Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/4ee85e-22cb-42ed-9071-4651fd802737/1/jvJoLrkW80x-3LdHPz_-M4s-2mo.roa
File: jvJoLrkW80x-3LdHPz_-M4s-2mo.roa (raw, json)
Hash identifier: EvNCwdWtZvbmMCYLGkkA5ftAChnjGmcLsVocoAR6hgI=
Subject key identifier: 8E:F2:68:2E:B9:16:F3:4C:7E:DC:B7:47:3F:3F:FE:33:8B:3E:DA:6A
Certificate issuer: /CN=e215be4532e9588c40531a7f331eabfbf4770a5e
Certificate serial: 018709CFCEFDBB90569FEFD994D99C18EB1E
Authority key identifier: E2:15:BE:45:32:E9:58:8C:40:53:1A:7F:33:1E:AB:FB:F4:77:0A:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4hW-RTLpWIxAUxp_Mx6r-_R3Cl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/4ee85e-22cb-42ed-9071-4651fd802737/1/jvJoLrkW80x-3LdHPz_-M4s-2mo.roa
Signing time: Wed 22 Mar 2023 14:53:46 +0000
ROA not before: Wed 22 Mar 2023 14:53:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48737
IP address blocks: 185.56.239.0/24 maxlen: 24
185.56.236.0/24 maxlen: 24
185.56.237.0/24 maxlen: 24
185.56.238.0/24 maxlen: 24
185.59.73.0/24 maxlen: 24
185.59.74.0/24 maxlen: 24
185.59.75.0/24 maxlen: 24
185.59.72.0/24 maxlen: 24
81.22.97.0/24 maxlen: 24
81.22.98.0/24 maxlen: 24
81.22.96.0/24 maxlen: 24
81.22.104.0/24 maxlen: 24
81.22.105.0/24 maxlen: 24
81.22.101.0/24 maxlen: 24
81.22.102.0/24 maxlen: 24
81.22.103.0/24 maxlen: 24
81.22.99.0/24 maxlen: 24
81.22.100.0/24 maxlen: 24
81.22.111.0/24 maxlen: 24
81.22.108.0/24 maxlen: 24
81.22.109.0/24 maxlen: 24
81.22.110.0/24 maxlen: 24
81.22.106.0/24 maxlen: 24
81.22.107.0/24 maxlen: 24
95.128.58.0/24 maxlen: 24
95.128.56.0/24 maxlen: 24
95.128.57.0/24 maxlen: 24
95.128.62.0/24 maxlen: 24
95.128.63.0/24 maxlen: 24
95.128.59.0/24 maxlen: 24
95.128.60.0/24 maxlen: 24
95.128.61.0/24 maxlen: 24
46.20.144.0/24 maxlen: 24
46.20.145.0/24 maxlen: 24
46.20.150.0/24 maxlen: 24
46.20.151.0/24 maxlen: 24
46.20.152.0/24 maxlen: 24
46.20.147.0/24 maxlen: 24
46.20.148.0/24 maxlen: 24
46.20.149.0/24 maxlen: 24
46.20.146.0/24 maxlen: 24
46.20.157.0/24 maxlen: 24
46.20.158.0/24 maxlen: 24
46.20.159.0/24 maxlen: 24
46.20.154.0/24 maxlen: 24
46.20.155.0/24 maxlen: 24
46.20.156.0/24 maxlen: 24
46.20.153.0/24 maxlen: 24
37.58.16.0/24 maxlen: 24
37.58.17.0/24 maxlen: 24
37.58.23.0/24 maxlen: 24
37.58.19.0/24 maxlen: 24
37.58.20.0/24 maxlen: 24
37.58.21.0/24 maxlen: 24
