maxlen: 24
80.191.41.0/24 maxlen: 24
80.191.64.0/23 maxlen: 23
217.218.48.0/21 maxlen: 21
80.191.61.0/24 maxlen: 24
80.191.67.0/24 maxlen: 24
217.218.56.0/24 maxlen: 24
80.191.69.0/24 maxlen: 24
80.191.70.0/24 maxlen: 24
217.218.55.0/24 maxlen: 24
217.218.64.0/24 maxlen: 24
217.218.64.0/18 maxlen: 18
80.191.81.0/24 maxlen: 24
217.218.67.0/24 maxlen: 24
80.191.88.0/21 maxlen: 21
2.189.79.64/27 maxlen: 27
85.185.42.0/24 maxlen: 24
85.185.45.0/24 maxlen: 24
217.218.239.0/24 maxlen: 24
217.218.235.0/24 maxlen: 24
2.189.5.112/28 maxlen: 28
2.178.128.0/18 maxlen: 18
217.218.143.0/24 maxlen: 24
2.178.32.0/19 maxlen: 19
217.218.141.0/24 maxlen: 24
217.218.155.0/24 maxlen: 24
2.178.64.0/18 maxlen: 18
85.185.0.0/16 maxlen: 16
217.218.180.0/24 maxlen: 24
2.185.0.0/16 maxlen: 16
2.177.0.0/17 maxlen: 17
2.177.128.0/17 maxlen: 17
80.191.0.0/24 maxlen: 24
80.191.0.0/16 maxlen: 16
2.191.0.0/16 maxlen: 16
217.218.0.0/17 maxlen: 17
217.218.0.0/16 maxlen: 16
80.191.24.0/24 maxlen: 24
80.191.27.0/24 maxlen: 24
80.191.29.0/24 maxlen: 24
80.191.36.0/24 maxlen: 24
217.218.21.0/24 maxlen: 24
80.191.32.0/24 maxlen: 24
2.189.5.32/28 maxlen: 28
2.182.248.0/22 maxlen: 22
2.182.214.0/23 maxlen: 23
2.189.79.32/27 maxlen: 27
2.176.192.0/18 maxlen: 18
2.189.5.80/28 maxlen: 28
2.176.0.0/12 maxlen: 12
2.188.183.0/24 maxlen: 24
2.188.185.0/24 maxlen: 24
2.188.192.0/18 maxlen: 18
2.189.78.0/24 maxlen: 24
2.189.79.0/24 maxlen: 24
2.182.96.0/19 maxlen: 19
2001:4188::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:57:60:38:19:fc:b5:de:70:6d:a4:ad:eb:c3:b9:3f:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Dec 28 06:16:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57389cdeb5d3b7908a9bc29df51a5743691d898e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6a:3b:bc:f8:30:c1:b0:73:c0:f6:2b:f8:98:
5b:55:12:11:0a:cc:0f:44:30:29:eb:41:73:c8:ac:
bb:61:79:00:f4:7a:c6:27:e8:84:71:d9:3d:45:6a:
d3:37:c1:a6:9a:df:20:5a:16:ff:70:4b:f4:b0:23:
93:db:34:91:89:83:6e:22:ab:fc:bb:e7:b2:fc:e7:
85:2f:9f:f9:e4:2f:57:ce:f9:13:b6:1a:5d:df:44:
64:5f:2e:47:35:43:b9:56:f7:8f:98:e2:25:20:79:
c5:0d:8b:2d:79:1e:e4:33:f6:a7:f5:92:4c:55:82:
12:bf:fe:3a:d2:9b:73:e4:08:49:0d:57:7c:53:ff:
1d:9d:a4:91:4a:48:52:d1:ab:95:19:c9:dc:a4:47:
0a:da:c3:bc:f5:f0:ae:63:f4:27:7c:ad:8b:61:50:
3f:7f:be:3b:4a:1f:84:93:46:ee:29:d2:6a:55:6c:
5a:06:4a:99:51:25:61:ba:e6:8c:a2:bb:ca:a0:f8:
81:c2:12:e9:14:e9:fa:bc:ce:00:32:c2:f5:1a:06:
0f:ee:35:bb:60:d4:8c:a4:79:99:a6:e2:a9:c6:4a:
49:86:36:2d:81:40:3a:21:fb:2a:27:a1:1b:30:cd:
ae:dd:15:ae:97:6c:48:37:85:8c:28:ef:79:f9:18:
f7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:38:9C:DE:B5:D3:B7:90:8A:9B:C2:9D:F5:1A:57:43:69:1D:89:8E
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/Vzic3rXTt5CKm8Kd9RpXQ2kdiY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.176.0.0/12
78.38.0.0/15
80.191.0.0/16
85.185.0.0/16
195.146.32.0/19
217.218.0.0/15
IPv6:
2001:4188::/48
Signature Algorithm: sha256WithRSAEncryption
30:2c:75:53:f6:77:e3:ee:1c:63:d4:fb:78:a7:27:a7:c2:f3:
99:d4:38:64:62:ac:17:7d:d1:3d:6b:ae:bd:75:c4:f8:aa:8f:
f8:4b:5c:9a:11:4d:f2:6e:56:21:8a:9e:dd:14:77:5a:f3:a8:
fe:29:af:93:2b:b8:48:2e:97:fd:8d:13:7f:b8:6a:d6:2d:19:
ce:e1:d2:b4:c5:ae:51:93:bf:a9:73:8c:96:d5:f6:33:2a:8a:
77:a3:a0:ef:90:13:74:10:08:02:34:d8:76:5b:53:2b:94:c3:
9a:c3:2f:b9:f1:54:e9:e7:e9:06:e0:39:61:ff:47:45:18:2c:
c4:39:33:14:80:00:e3:7a:23:9e:e5:8f:50:32:d1:e8:67:c1:
6a:18:69:03:9b:90:e9:83:0b:cf:1f:ed:0d:f8:ee:c9:dd:31:
ae:75:f5:fe:40:3b:d0:6b:53:63:8a:0b:47:1f:18:77:bc:c8:
82:4d:43:74:4a:d4:6c:8e:12:53:56:ec:d1:05:80:d4:79:0d:
50:c5:95:56:48:51:12:c1:4d:94:20:5d:3e:ed:b8:dd:5e:d8:
a6:26:78:11:ed:41:79:8b:d3:4c:40:01:7a:57:be:4a:43:bc:
7a:ee:24:87:d8:af:cf:f8:46:56:3b:fa:02:d6:6b:98:fc:67:
64:8c:6a:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:31:32 2025 by rpki-client