37.58.22.0/24 maxlen: 24
37.58.18.0/24 maxlen: 24
2a02:dc40::/48 maxlen: 48
2a02:dc40:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:09:cf:ce:fd:bb:90:56:9f:ef:d9:94:d9:9c:18:eb:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e215be4532e9588c40531a7f331eabfbf4770a5e
Validity
Not Before: Mar 22 14:53:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ef2682eb916f34c7edcb7473f3ffe338b3eda6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:08:df:40:d7:13:e8:5f:f0:d9:26:9e:73:1d:
2c:ab:74:88:3c:e4:18:7a:f3:4d:d5:2e:a7:d7:0f:
da:4c:60:81:10:c3:4e:73:80:0f:eb:a8:16:dd:93:
ab:b8:ee:e5:a6:d8:32:c0:d5:32:d4:b9:4d:41:5c:
f7:d0:e0:91:09:3f:0c:68:2d:c9:0a:3d:bb:d7:f9:
df:26:e3:1e:18:12:79:51:11:e5:6d:9f:7c:9d:1e:
0c:15:b3:65:3b:59:41:67:68:ef:b1:28:38:03:06:
ff:fc:45:7e:98:5b:01:c6:09:72:2b:f8:19:57:91:
2c:5a:0c:7c:0a:ad:96:bf:c6:7e:f0:4d:c4:b4:e4:
d8:16:ef:ea:f8:e6:52:7e:6f:c1:28:f0:5b:f8:7a:
ee:3f:f6:d7:f7:8a:4e:69:6d:8f:e7:c3:df:a7:dc:
ec:82:f8:21:d2:55:cc:4c:3d:7a:77:50:1d:2c:65:
14:e7:32:89:86:4e:2c:c3:63:57:9f:a6:a9:71:7b:
78:66:ab:bc:3a:44:0d:24:44:6d:1d:f9:7c:39:49:
02:11:d8:24:09:b7:9f:06:98:11:b3:c8:b1:f5:8f:
5a:a2:9b:43:f2:86:fe:55:e8:68:33:a5:32:54:bf:
4f:dc:39:ae:93:e6:f6:70:f2:47:28:99:8a:ad:28:
dd:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:F2:68:2E:B9:16:F3:4C:7E:DC:B7:47:3F:3F:FE:33:8B:3E:DA:6A
X509v3 Authority Key Identifier:
keyid:E2:15:BE:45:32:E9:58:8C:40:53:1A:7F:33:1E:AB:FB:F4:77:0A:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4hW-RTLpWIxAUxp_Mx6r-_R3Cl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/4ee85e-22cb-42ed-9071-4651fd802737/1/jvJoLrkW80x-3LdHPz_-M4s-2mo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/4ee85e-22cb-42ed-9071-4651fd802737/1/4hW-RTLpWIxAUxp_Mx6r-_R3Cl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.58.16.0/21
46.20.144.0/20
81.22.96.0/20
95.128.56.0/21
185.56.236.0/22
185.59.72.0/22
IPv6:
2a02:dc40::/47
Signature Algorithm: sha256WithRSAEncryption
3c:05:0f:89:c9:ad:15:a4:3b:75:6b:5b:1d:5a:18:81:c7:61:
bb:02:63:08:08:b4:99:08:6f:cf:c4:f2:b4:b3:70:eb:60:72:
4a:3b:9c:d6:5a:c1:79:5f:36:21:33:ce:b0:bb:f2:14:90:53:
99:05:3d:60:d7:f8:77:20:c0:e8:38:0a:db:75:b3:7f:b4:4c:
90:b4:c8:e9:d2:cb:41:de:fb:cc:c8:7c:b0:55:ed:57:08:e7:
6d:3b:e7:6e:1e:46:a4:41:3b:c3:26:c2:24:07:06:4a:0c:e6:
5d:3d:82:4b:3d:0b:41:32:64:bd:3b:1e:83:a9:16:bb:2c:ed:
08:f5:31:6b:5d:b6:f7:04:2b:e5:66:b1:3c:9d:e7:de:b5:e7:
af:8c:0d:87:3e:79:31:5d:ec:ec:df:0d:c9:c5:e8:e6:09:dc:
90:3a:f7:8e:27:bc:dd:ce:51:cd:61:c3:92:bf:2c:66:9f:24:
34:11:5f:90:82:c0:98:ef:c2:1a:81:5d:f0:c0:24:12:1e:75:
ab:66:b1:61:a8:69:75:f9:32:dc:0d:c1:28:3c:d9:a8:f1:5c:
0f:aa:82:6e:4c:2f:1d:9e:c7:da:ac:16:e2:95:25:57:0b:16:
00:71:77:a6:99:e9:e6:95:f4:d9:5b:db:8c:87:b7:87:ff:c5:
a8:41:52:c2
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgISAYcJz879u5BWn+/ZlNmcGOseMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyMTViZTQ1MzJlOTU4OGM0MDUzMWE3ZjMzMWVhYmZiZjQ3
NzBhNWUwHhcNMjMwMzIyMTQ1MzQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZWYyNjgyZWI5MTZmMzRjN2VkY2I3NDczZjNmZmUzMzhiM2VkYTZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxQjfQNcT6F/w2Saecx0sq3SIPOQY
evNN1S6n1w/aTGCBEMNOc4AP66gW3ZOruO7lptgywNUy1LlNQVz30OCRCT8MaC3J
Cj271/nfJuMeGBJ5URHlbZ98nR4MFbNlO1lBZ2jvsSg4Awb//EV+mFsBxglyK/gZ
V5EsWgx8Cq2Wv8Z+8E3EtOTYFu/q+OZSfm/BKPBb+HruP/bX94pOaW2P58Pfp9zs
gvgh0lXMTD16d1AdLGUU5zKJhk4sw2NXn6apcXt4Zqu8OkQNJERtHfl8OUkCEdgk
CbefBpgRs8ix9Y9aoptD8ob+VehoM6UyVL9P3Dmuk+b2cPJHKJmKrSjdBQIDAQAB
o4ICODCCAjQwHQYDVR0OBBYEFI7yaC65FvNMfty3Rz8//jOLPtpqMB8GA1UdIwQY
MBaAFOIVvkUy6ViMQFMafzMeq/v0dwpeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNGhXLVJUTHBXSXhBVXhwX014NnItX1IzQ2w0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS80ZWU4NWUtMjJjYi00MmVkLTkwNzEt
NDY1MWZkODAyNzM3LzEvanZKb0xya1c4MHgtM0xkSFB6Xy1NNHMtMm1vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS80ZWU4NWUtMjJjYi00MmVkLTkwNzEtNDY1MWZkODAyNzM3
LzEvNGhXLVJUTHBXSXhBVXhwX014NnItX1IzQ2w0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME4GCCsGAQUFBwEHAQH/BD8wPTAqBAIAATAkAwQDJToQAwQE
LhSQAwQEURZgAwQDX4A4AwQCuTjsAwQCuTtIMA8EAgACMAkDBwEqAtxAAAAwDQYJ
KoZIhvcNAQELBQADggEBADwFD4nJrRWkO3VrWx1aGIHHYbsCYwgItJkIb8/E8rSz
cOtgcko7nNZawXlfNiEzzrC78hSQU5kFPWDX+HcgwOg4Ctt1s3+0TJC0yOnSy0He
+8zIfLBV7VcI5207524eRqRBO8MmwiQHBkoM5l09gks9C0EyZL07HoOpFrss7Qj1
MWtdtvcEK+VmsTyd596156+MDYc+eTFd7OzfDcnF6OYJ3JA6944nvN3OUc1hw5K/
LGafJDQRX5CCwJjvwhqBXfDAJBIedatmsWGoaXX5MtwNwSg82ajxXA+qgm5MLx2e
x9qsFuKVJVcLFgBxd6aZ6eaV9Nlb24yHt4f/xahBUsI=
-----END CERTIFICATE-----
Generated at Wed Apr 16 19:09:56 2025 by rpki-client